Forgot your password?
Close
typodupeerror
Security

Submission + - GPRS Can be Hacked Easily Claims German Researcher (itproportal.com)

Submitted by hypnosec
hypnosec writes: A German technology researcher on Wednesday showed global mobile makers and technology firms how General Packet Radio Service (GPRS) can easily be tapped, intercepted, and decrypted with an average mobile phone and a few applications. According to the New York Times, Karsten Nohl, a computer engineer and a mobile security researcher demonstrated the fellow researchers gathered to attend Chaos Communication Camp, a Berlin-based hackers event how to intercept the voice or data messaged sent across mobile devices over the GPRS easily owing to weak protection provided by mobile network carriers for data information. Nohl in collaboration with his colleague Luca Melette tapped the information within a radius of five kilometers using a seven year old inexpensive mobile phone from Motorola.
Security

Submission + - Why Companies Knowingly Ship Insecure Devices (securityweek.com)

Submitted by wiredmikey
wiredmikey writes: A recent survey which included responses from 800 engineers and developers that work on embedded devices, revealed that 24% of respondents knew of security problems in their company’s products that had not been disclosed to the public before the devices were shipped. But just what that means in terms of attitudes towards security may be more complex than it seems.

Additionally, just 41% said their company has “allocated sufficient time and money to secure” its device products against hacks and attacks. Despite this, 64 percent felt that when engineers call attention to potential security problems, “those problems are addressed before the device is released.”

So what exactly does this illustrate about the state of security in the development process? The answer, some say, is a jumbled collage of business pressures, bug prioritization and varying attention to security.
Windows

Submission + - Microsoft Patches 1990s-Era 'Ping of Death' (computerworld.com)

Submitted by
CWmike
CWmike writes: "Microsoft on Tuesday issued 13 security updates that patched 22 vulnerabilities in Internet Explorer, Windows, Office and other software, including one that harked back two decades to something dubbed 'Ping of Death.' While other patched vulnerabilities we more serious, one marked 'CVE-2011-1871' brought back memories for nCircle's Andrew Storms. 'This looks like the Ping of Death from the early-to-mid 1990s,' he said. 'Then, when a specially-crafted ping request was sent to a host, it caused the Windows PC to blue screen, and then reboot.' Two decades ago, the Ping of Death was used to bring down Windows PCs remotely, often as a way to show the instability of the operating system. 'People would say, 'You're stupid to put your machines on the Internet.'' said Storms. 'My suspicion is that if this catches fire and someone writes a small attack tool and releases it, you could see [Windows PCs] blue screened at your local coffee shop,' Storms said."
Security

Submission + - PayPal hands over 1,000 IP Addresses to the FBI (tekgoblin.com) 3

Submitted by
tekgoblin
tekgoblin writes: "PayPal was attacked by Anonymous last year when they had blocked the Wikileaks accounts transactions. Now PayPal has finally come up with enough evidence to strike back at Anonymous with the help of the FBI. PayPal has come up with a list of over 1,000 IP Addresses left behind when they were attacked by Anonymous."

Submission + - FBI defend raids on Texas Datacenter. (wired.com) 1

Submitted by Aryden
Aryden writes: Wired Reports: "The FBI on Tuesday defended its raids on at least two data centers in Texas, in which agents carted out equipment and disrupted service to hundreds of businesses.

The raids were part of an investigation prompted by complaints from AT&T and Verizon about unpaid bills allegedly owed by some data center customers, according to court records. One data center owner charges that the telecoms are using the FBI to collect debts that should be resolved in civil court. But on Tuesday, an FBI spokesman disputed that charge."

Slashdot Top Deals

All the simple programs have been written.

Close