Linux Hacks & Cracks - Page 43

Discover Hacks/Cracks News

Critical vulnerability in Ruby on Rails parameter parsing

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

The developers of Ruby on Rails are calling on users to update their Rails installations as soon as possible, following the public disclosure of flaws in the parsing of XML-formatted parameters in the Rails framework. The update also fixes an unrelated issue with JSON parameter parsing.

LinuxSecurity.com Team
Jan 09, 2013

Hacker unlocks the 3DS system kernel key to running pirated software

Nintendo better hire a decent sea monster to help them fight off a potential onslaught of 3DS pirates. 3DS hacker Neimod has revealed that he has gained full control of a 3DS kernel that enables the device to run custom code, according to GBAtemp.net. Such code will open the handheld to independently created home-brew software and pirated games.

LinuxSecurity.com Team
Jan 07, 2013

Facebook Patches Webcam Vulnerability After Receiving Hacker Tip

Facebook Inc. (FB) has patched a security vulnerability that would have allowed hackers to turn on users

LinuxSecurity.com Team
Dec 31, 2012

Hacker cites iOS 6 code as becoming more secure, offering

Hacking an iOS device may be getting tougher to do. Per iPodNN, in a recent tweet, hacker i0n1c has revealed that the forthcoming iOS 6.1 update adds

LinuxSecurity.com Team
Dec 27, 2012

Hackers Use Backdoor to Break System

Industrial control system comes with a backdoor: Although the system was password protected in general, the backdoor through the IP address apparently required no password and allowed direct access to the control system. "[Th]e published backdoor URL provided the same level of access to the company's control system as the password-protected administrator login," said the memo.

LinuxSecurity.com Team
Dec 26, 2012

Apache plugin turns legit sites into bank-attack platforms

A malicious Apache module found operating in the wild turns sites running the Internet's most popular Web server into platforms that surreptitiously install malware on visitors' computers.

LinuxSecurity.com Team
Dec 21, 2012

Cisco VoIP Hacker Urges Closer Look at Firmware Security Vulnerabilities

Ang Cui

LinuxSecurity.com Team
Dec 19, 2012

Hacker nabs Yahoo! site backups

A penetration tester has reportedly hacked Yahoo!, claiming to have gained access to website backup and database files for a dozen databases.

LinuxSecurity.com Team
Dec 17, 2012

Samsung TV vulnerability could let a hacker change the channel

f you're watching TV and the channel suddenly changes, you may not have sat on the remote control by accident.

LinuxSecurity.com Team
Dec 12, 2012

ADFA hack a national security failure, expert finds

A hacker has accessed personal details on thousands of Australia's future military leaders, a situation one expert has described as a national security failure.

LinuxSecurity.com Team
Dec 12, 2012

Pakistani hacker hits over 400 Chinese govt sites

Marking the city government's third breach, over 400 government sites in China's Xuchang City have been hacked and defaced by a hacker from the Pakistan Cyber Army, who posted the details on PasteBin.

LinuxSecurity.com Team
Dec 07, 2012

1.1 million US consumers affected as insurance companies breached

The US insurance company Nationwide Mutual has revealed that its network, which it shares with Allied Insurance, was attacked on 3 October and that the attackers stole personal information from their network. Nationwide is one of the biggest insurance and financial services in the world.

LinuxSecurity.com Team
Dec 06, 2012

Hacker Group Exploits Massive Security Hole In Tumblr

It seems like the first large blog to go down this morning belonged to The Daily Dot, which helped spread the infected posts to hundreds, if not thousands, of other blogs. The posts are signed by the GNAA, a notoriously inflammatory hacker group.

LinuxSecurity.com Team
Dec 06, 2012

Tumblr troubled by trojan text - Update

An outbreak of a worm on Tumblr, the microblogging platform, hit many accounts by taking advantage of the platform's reblogging capability. The payload of the worm was the publication of a posting angrily explaining how the worm's authors hated Tumblr users, was analysed by Sophos which noted that the malicious code was embedded mostly as a Base64-encoded string hidden within a data URI.

LinuxSecurity.com Team
Dec 04, 2012

Chrome: Pinkie Pie's 64-bit vulnerability fixed

Google has released security updates to the Stable and Beta channels of its Chrome browser and to the Stable channel of Chrome OS. The update to the Stable channel for Chrome closes two security vulnerabilities rated High by the company, one of which earned the leading hacker of the Chrome browser, Pinkie Pie, a $7331 payout and a congratulatory note from the Chrome team for a successful 64-bit exploit of Chrome.

LinuxSecurity.com Team
Dec 03, 2012

Forget Disclosure

The author of this opinion piece, aka

LinuxSecurity.com Team
Nov 30, 2012

Local hotel thefts may involve security flaw

Did a Houston man accused of breaking into Galleria-area hotels use a device that targets a security flaw present in millions of hotel rooms worldwide?

LinuxSecurity.com Team
Nov 29, 2012

Yahoo Mail hijacking exploit selling for $700

An exploit selling for $700 may put millions of Yahoo Mail users at risk of having their e-mail account hijacked and their browsers redirected to malicious sites.

LinuxSecurity.com Team
Nov 27, 2012

Known keycard hack suspected in hotel room burglary

A known hack of a popular hotel keycard reader was allegedly employed in the burglary of a woman's hotel room in Texas.

LinuxSecurity.com Team
Nov 27, 2012

Origin Hacked, EA's Own Security Measures Used

Are you one of the millions using EA's Origin digital platform service? If so, you might want to read what happened to these people so it doesn't happen to you/

LinuxSecurity.com Team
Nov 14, 2012

Linux Hacks & Cracks - Page 43

Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions

Perfctl Unveiled: Risks, Detection, and Proactive Defense Measures

Unveiling the WolfsBane Backdoor: Gelsemium's Linux Variant of Gelsevirine