The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Advertisement

You can always use information security services, such as penetration testing to stay secure.


Security Bulletins
Latest Malware Updates

Trojan.Kasidet

07/22/2014

Trojan.ADH.SMH.2

07/22/2014

Trojan.Gen.SMH.2

07/22/2014

Backdoor.Korgapam

07/21/2014

Linux.Kaiten

07/18/2014

Packed.Generic.463

07/18/2014

PUA.Downloader

07/17/2014

Trojan.Pittyger

07/17/2014

Open source hardware can protect against NSA spying

Open source hardware can protect against NSA spying

Eli Dourado from George Mason University suggested to use an open source hardware in order to protect the companies against NSA spying. It will more effectively detect backdoors and vulnerabilities that are built by NSA or other government agencies in the companies' system.

"To make the Internet less susceptible to mass surveillance, we need to recreate the physical layer of its infrastructure on the basis of open-source principles," stated Dourado.

According to the researcher, the use of hardware with open source will succeed, since everyone will be able to modify it, and then provide a modified version to the others. This policy had positive results with the open source software, including Linux and Apache web-servers.

The information about the NSA and U.S. intelligence agencies surveillance became available thanks to the former NSA employee Edward Snowden. At the moment we know that the NSA was gaining access to confidential data on users of services and products provided by Microsoft, Apple and Google.

The documents revealed by Snowden also stated that NSA could intercept Internet traffic through routers and switches. The open source hardware will be really difficult to tap.

Opponents of Dourado’s policies say that, in practice, it will be very difficult for companies to keep track of all hardware upgrades , especially to continuously examine updates of low-level code in hardware.

(c) Naked Security


Security Advisories Database

Cross-site Scripting Vulnerability in IBM SmartCloud Provisioning Webmin

A cross-site scripting vulnerability was discovered in IBM SmartCloud Provisioning Webmin.

07/22/2014

Denial of service vulnerability in Oracle Hyperion Essbase

An attacker can perform a denial of service attack.

07/16/2014

Cross-site Scripting Vulnerability in SPA500 Series IP Phones

A cross-site scripting (XSS) vulnerability has been discovered in SPA500 Series IP Phones.

07/15/2014

Cross-site Scripting Vulnerability in Drupal Pane Module Title

A cross-site scripting vulnerability was found in Drupal Pane Module Title.

07/14/2014

Cross-site Scripting Vulnerability in Joomla! JChatSocial Component

A cross-site scripting vulnerability was found in Joomla! JChatSocial Component.

07/14/2014

Cross-site Scripting Vulnerability in Cisco Unified Communications Manager DNA viewfilecontents.do

A cross-site scripting (XSS) vulnerability has been discovered in Cisco Unified Communications Manager DNA viewfilecontents.do.

07/14/2014

Denial of service vulnerability in Cisco IOS XR Punt Policer

An attacker can perform a denial of service attack.

07/11/2014

Denial of service vulnerability in Linux Kernel System Call Auditing

An attacker can perform a denial of service attack.

07/09/2014

Denial of service vulnerability in IBM Flex System Manager Node (FSM) NTP Mode 7

An attacker can perform a denial of service attack.

07/09/2014

Denial of service vulnerability in Microsoft Service Bus AMQP Messages Handling

An attacker can perform a denial of service attack.

07/08/2014