InfoSec News
2.3K views | +0 today
Follow
InfoSec News
News and commentary on information security issues.
Curated by James Burns
Your new post is loading...
Your new post is loading...
Scooped by James Burns
Scoop.it!

The Colombian army sent a hidden message to hostages inside a pop song

To reach hostages held deep in the Colombian jungle, the Colombian army turned to an ad man and wrote a pop song
more...
No comment yet.
Scooped by James Burns
Scoop.it!

From 0-day to exploit – Buffer overflow in Belkin N750 (CVE-2014-1635) | INTEGRITY Labs

From 0-day to exploit – Buffer overflow in Belkin N750 (CVE-2014-1635) | INTEGRITY Labs | InfoSec News | Scoop.it
more...
No comment yet.
Scooped by James Burns
Scoop.it!

Inside Shellshock: How hackers are using it to exploit systems

Inside Shellshock: How hackers are using it to exploit systems | InfoSec News | Scoop.it
James Burns's insight:

As much as I'm skeptical of CloudFlare's self promotion, this is a decent layout of ongoing attacks.

more...
No comment yet.
Scooped by James Burns
Scoop.it!

With 256-bit encryption, Acrobat 9 passwords still easy to crack | ZDNet

With 256-bit encryption, Acrobat 9 passwords still easy to crack | ZDNet | InfoSec News | Scoop.it
Following ElcomSoft's claim that despite the 256-bit encryption Acrobat 9 passwords are susceptible to more efficient brute forcing than Acrobat 8...
James Burns's insight:

Adobe totally breaks encryption in Acrobat 9. Like really, worthless unless you're using really long passwords. Even then...

more...
No comment yet.
Scooped by James Burns
Scoop.it!

w00tsec: Scan the Internet & Screenshot All the Things

w00tsec: Scan the Internet & Screenshot All the Things | InfoSec News | Scoop.it
James Burns's insight:

This is probably illegal...

more...
No comment yet.
Scooped by James Burns
Scoop.it!

Why one of cybersecurity’s thought leaders uses a pager instead of a smart phone

Why one of cybersecurity’s thought leaders uses a pager instead of a smart phone | InfoSec News | Scoop.it
A Q&A with Dan Geer.
more...
No comment yet.
Scooped by James Burns
Scoop.it!

Reverse Engineering a NAND Flash Device Management Algorithm | Joshua Wise's domain

Reverse Engineering a NAND Flash Device Management Algorithm | Joshua Wise's domain | InfoSec News | Scoop.it
more...
No comment yet.
Scooped by James Burns
Scoop.it!

Your Outlet Knows: How Smart Meters Can Reveal Behavior at Home, What We Watch on TV

Your Outlet Knows: How Smart Meters Can Reveal Behavior at Home, What We Watch on TV | InfoSec News | Scoop.it
Smart meters may be getting too smart for our own good.
James Burns's insight:

"The research, which was published in 2012, measured how much power it takes to display certain programs on a television screen. Looking at seven movies and two television shows on five different brands of TV sets, the researchers found that each program had a unique power signature based on how much electric current was needed to show the images on the screen. Among the programs used for the tests was "Star Trek.""

more...
No comment yet.
Scooped by James Burns
Scoop.it!

Last Week Tonight With John Oliver: General Keith Alexander Extended Interview (HBO) - YouTube

Subscribe to the Last Week Tonight YouTube: http://itsh.bo/1h6WGcg John Oliver interviews General Keith Alexander, former head of the NSA. General Alexander ...
more...
No comment yet.
Scooped by James Burns
Scoop.it!

Duplicate SSH Keys Everywhere

Duplicate SSH Keys Everywhere | InfoSec News | Scoop.it
Back in December when I revamped the SSH banner and started collecting the fingerprint I noticed an odd behavior. It turns out that a few SSH keys are used a lot more than once. For example, the following SSH fingerprint...
more...
No comment yet.
Scooped by James Burns
Scoop.it!

Keeping Secrets

Keeping Secrets | InfoSec News | Scoop.it
Four decades ago, university researchers figured out
the key to computer privacy, sparking a battle
with the National …
more...
No comment yet.
Scooped by James Burns
Scoop.it!

lcamtuf's blog: Bash bug: the other two RCEs, or how we chipped away at the original fix (CVE-2014-6277 and '78)

more...
No comment yet.
Scooped by James Burns
Scoop.it!

"If you are responsible for the security of any system, this is your immediate, ... | Hacker News

Any library anywhere in any application you run that calls out to bash that is called by any other library in that application, so long as that application is somehow hooked up to a web server, is potentially an unauthenticated GET request away from code execution; the exploit for this is potentially so simple that attackers can craft a single request, spider the Internet, and collect shells from applications you run that you forgot you even ran, at which point they'll own your whole data center.
more...
No comment yet.
Scooped by James Burns
Scoop.it!

PhD Football: Isolating Player Movement by Eliminating Camera Motion: An Ongoing Project

PhD Football: Isolating Player Movement by Eliminating Camera Motion: An Ongoing Project | InfoSec News | Scoop.it
James Burns's insight:

Not exactly InfoSec but serious cleverness in video processing.

more...
No comment yet.
Scooped by James Burns
Scoop.it!

Project Zero: The poisoned NUL byte, 2014 edition

James Burns's insight:

Proving once again that "not exploitable" is a matter of determination and skill.

more...
No comment yet.
Scooped by James Burns
Scoop.it!

The Matasano Crypto Challenges

James Burns's insight:

Get some experience breaking things people think are secure. It's pretty fun.

more...
No comment yet.
Scooped by James Burns
Scoop.it!

FOILing NYC’s Taxi Trip Data

FOILing NYC’s Taxi Trip Data | InfoSec News | Scoop.it
James Burns's insight:

GPS information for every fare. Medallion and hack license are unsalted hashes (trivially reversible). How long until famous people's paths have been identified?

more...
No comment yet.
Scooped by James Burns
Scoop.it!

Google Bought One Of The Hottest Enterprise Android Startups

Google Bought One Of The Hottest Enterprise Android Startups | InfoSec News | Scoop.it
Google has acquired Divide, a company that makes a popular app that lets you securely access corporate documents and email from your phone.
James Burns's insight:

Google going to implement base containerization?

more...
No comment yet.