Wednesday, April 2nd, 2008
A British security researcher has demonstrated a "biologging" system for intercepting biometric authentication data, warning that attacks on biometric systems could become relatively straightforward if current practices don't change.
Matthew Lewis, of London-based Information Risk Management, demonstrated a proof-of-concept biologger last week at Black Hat Amsterdam and released the tool's source ...
Posted in Hardware, Privacy, Security | No Comments
Wednesday, April 2nd, 2008
Injected iframes into legitimate sites are becoming more and more common these days. One of the latest targets is a Chinese government site at www.zhangzhu.gov.cn:
Please note that while the site adminstrators have been notified, the injected iframe is still present in the site at the time of this posting.
The iframe ...
Posted in Coding, Internet, Security | No Comments
Monday, March 31st, 2008
A wave of April Fool's Day related Storm mails have just been sent out. Similar as the other times with a link that points to an IP address.
Posted in Coding, Internet, Privacy, Security | No Comments
Wednesday, March 26th, 2008
winlockpwn is a memory analysis tool released by Adam Boileau of storm.net.nz. This utility exploits firewire's direct memory access. The operating system allows firewire devices to directly read/write memory without having to go through the processor. Sounds handy right? I installed winlockpwn on Ubuntu 7.10 and a fully patched Windows ...
Posted in Internet, Linux, Privacy, Security, Windows | 2 Comments
Tuesday, March 18th, 2008
Hot on the heels of a recent hack in which 10,000 sites were compromised, researchers have disclosed a new large-scale attack..
Researchers at McAfee estimated that the attack has been active for roughly one week, and in that time frame has managed to place itself on roughly 200,000 web pages.
Most of ...
Posted in Internet, Security | No Comments
