Language Selection

English French German Italian Portuguese Spanish

Security: Dlink, Equifax, Bluetooth

Filed under
  • Pwning the Dlink 850L routers and abusing the MyDlink Cloud protocol

    The Dlink 850L is a router overall badly designed with a lot of vulnerabilities.

    Basically, everything was pwned, from the LAN to the WAN. Even the custom MyDlink cloud protocol was abused.

  • House Dems demand answers from Equifax CEO

    All 24 minority members of the committee signed a letter to the Equifax executive, Richard Smith, calling on him to come forward with more information about his handling of the crisis.

  • Chatbot lets you sue Equifax for up to $25,000 without a lawyer

    Even if you want to be part of the class action lawsuit against Equifax, you can still sue Equifax for negligence in small claims court using the DoNotPay bot and demand maximum damages. Maximum damages range between $2,500 in states like Rhode Island and Kentucky to $25,000 in Tennessee.

  • Bluetooth flaws leave billions of devices open to attacks

    Researchers at IoT security firm Armis say they have found eight flaws in the Bluetooth protocol that can be used to attack devices running Android, iOS, Linux and Windows.

  • Bluetooth Vulnerability BlueBorne Impacts Android, iOS, Windows, and Linux Devices

    The BlueBorne attack doesn’t even require the victim to tap or click on any malicious links. If your device has Bluetooth and is on then it is possible for an attacker to take complete control of it from 32 feet away. This even works without the attacker pairing anything to the victim’s device and the target device doesn’t need to be set to discoverable mode either. The team at Armis Labs have identified eight zero-day vulnerabilities so far and believes many more are waiting to be discovered.

More in Tux Machines

Replacing Windows

  • Ubuntu-Based Zorin OS Gets Better Support for Windows Apps, Desktop Improvements
    A new maintenance update of the Ubuntu-based Zorin OS GNU/Linux distribution arrived at the end of this week with a bunch of enhancements to its desktop environment, as well as the latest versions of core components and apps. Zorin OS 12.3 is here as the latest stable update of the Ubuntu-based operating system with a focus on improving the security, stability, and functionality of Zorin OS, which was always known as one of the most reliable open-source alternatives to Microsoft's Windows operating system. Therefore, probably the most important change of the Zorin OS 12.3 release is the introduction of Wine 3.0, the latest stable version of the compatibility layer for running Windows programs on Linux and UNIX-like systems, which ensures better compatibility with more Windows apps and games on Zorin OS.
  • Microsoft tries forcing Mail users to open links in Edge, and people are freaking out

    Under the new rules, it doesn’t matter which browser you have selected as the default; if you use the basic Mail app within Windows, any link you click will open up Edge.

  • Google picks up another win for G Suite as Airbus grounds Microsoft Office

    With over 130,000 employees, Airbus uses a lot of office productivity software. It recently decided to make a big bet on Google’s G Suite software package after running the company for years on hosted versions of Microsoft Office, according to a report.  

Games: Kingdom Ka, Starmancer and More

OSS Leftovers

  • LG Announces webOS Open-Source Edition
    What was Palm webOS nearly a decade ago is seeing its latest incarnation as LG webOS Open-Source Edition. The interesting history of webOS continues... While you probably recall HP acquired Palm in 2010 and with that there was webOS on the HP TouchPad. Around 2012 is when HP then announced they would publish the webOS source code as "Open webOS". WebOS was then acquired by LG Electronics where it's been in use for a few years now for smart TVs, IoT, and other LG devices. There's also been a few offshoots over the years like LuneOS as a fork of webOS.
  • Mi A1 Oreo Kernel source code released by Xiaomi
    Xiaomi’s first Android One phone, the Mi A1 was expected to receive Android 8.0 Oreo update by the end December, and the company did roll out the update to the device under the stipulated time. However, the kernel source for the upgrade was left covered with no access to it for third-party developers. This also violated the GNU General Public License, version 2 (GPLv2) and also hampered the advancement of developers who base their codes on source codes. Thankfully, after a delay of more than two months, Xiaomi has finally released the kernel source code of Android 8.1 for the Xiaomi Mi A1.
  • GSoC and Outreachy: Mentors don't need to be Debian Developers
    A frequent response I receive when talking to prospective mentors: "I'm not a Debian Developer yet". As student applications have started coming in, now is the time for any prospective mentors to introduce yourself on the debian-outreach list if you would like to help with any of the listed projects or any topics that have been proposed spontaneously by students without any mentor. It doesn't matter if you are a Debian Developer or not. Furthermore, mentoring in a program like GSoC or Outreachy is a form of volunteering that is recognized just as highly as packaging or any other development activity. When an existing developer writes an email advocating your application to become a developer yourself, they can refer to your contribution as a mentor. Many other processes, such as requests for DebConf bursaries, also ask for a list of your contributions and you can mention your mentoring experience there.
  • 11th Open Source Day Conference
    On May 23rd, Warsaw will host the 11th edition of Open Source Day. OSD is the largest conference about open source in Poland and CEE region, gathering every year nearly 1000 participants. The programme of the upcoming edition is focused mainly on practical sessions devoted to the most important directions of IT market development. Registration for the event is already open. For the first 600 attendees, participation in the conference is free-of-charge. Open Source Day is the biggest event in Poland and CEE region dedicated to open source. Over 6,000 people took part in previous editions, and several thousand followed the event online. Open Source Day is the knowledge exchange platform about open software, as one of the most important trends in the development of modern technologies, enabling creation of high-quality, stable IT solutions, which today are the basis for all branches of the economy.
  • March Add(on)ness: Tab Centre Redux (2) vs Tabby Cat (3)
  • March Add(on)ness: Reverse Image Search (2) Vs Unpaywall (3)
  • Facebook, Google and Big Switch Networks to Demonstrate Open Source Collaboration with Next-Gen Network Operating Systems During OCP Summit Keynote
  • 6 common questions about agile development practices for teams
    You’ve probably heard a speaker ask this question at the end of their presentation. This is the most important part of the presentation—after all, you didn't attend just to hear a lecture but to participate in a conversation and a community. Recently I had the opportunity to hear my fellow Red Hatters present a session called "Agile in Practice" to a group of technical students at a local university. During the session, software engineer Tomas Tomecek and agile practitioners Fernando Colleone and Pavel Najman collaborated to explain the foundations of agile methodology and showcase best practices for day-to-day activities.

Red Hat's GPL-Centric Initiative, Upcoming Fedora Test Day