Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Security Researchers Offer Warnings About Hackable Railroads

    The well-being of critical infrastructure and transportation has long been the elephant in the room when it comes to cybersecurity: plenty of researchers have warned about the possibility of attacks on power-plants, the national grid, and, more recently, even the emergence of internet connected cars.

    Now, researchers are warning of the gaping holes in the security of railroad systems. On Sunday at Chaos Communication Congress, a security, arts and politics conference held annually in Hamburg, Germany, members of the SCADA StrangeLove collective presented a long list of problems with railroad systems that attackers could exploit.

  • DLL Hijacking Just Won’t Die

    To make a long and complicated story short, a bad guy who exploits this vulnerability places a malicious DLL into your browser’s Downloads folder, then waits. When you run an installer built by an earlier version of NSIS from that folder, the elevation prompt (assuming it runs at admin) shows the legitimate installer’s signature asking you for permission to run the installer. After you grant permission, the victim installer loads the malicious DLL which runs its malicious code with the installer’s permissions. And then it’s not your computer anymore.

  • CA Council to Improve Internet Certificate Security in 2016

    At the heart of much of the Internet's security is the use of Secure Sockets Layer/Transport Layer Security (SSL/TLS), which provides encryption for data in motion. Certificate Authorities (CAs) are the trusted entities that issue TLS certificates, and as a group, the CAs are gearing up for big year in 2016, with multiple efforts designed to improve the security of the Internet.

  • Backspace Flaw Enables Linux Zero-Day Attack

More in Tux Machines

Decision Making With If Else and Case Statements in Bash Scripts

In this chapter of bash beginner series, you'll learn about using if-else, nested if else and case statements in bash scripts. Read more

Debian GNU/Linux 11 (Bullseye) Artwork Contest Is Now Open for Entries

This is the moment for aspiring artists and designers who want to display their work in front of millions of Debian users to submit their best artwork for the upcoming Debian GNU/Linux 11 (Bullseye) operating system series, due for release in mid-2021. Submissions are opened until November 1st, 2020, but your artwork needs to meet the following specifications. For example, you will have to create a wiki page for your artwork proposal at DebianArt/Themes, write down a few words about your idea, use an image format that can be later modified using free and open source software, and add a license that lets the Debian Project distribute your artwork within Debian GNU/Linux. Read more

GNOME 3.36.5 Desktop Update Released with Various Improvements and Bug Fixes

Coming about a month after the release of the GNOME 3.36.4 update, GNOME 3.36.5 is here as the latest stable bugfix release for the GNOME 3.36 desktop environment series. As expected, the new update is packed with updated core components and apps to keep GNOME 3.36’s stability and reliability at the higher standards. Highlights of the GNOME 3.36.5 update include Firefox Sync improvements for the Flatpak version of the Epiphany (GNOME Web) web browser, along with a fix for the way newly created tabs are ordered when closing new tabs, as well as a fix for a drag-and-drop crash in File Roller that occurred when cancelling the file overwrite process. Read more

Android Leftovers