Black Hat
169 Stories
Adobe: Time to step up security plate?
Insight From a security perspective, Adobe looks an awful lot like Microsoft did back when Windows was getting blasted by viruses and vulnerabilities and before Redmond beefed up its defenses.
Tags: Network security, Security Management, PC security, Data security, Business applications, Adobe Systems Inc., Macromedia Flash Player, Security, Adobe Acrobat Reader, patch management
Researchers to offer tool for hacking Oracle DBes
News During their upcoming presentation at Black Hat and Defcon hacker conferences, security experts will release tool that can be used to break into Oracle databases.
Tags: Business applications, Databases, Vulnerability, Database, Tool, SQL, SQL Injection, e-mail, hacking, Oracle Corp.
HP researchers develop browser-based darknet
News Company has come up with idea for encrypted communications network that could prove useful for businesses that want to keep files confidential.
Tags: Business applications, Web sites, Hewlett-Packard Co., Security, Conference, Web Browser, Cryptography, grid computing, Server, JavaScript
HP darknet 'not for dissidents'
News Technology developed by Hewlett-Packard to enable secure communications networks to be set up via a Web-browser should not be used by dissidents.
Tags: Data security, Network security, Hewlett-Packard Co., Security, Iran, Web Browser, Tool, U.S. Government, File-sharing, researcher
Security experts' sites hacked on eve of Black Hat conference
News Attackers post e-mail messages, passwords and other sensitive data stolen from security experts and others on hacked site of Dan Kaminsky.
Tags: Authentication and encryption, Network security, Security Management, Security, Conference, Server, e-mail, DNS, Internet, Black Hat
Researchers can attack mobile phones via spoofed SMS messages
News Researchers at the Black Hat security conference showed how an attacker could spoof a SMS message that appears to be sent from the carrier or some other trusted source.
Tags: Viruses and worms, Spam, PayPal, Message, Cell Phone, Carrier, Attack, Server, phone, Attacker
Apple fixing iPhone SMS security hole
News Vulnerability in the way iPhones handle text messages could be used to track the location of the phone, turn on the microphone, or turn phone into botnet zombie.
Tags: Mobile, Security Management, Mobile/Wireless, Mobile applications, Mobile platforms, Apple Inc., Security, Conference, co-author, RFC
Hacker named to US Homeland Security Advisory Council
News Hacker and Defcon founder Jeff Moss joins former FBI and CIA directors on council.
Tags: Security, Defense/military, Conference, computer, information system, Homeland Security, Hacker, Black Hat, Security, Ernst & Young LLP
Black Hat talk on Apple encryption canceled
News Researcher signed confidentiality agreements with Apple, preventing him from speaking on the topic or discussing the matter further.
Tags: Hacking, Security, Authentication and encryption, Network security, Security Management, Apple Inc., Cisco Systems Inc., Encryption, job, researcher
Intel releases Bios update
News Following the disclosure of a high-privilege rootkit for the Xen hypervisor, Intel has patched the Bios for affected desktop and mobile motherboards.
Tags: Operating systems, Intel Corp., Security, Mobile, Motherboard, Hypervisor, operating system, BIOS Update, Environment, BIOS
DNS exploit code is in the wild
News The urgency to patch clients and servers rises to a fever pitch as code to attack the Internet is released.
Tags: Security, Domain names, Web sites, Network security, Domain Name, consortium, exploit code, patch management, DNS, program manager
Looking inside the Storm worm botnet
News Venerable botnet encrypts its command codes using the current date.
Tags: Security, Network security, Spam and phishing, Viruses and worms, Authentication and encryption, Command, Worm, Encryption, SecureWorks Inc., P2P
Estonia posts its cybersecurity strategy
News Report seeks to establish good cybersecurity practices within the country while urging global condemnation of all cybersecurity threats in the future.
Tags: Security, Cybersecurity, Attack, Information Security, denial of service, food, information system, DOS, bank, blog
Security expert: DNS attacks are happening
News IOActive researcher Dan Kaminsky says people are looking for unpatched DNS systems and some attacks are due to a fatal vulnerability with the DNS Web address lookup system.
Tags: Network security, Domain names, Security, Vulnerability, Attack, Password, Server, phone, sensitive information, penetration testing
Microsoft to seek credit for finding vulnerabilities
News Software giant says it wants credit when it reports security flaws to third-party vendors.
Tags: Security, Software, Microsoft Corp., Vulnerability, software company, Environment, Microsoft Windows XP, Microsoft Security Response Center, responsible disclosure, researcher
