readwriteweb.com: The site that hosts the Linux kernel's source code, Kernel.org was compromised earlier this month. The discovery was made on August 28th, and steps are being taken now to enhance security for the site and recovery is underway.
Also: The Cracking of Kernel.org by Jon Corbet
zdnet.com: According to an Ubuntu security alert, the WebKit flaws are dangerous enough to cause arbitrary code execution attacks.
Truecrypt, is a free and open-source disk encryption software. In this post we will show you how to encrypt all your data using Truecrypt in 11 easy steps. With Truecrypt it is possible to encrypt a virtual disk (folder), a partition or a whole storage device. The two most beautiful things with Truecrypt are real-time instantaneous encryption and simple and easy setup.
drbill.cc: I love VLC. It is one of the programs I install on all my systems, whether Windows, or Linux. BUT, some evil, nasty dewds are making the good name of VLC a “hook” to get you to download a modified mailware infested version! Grrrr!
junauza.com: Hackers and hacker groups were quite famous in the 80’s and 90’s but their popularity started fading since the Y2K days. Today, we are once again witnessing hackers threatening to take on giant corporations sending chills down everyone's spine.
mrpogson.com: I was surprised to see Brazil in the list of systems compromised by “Anonymous” recently. To demonstrate the compromise, /etc/passwd from some systems was published.
zdnet.com: Dropbox ‘deceived’ users about the security and encryption of its cloud storage services, according to a complaint made to the FTC.
dedoimedo.com: After Flaming retort, I have another rebuttal. Another piece of scaremongering, with overhyped drama and sensationalism, wrapped in tech lingo to make the crowds shudder with fear and reverence. Today, I want to talk to you about a short article called Botnets exploit Linux owners' ignorance.
jeffhoogland.blogspot: If you watch new projects that are added to source forge then two weeks ago you might have noticed that Tiny Core Linux was added to their projects. I thought this was a little bit odd.
afterdawn.com: Two days into the Pwn2Own hacking challenge, only a few still remain. So far, hackers have not been able to exploit Mozilla Firefox 3.6, Google Chrome, and the mobile Android OS.
internetnews.com: The annual Pwn2Own hacking challenge kicks off today, pitting security researchers against web browsers and mobile platforms. The HP TippingPoint sponsored event grows every year to include more platforms, though Linux isn't among them.
zdnet.com: Hackers have compromised a private e-mail list used by Linux and BSD distributors to share information on embargoed security vulnerabilities and used a backdoor to sniff e-mail traffic, according to the moderator of the list.
muktware.com: GNU/Linux systems are immune to viruses is anything but myth. Viruses, malware are programs with destructive intentions and can be installed on any machine, if an attacker/cracker (not hacker for god's sake, you idiot) has physical access to it. You can install a malicious code on your own computer if you want. No one can stop you.
computerworlduk.com: The London Stock Exchange’s new open source trading system may have been hacked last year, according to a report.
sourceforge.net: As we’ve previously announced, SourceForge.net has been the target of a directed attack. We have completed the first round of analysis, and have a much more solid picture of what happened, the extent of the impact, our plan to reduce future risk of attack.
theregister.co.uk: From the department of cosmic justice comes this gem, spotted by researchers from Symantec: a trojan that targets Windows, Mac, and Linux computers contains gaping security vulnerabilities that allow rival criminal gangs to commandeer the infected machines.
itworld.com: The fallout from last month's allegations that the Federal Bureau of Investigations attempted to deploy backdoors in the OpenBSD operating system are continuing to echo through developer circles, as more potential clues are unearthed.
theregister.co.uk: Federal restrictions will be relaxed on the export of open-source software that incorporates strong encryption, the US government announced on Friday in a lengthy disclosure.
linuxjournal.com: It was just last week that Theo de Raadt, OpenBSD founder and developer, posted an email that claimed the Federal Bureau of Investigations paid OpenBSD developers to leave backdoors in its IPSEC network security stack. Since then early audits have found some questionable code, contributors denied any wrongdoing, and the original source reaffirmed his allegations.
itwire.com: Perry, chief executive of a company named GoVirtual, told iTWire: "I have absolutely, positively nothing to gain from making those statements to Theo, and only did so to encourage a source code audit of the OpenBSD Project. If I had this to do over again, I would have sent an anonymous postcard to WikiLeaks.