IT-Security
 
  1. IT-Security

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese
Anzeige

IT-Security


Suchen

Intel Details Cascade Lake, Hardware Mitigations for Meltdown, Spectre

IT Security Nachrichten vom 22.08.2018 um 00:00 Uhr | Quelle tech.slashdot.org
An anonymous reader shares a report: Ever since Meltdown and Spectre were disclosed, Intel's various customers have been asking how long it would take for hardware fixes to these problems to ship. The fixes will deploy with Cascade Lake, Intel's next server platform due later this year, but the company is finally lifting the lid on some of those improvements and security enhancements at Hot Chips this week. One major concern? Putting back the performance that previous solutions have lost as a result of Meltdown and Spectre. It's hard to quantify exactly what this looks like, because the impact tends to be extremely workload-dependent. But Intel's guidance has been in the 5-10 percent range, depending on workload and platform, and with the understanding that older CPUs were sometimes hit harder than newer ones. Intel wasn't willing to speak to exactly what kind of uplift users should expect, but Lisa Spelman, VP of Intel's Data Center Group, told AnandTech that the new hardware solutions would have an "impact" on the performance hit from mitigation, and that overall performance would improve at the platform level regardless. Variant 1 will still require software-level protections, while Variant 2 (that's the "classic" Spectre attack) will require a mixture of hardware and software protection. Variant 3 (Meltdown) will be blocked in hardware, 3a (discovered by ARM) patched via firmware, with Variant 5 (Foreshadow) also patched in hardware.

Read more of this story at Slashdot.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Muay Thai Coaching Takeaways for Managing InfoSec Teams

IT Security Nachrichten vom 21.08.2018 um 23:41 Uhr | Quelle reddit.com
Muay Thai Coaching Takeaways for Managing InfoSec Teams submitted by /u/ju1i3k
[link] [comments]

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Ryuk Ransomware Emerges in Highly Targeted, Highly Lucrative Campaign

IT Security Nachrichten vom 21.08.2018 um 23:33 Uhr | Quelle threatpost.com
The highly sophisticated operation shares code with the Hermes malware, and may be linked to the Lazarus Group APT actor.
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

How Microsoft spotted another Russian hacking attempt

IT Security Nachrichten vom 21.08.2018 um 23:28 Uhr | Quelle cnet.com
Also: How it all fits in with a larger campaign to influence elections.
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Super-mugs: Hackers claim to have snatched 20k customer records from Brit biz Superdrug

IT Security Nachrichten vom 21.08.2018 um 23:23 Uhr | Quelle go.theregister.com

Or just 386, according to chain

Hackers claim to have grabbed the personal details of almost 20,000 bods who shopped online at Superdrug, the British cosmetics retailer has confirmed. Payment card details are not said to be among the haul.…


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Java and JavaScript Remain the Top Enterprise Developer Languages For the Cloud, Survey Finds

IT Security Nachrichten vom 21.08.2018 um 23:15 Uhr | Quelle developers.slashdot.org
Programmers may love hot newer languages like Kotlin and Rust, but according to a Cloud Foundry Foundation (CFF) recent survey of global enterprise developers and IT decision makers, Java and Javascript are the top enterprise languages. ZDNet: That said, the CFF also found [PDF] that, "More and more, businesses are employing a polyglot and a multi-platform strategy to meet their exact needs." The CFF discovered 77 percent of enterprises are using or evaluating Platforms-as-a-Service (PaaS); 72 percent are using or considering containers; and 46 percent are using or thinking about serverless computing. Simultaneously, more than a third (39 percent) are using all three technologies together. For companies this "flexibility of cloud-native practices enables [companies to move] away from a monolithic approach and towards a world of computing that is flexible, portable and interoperable." That means, while Java and JavaScript are only growing ever more popular, the larger the company, the more languages are used. After the Java twins, C++, C#, Python, and PHP are the most popular languages.

Read more of this story at Slashdot.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Mark Mulvany, Sr. Information Security - Secure Digital Life #76

IT Security Video vom 21.08.2018 um 22:50 Uhr | Quelle youtube.com

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Verizon Throttled Fire Department's 'Unlimited' Data During Calif. Wildfire

IT Security Nachrichten vom 21.08.2018 um 22:34 Uhr | Quelle tech.slashdot.org
Verizon Wireless's throttling of a fire department that uses its data services has been submitted as evidence in a lawsuit that seeks to reinstate federal net neutrality rules. From a report: "County Fire has experienced throttling by its ISP, Verizon," Santa Clara County Fire Chief Anthony Bowden wrote in a declaration. "This throttling has had a significant impact on our ability to provide emergency services. Verizon imposed these limitations despite being informed that throttling was actively impeding County Fire's ability to provide crisis-response and essential emergency services." Bowden's declaration was submitted in an addendum to a brief filed by 22 state attorneys general, the District of Columbia, Santa Clara County, Santa Clara County Central Fire Protection District, and the California Public Utilities Commission. The government agencies are seeking to overturn the recent repeal of net neutrality rules in a lawsuit they filed against the Federal Communications Commission in the US Court of Appeals for the District of Columbia Circuit. "The Internet has become an essential tool in providing fire and emergency response, particularly for events like large fires which require the rapid deployment and organization of thousands of personnel and hundreds of fire engines, aircraft, and bulldozers," Bowden wrote. Santa Clara Fire paid Verizon for "unlimited" data but suffered from heavy throttling until the department paid Verizon more, according to Bowden's declaration and emails between the fire department and Verizon that were submitted as evidence.

Read more of this story at Slashdot.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Security MadLibs: Your IoT electrical outlet can now pwn your smart TV

IT Security Nachrichten vom 21.08.2018 um 22:30 Uhr | Quelle go.theregister.com

McAfee finds new way to break thing that shouldn't be on your home network in the first place

A security vulnerability in "smart" power plugs can be exploited to infiltrate local computer networks.…


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Dark Tequila: A Distilled Threat for Mexican Targets

IT Security Nachrichten vom 21.08.2018 um 22:25 Uhr | Quelle threatpost.com
Dark Tequila, which has been active since 2013, is highly modular and targets victims in Mexico.
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Kali Linux 2018.3 Release - Penetration Testing and Ethical Hacking Linux Distribution

IT Security Nachrichten vom 21.08.2018 um 22:15 Uhr | Quelle feedproxy.google.com

Kali 2018.3 brings the kernel up to version 4.17.0 and while 4.17.0 did not introduce many changes, 4.16.0 had a huge number of additions and improvements including more Spectre and Meltdown fixes, improved power management, and better GPU support.

New Tools and Tool Upgrades

Since our last release, we have added a number of new tools to the repositories, including:
  • idb – An iOS research / penetration testing tool
  • gdb-peda – Python Exploit Development Assistance for GDB
  • datasploit – OSINT Framework to perform various recon techniques
  • kerberoast – Kerberos assessment tools

In addition to these new packages, we have also upgraded a number of tools in our repos including aircrack-ng, burpsuite, openvas,wifite, and wpscan.
For the complete list of updates, fixes, and additions, please refer to the Kali Bug Tracker Changelog.

Download Kali Linux 2018.3

If you would like to check out this latest and greatest Kali release, you can find download links for ISOs and Torrents on the Kali Downloads page along with links to the Offensive Security virtual machine and ARM images, which have also been updated to 2018.3. If you already have a Kali installation you’re happy with, you can easily upgrade in place as follows.
root@kali:~# apt update && apt -y full-upgrade
If you come across any bugs in Kali, please open a report on our bug tracker. It’s more than a little challenging to fix what we don’t know about.

Making sure you are up-to-date

To double check your version, first make sure your network repositories is enabled.
root@kali:~# cat</etc/apt/sources.list
deb http://http.kali.org/kali kali-rolling main non-free contrib
EOF
root@kali:~#

Then after running apt -y full-upgrade, you may require a reboot before checking:
root@kali:~# grep VERSION /etc/os-release
VERSION="2018.3"
VERSION_ID="2018.3"
root@kali:~#



1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Black Hat & DEF CON 2018 - Tradecraft Security Weekly #28

IT Security Video vom 21.08.2018 um 22:12 Uhr | Quelle youtube.com

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Airmail 3 Exploit Instantly Steals Info from Apple Users

IT Security Nachrichten vom 21.08.2018 um 22:05 Uhr | Quelle threatpost.com
Attackers can abuse URL requests processed by an email program for Mac to steal files from the victim -- sometimes without user interaction.
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

“We are getting robbed” FAAC

IT Security Nachrichten vom 21.08.2018 um 21:55 Uhr | Quelle reddit.com
“We are getting robbed” FAAC submitted by /u/ShaolinLOD
[link] [comments]

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camarasgp.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:52 Uhr | Quelle zone-h.org
http://www3.camarasgp.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaramunizfreire.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:52 Uhr | Quelle zone-h.org
http://www3.camaramunizfreire.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camarasantateresa.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:52 Uhr | Quelle zone-h.org
http://www3.camarasantateresa.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmlaranjadaterra.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:52 Uhr | Quelle zone-h.org
http://www3.cmlaranjadaterra.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaracolatina.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.camaracolatina.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmbe.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.cmbe.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmav.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.cmav.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaravilavalerio.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.camaravilavalerio.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaraanchieta.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.camaraanchieta.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaraviana.es.gov.br/Arquivo/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.camaraviana.es.gov.br/Arquivo/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmguacui.es.gov.br/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.cmguacui.es.gov.br/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.camaravilapavao.es.gov.br/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.camaravilapavao.es.gov.br/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmcc.es.gov.br/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.cmcc.es.gov.br/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.cmg.es.gov.br/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.cmg.es.gov.br/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

http://www3.boaesperanca.es.gov.br/pw.html

Hacking vom 21.08.2018 um 21:51 Uhr | Quelle zone-h.org
http://www3.boaesperanca.es.gov.br/pw.html notified by ProtoWave Reloaded
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Google's Data Collection is Hard To Escape, Study Claims

IT Security Nachrichten vom 21.08.2018 um 21:50 Uhr | Quelle yro.slashdot.org
Citing a report [PDF] published on Tuesday by Digital Content Next and Vanderbilt University, CNN writes that "short of chucking your phone into the river, shunning the internet, and learning to read paper maps again, there's not much you can do to keep Google from collecting data about you." From the report: So says a Vanderbilt University computer scientist who led an analysis of Google's data collection practices. His report, released Tuesday, outlines a myriad ways the company amasses information about the billions of people who use the world's leading search engine, web browser, and mobile operating system, not to mention products like Gmail, platforms like YouTube, and products like Nest. Although the report doesn't contain any bombshells, it presents an overview of Google's efforts to learn as much as possible about people. [...] Google collects far more data than Facebook, according to the report, and it is the world's largest digital advertising company. Its vast portfolio of services, from Android to Google Search to Chrome to Google Pay, create a firehose of data. Professor Douglas Schmidt and his team intercepted data as it was transmitted from Android smartphones to Google servers. They also examined the information Google provides users in its My Activity and Google Takeout tools, as well as the company's privacy polices and previous research on the topic. The researchers claims that almost every move you make online is collected and collated, from your morning routine (such as music tastes, route to work, and news preferences) to errands (including calendar appointments, webpages visited, and purchases made). "At the end of the day, Google identified user interests with remarkable accuracy," the report states. In a statement, Google said, "This report is commissioned by a professional DC lobbyist group, and written by a witness for Oracle in their ongoing copyright litigation with Google. So, it's no surprise that it contains wildly misleading information."

Read more of this story at Slashdot.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Nokia 5.1 Plus: 'Notch'-Smartphone bald ab 199 Euro in Europa

IT Security Nachrichten vom 21.08.2018 um 21:49 Uhr | Quelle winfuture.de
Smartphone, Nokia, HMD global, HMD, Nokia X5, Nokia 5.1 Plus Als HMD Global vor einigen Tagen groß zu einem Event in Indien einlud, war davon die Rede, dass man eines der am sehnsüchtigst erwarteten Smartphones des Jahres vorstellen würde. Heute fand die Veranstaltung nun statt - und es gab "nur" das Nokia 5.1 Plus und Nokia 6.1 Plus zu sehen. Es handelt sich um die internationalen Versionen der in China bereits erhältlichen Modelle Nokia X5 und Nokia X6, die nun auch bald in Deutschland kommen dürften. (Weiter lesen)
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Microsoft verteilt neue Intel Microcode-Patches gegen Spectre und L1TF

IT Security Nachrichten vom 21.08.2018 um 21:46 Uhr | Quelle winfuture.de
Sicherheitslücke, Intel, Spectre, Meltdown, Foreshadow, SGX Microsoft startet die Verteilung neuer Microcode-Updates, die CPU-Schwachstellen von Intel beheben. Dabei sind jetzt auch Patches für die erst vor kurzem vorgestellte Foreshadow/L1 Terminal Fault (L1TF)-Schwachstelle. (Weiter lesen)
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CrowdStrike Adds Malware Search Engine to 'Hybrid Analysis'

IT Security Nachrichten vom 21.08.2018 um 21:43 Uhr | Quelle feedproxy.google.com

Endpoint security firm CrowdStrike on Tuesday announced that new search capabilities have been added to the company’s Hybrid Analysis service.

read more


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Black Hat, USB Harpoons, & PHP Attacks - Hack Naked News #185

IT Security Video vom 21.08.2018 um 21:37 Uhr | Quelle youtube.com

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Use Debian? Want Intel's latest CPU patch? Small print sparks big problem

IT Security Nachrichten vom 21.08.2018 um 21:34 Uhr | Quelle go.theregister.com

Linux distro hits the brakes on rolling out microcode for security bugs in license row

At least one Linux distribution is withholding security patches that mitigate the latest round of Intel CPU design flaws – due to a problematic license clash.…


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Seitennavigation

Seite 1 von 3.807 Seiten (Bei Beitrag 1 - 35)
133.240x Beiträge in dieser Kategorie

Nächste 2 Seite | Letzte Seite
[ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ]