Mon, 27 Mar 2017 10:31:52 +0000LinuxSecurity.com: Over the weekend, Chris Byrne, an information security consultant and instructor for Cloud Harmonics, published a post to Facebook outlining a serious problem with the processes and third-party API used to deliver and manage Symantec SSL certificates.
Fri, 24 Mar 2017 10:05:00 +0000LinuxSecurity.com: Google has announced plans to reduce the trust in Symantec TLS certificates until a point is reached in early 2018 where Chrome 64 will only trust certificates issued for 279 days or less from the security giant and its subsidiaries.
Fri, 24 Mar 2017 10:03:46 +0000LinuxSecurity.com: FBI director James Comey has suggested that an international agreement between governments could ease fears about IT products with government-mandated backdoors, but privacy advocates are doubtful.
Thu, 23 Mar 2017 08:15:56 +0000LinuxSecurity.com: Linux Mint has been lambasted by some in the media for security problems over the last few years. But how accurate are such perceptions? Does Linux Mint really suffer from security problems or is it all much ado about nothing?
Thu, 23 Mar 2017 08:12:07 +0000LinuxSecurity.com: Mozilla last week patched a Firefox vulnerability just a day after it was revealed during Pwn2Own, the first vendor to fix a flaw disclosed at the hacking contest.
Wed, 22 Mar 2017 10:02:31 +0000LinuxSecurity.com: LastPass has closed a remote code execution vulnerability on its Chrome extension, but according to Google Project Zero researcher Tavis Ormandy, issues remain on its Firefox extension, as well as details on another password-stealing vulnerability to come. Writing in the Project Zero issue tracker, Ormandy said it was possible to proxy untrusted messages to LastPass.
Fri, 24 Mar 2017 03:10:00 +0000LinuxSecurity.com: New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. [More Info...]
Fri, 24 Mar 2017 03:10:00 +0000LinuxSecurity.com: New mcabber packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix a security issue. [More Info...]
Thu, 23 Mar 2017 07:30:00 +0000LinuxSecurity.com: Security Report Summary
Thu, 23 Mar 2017 04:15:00 +0000LinuxSecurity.com: Security Report Summary
Thu, 23 Mar 2017 00:08:00 +0000LinuxSecurity.com: An update for openjpeg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which [More...]
Wed, 22 Mar 2017 21:30:00 +0000LinuxSecurity.com: An update for icoutils is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, [More...]
Fri, 21 Oct 2016 10:18:59 +0000LinuxSecurity.com: Social engineering is the practice of learning and obtaining valuable information by exploiting human vulnerabilities. It is an art of deception that is considered to be vital for a penetration tester when there is a lack of information about the target that can be exploited.
Fri, 23 Sep 2016 10:53:29 +0000LinuxSecurity.com: When you’re dealing with a security incident it’s essential you – and the rest of your team – not only have the skills they need to comprehensively deal with an issue, but also have a framework to support them as they approach it. This framework means they can focus purely on what they need to do, following a process that removes any vulnerabilities and threats in a proper way – so everyone who depends upon the software you protect can be confident that it’s secure and functioning properly.