OpenSSH 5.9 released
OpenSSH is a 100% complete SSH protocol version 1.3, 1.5 and 2.0 implementation and includes sftp client and server support. It encrypts all traffic (including passwords) to …
Cloud-based DDoS protection
Imperva announced Cloud DDoS Protection, a secure cloud-based service that safeguards businesses from DDoS attacks. By subscribing to this service, organizations can protect …
A bid for the (ISC)2 board of directors: Beyond campaign promises
It’s been roughly two weeks since I started my petition as a write-in candidate for the (ISC)2 Board of Directors (BoD) elections. And what a two weeks it has been. As …
Iranian users were the ultimate target in DigiNotar compromise
If you needed a confirmation of Google’s claims that the rogue SSL issued by DigiNotar for *.google.com domains was used mainly to mount man-in-the-middle attacks …
Rogue SSL certs were also issued for CIA, MI6, Mossad
The number of rogue SSL certificates issued by Dutch CA DigiNotar has ballooned from one to a couple dozen to over 250 to 531 in just a few days. As Jacob Appelbaum of the Tor …
New Zeus-based variant targets banks around the world
Another Zeus-based offering has been unearthed by Trend Micros researchers, and by the look of things, this one seems to be better crafted than the recently discovered Ice IX …
MantisBT multiple vulnerabilities
Vulnerabilities have been reported in MantisBT, according to Secunia. These can be exploited by malicious people to conduct cross-site scripting attacks and disclose …
The Register, The Daily Telegraph, UPS hit by DNS hack
Readers of British technology news and opinion website The Register got an unwelcome surprise when they tried to access it yesterday: But, what at first looked like a …
BackBox Linux 2 for penetration testers
BackBox is a Linux distribution based on Ubuntu. It has been developed to perform penetration tests and security assessments. Designed to be fast, easy to use and provide a …
Week in review: Anonymous arrests, Kernel.org and DigiNotar breaches, Google servers as a DDoS tool
Here’s an overview of some of last week’s most interesting news and interviews: Disaster preparedness tips for computers ISACA offers tips to the public and …
How the unredacted US cables were revealed to the public
It seems that the cat is out of the box. Only a few days after former WikiLeaks staffer Herbert Snorrason refused to say who inadvertently made public the password for the …
Alleged Anonymous members arrested in Ireland
Two more alleged Anonymous members have been arrested yesterday in Ireland in connection to the January defacement of the website belonging to the Fine Gael political party. …
Featured news
Resources
Don't miss
- NTLM relay attacks are back from the dead
- Africa’s cybersecurity crisis and the push to mobilizing communities to safeguard a digital future
- Google open-sources privacy tech for age verification
- You can’t trust AI chatbots not to serve you phishing pages, malicious downloads, or bad code
- Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)