Apr 07

heartbleed“A potentially very serious bug in OpenSSL 1.0.1 and 1.0.2 beta has been discovered that can leak just about any information, from keys to content. Better yet, it appears to have been introduced in 2011, and known since March 2012.” Juha Saarien

“A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server.” security advisory

The attack may be repeated and it appears trivial to acquire the host’s private key. If you were running a vulnerable release, it is even suggested that you go as far as revoking all of your keys. Distributions using OpenSSL 0.9.8 are not vulnerable (Debian Squeeze vintage). Debian Wheezy, Ubuntu 12.04.4, Centos 6.5, Fedora 18, SuSE 12.2, OpenBSD 5.4, FreeBSD 8.4, and NetBSD 5.0.2 and all following releases are vulnerable. OpenSSL released 1.0.1g today addressing the vulnerability. Debian’s fix is in incoming and should hit mirrors soon, Fedora is having some trouble applying their patches, but a workaround patch to the package .spec (disabling heartbeats) is available for immediate application.

Affected users should upgrade to OpenSSL 1.0.1g. Users unable to immediately
upgrade can alternatively recompile OpenSSL with -DOPENSSL_NO_HEARTBEATS.

written by d45id \\ tags: , , , ,

Feb 25

Ebola_virus_emForscher der School of Electrical Engineering, Electronics and Computer Science (Liverpool) entwickelten in ihrem Labor einen Computerwurm mit dem Namen Chameleon, welcher sich selbstständig über WLAN verbreitet und Router bzw. Accesspoints als Wirtssysteme befällt.
In ihrem Labor simulierten die Wissenschaftler teile der WLAN-Netze der Städte London und Belfast und ließen Chameleon auf diese los, mit einem interessanten Ergebniss …

Weitere Informationen:

written by d45id \\ tags: , , , ,

Feb 25

ms-windows“Researchers at Bromium Labs are expected to announce today they have developed an exploit that bypasses all of the mitigations in Microsoft’s Enhanced Mitigation Experience Toolkit (EMET). Principal security researcher Jared DeMott is delivered a presentation at the Security BSides conference explaining how the company’s researchers were able to bypass all of the memory protections offered within the free Windows toolkit. The work is significant given that Microsoft has been quick to urge customers to install and run EMET as a temporary mitigation against zero-day exploits targeting memory vulnerabilities in Windows or Internet Explorer. The exploit bypasses all of EMET’s mitigations, unlike previous bypasses that were able to beat only certain aspects of the tool. Researchers took a real-world IE exploit and tweaked it until they had a complete bypass of EMET’s ROP, heap spray, SEHOP, ASLR, and DEP mitigations.”

written by d45id \\ tags: , , , , ,

Feb 20

128px-OwnCloud2-Logo.svgToday, new free under MIT licenses ownCloud mobile libraries for iOS and Android released.

They provide easy to use methods to read and write files, share files and many more useful operations. To make these libraries as useful as possible to as many developers as possible, they are released under the MIT license. Continue reading »

written by d45id \\ tags: , ,

Jan 20

tux_guardDie neue Kernelversion 3.13 hat nun einen neuen Paketfilter mit an Bord, Nftables.
Nftables entwickelt vom Netfilter-Projekt hat sich zum Ziel gesetzt die existierenden Frameworks wie {ip,ip6,arp,eb}tables – die u.a. auch von ihnen stammen – zu ersetzen …

Siehe hierzu auch:

Talk about nftables at Kernel Recipes 2013
Nftables quick howto

written by d45id \\ tags: , , ,

Jan 19

MusicTimelineThe Music Timeline shows genres of music waxing and waning, based on how many Google Play Music users have an artist or album in their music library, and other data (such as album release dates). Each stripe on the graph represents a genre; the thickness of the stripe tells you roughly the popularity of music released in a given year in that genre. (For example, the “jazz” stripe is thick in the 1950s since many users’ libraries contain jazz albums released in the ’50s.)

 

written by d45id \\ tags: , ,

Jan 19

A nice WordPress-Plugin:

SimpleSecure is a plugin that allows you to insert a secure contact form on any page or post. The email message submitted by your visitor is securely encrypted using GPG/PGP, however no binaries are required nor are any shell calls necessary. SimpleSecure includes a pure PHP port of the GPG encryption functions which allows it to run on any server that supports PHP. In other words, you do not need to install GPG or allow shell access to PHP on your server.

Continue reading »

written by d45id \\ tags: , , ,

Jan 03

Stealing Money from ATMs with Malware

This talk will discuss a case in which criminals compromised and robbed an ATM by infecting it with specially crafted malware. The successful compromise of an ATM can easily result in the loss of several hundred thousand dollars.

Continue reading »

written by d45id \\ tags: , , , ,