Stuff that Tweaks
Follow
Find tag "security"
1.2K views | +0 today
Stuff that Tweaks
Look for fantasy, science, fiction, technology, marketing and IP.
Curated by Asil
Your new post is loading...
Your new post is loading...
Rescooped by Asil from Gentlemachines
Scoop.it!

Why Heartbleed is the most dangerous security flaw on the web

Why Heartbleed is the most dangerous security flaw on the web | Stuff that Tweaks | Scoop.it
Monday afternoon, the IT world got a very nasty wakeup call, an emergency security advisory from the OpenSSL project warning about an open bug called "Heartbleed." The bug could be used to pull a...

Via Artur Alves
Asil's insight:

Has anyone seen any notices from ScoopIt about this?  Were their servers vulnerable to this exploit? 

more...
Henrik Safegaard - Cloneartist's curator insight, April 10, 3:16 AM

Seems 2 out of 3 servers is inflected or has been.


Apple, Google and Microsoft appear to be unaffected, along with the major e-banking services. Yahoo, on the other hand, was affected and leaking user credentials for a significant portion of the day before its core sites were fixed. More generally, any server running OpenSSL on Apache or Nginx will be affected, which implicates a huge variety of everyday websites and services.

Click to read more.

Artur Alves's comment, April 10, 8:42 AM
I am scooping two more pieces on Heartbleed
Asil's comment, April 10, 11:07 AM
I put a ticket in with ScoopIt asking them to advise what the situation is with their servers. So far, have only received the automatic response. I'm still not finding anything official posted by ScoopIt themselves, but a user has started a ScooptIt topic on the exploit: http://www.scoop.it/t/heartbleed
Scooped by Asil
Scoop.it!

Technology Companies Confront a Scourge of the Internet - New York Times (blog)

Technology Companies Confront a Scourge of the Internet - New York Times (blog) | Stuff that Tweaks | Scoop.it

BBC NewsTechnology Companies Confront a Scourge of the InternetNew York Times (blog)For the past 18 months, engineers at PayPal, Google, Facebook, Yahoo, AOL, Microsoft and nine other technology companies have spent their off-hours (and some...DMARC requires that members adopt e-mail authentication policies whereby any e-mail that claims to be from their domain must pass one of two authentication tests. If an e-mail doesn’t pass muster, a sender can tell the e-mail providers to quarantine the e-mail or reject it outright. In turn, senders can get real-time reporting on the state of their spoofing problems."  No more peni spams for you!

more...
No comment yet.
Scooped by Asil
Scoop.it!

Electronic Security a Worry in an Age of Digital Espionage

Electronic Security a Worry in an Age of Digital Espionage | Stuff that Tweaks | Scoop.it

Information has become easier to steal over the Internet because employees can carry proprietary data around. ... The implication, said Jacob Olcott, a cybersecurity expert at Good Harbor Consulting, was that devices brought into China were hacked. “Everybody knows that if you are doing business in China, in the 21st century, you don’t bring anything with you. That’s ‘Business 101’ — at least it should be.

more...
No comment yet.