Leftovers: Security

-
Security updates for Thursday
-
Microsoft puts a bullet in blundering D-Link's leaked key that made malware VIPs on PCs
Microsoft has finally revoked D-Link's leaked code-signing key, which gave malware the red carpet treatment on millions of Windows PCs.
Last week, it emerged that, for six months between February and September, D-Link exposed its private code-signing key to the world in a firmware download. Anyone who stumbled upon this key could use it to dress up malware as a legit-looking D-Link application, tricking Windows and users into trusting it.
The key expired at the start of this month, meaning it cannot be used to digitally sign new malware. But any software nasties signed using the key earlier in the year would still be trusted and run by Windows PCs.
-
Filling in the holes in Linux boot chain measurement, and the TPM measurement log
When I wrote about TPM attestation via 2FA, I mentioned that you needed a bootloader that actually performed measurement. I've now written some patches for Shim and Grub that do so.
The Shim code does a couple of things. The obvious one is to measure the second-stage bootloader into PCR 9. The perhaps less expected one is to measure the contents of the MokList and MokSBState UEFI variables into PCR 14. This means that if you're happy simply running a system with your own set of signing keys and just want to ensure that your secure boot configuration hasn't been compromised, you can simply seal to PCR 7 (which will contain the UEFI Secure Boot state as defined by the UEFI spec) and PCR 14 (which will contain the additional state used by Shim) and ignore all the others.
-
Would you trust Intel, Vodafone, Siemens et al with Internet of Things security? You'll have to
A new non-profit foundation dedicated to improving security in the "internet of things" launched on Wednesday.
More than 30 companies including Intel, Vodafone, Siemens, and BT are the founding members of the foundation, whose mission is to "make the Internet of Things secure, to aid its adoption, and maximize its benefits."
The IoTSF will focus on best practices and knowledge sharing. It will host a conference in London in December on IoT security.
-
Security wares like Kaspersky AV can make you more vulnerable to attacks
-
- Login or register to post comments
Printer-friendly version
- 964 reads
PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
Android Leftovers
| Weston 10.0.1 - a bug-fix release
The latest release of Weston was made on February 1, 2022. Meanwhile, a few bugs were discovered and we decided to do a bug-fix release, which we haven't had in several years.
|
Videos: Dwm, GTK5, and The Linux Experiment on Privacy
| today's howtos
|
Recent comments
1 hour 17 min ago
2 hours 4 min ago
2 hours 43 min ago
7 hours 55 min ago
8 hours 35 min ago
8 hours 39 min ago
8 hours 43 min ago
8 hours 50 min ago
13 hours 57 min ago
17 hours 14 min ago