Smart-tag technology using radio frequency ID is being developed without security in mind, raising concerns about consumer privacy and risks to security of the organizations using the tags.
Some of these risks were demonstrated today at the Black Hat Briefings security conference using a new hacker tool that lets users read and write to the tags.
Network security researcher Gerhard Eschelbeck reported Wednesday at the Black Hat Briefings in Las Vegas that two-and-a-half years' worth of vulnerability-scan data shows significant improvement made since 2003 in protecting the perimeter of enterprise networks. But his analysis also shows that systems within a corporate network are more likely to be attacked.
Eschelbeck, CTO of Qualys Inc., drew his statistical analysis from that company's security vulnerability database, which contains nearly 4 million vulnerabilities collected via 6.5 million scans.
AS VEGAS—It's as easy as "point, click, root." At a heavily attended panel Wednesday at the Black Hat security conference here, HD Moore and "spoonm" unveiled the latest release of the Metasploit Framework, an exploit tool designed to quickly take over a variety of target platforms.Although the framework was developed several months ago, the "preview release" of Version 2.2 offers users the opportunity to develop their own custom modules. The tool, written in Perl for Unix environments, also includes a Cygwin shell to enable it to run under Windows.
Privacy advocates may not be the only people taking issue with the current crop of radio-frequency identification tags--merchants will likely have problems with a lack of security as well, a German technology consultant said Wednesday.
The University of California's distributed-computing project that searches for extraterrestrial intelligence (Seti) was temporarily knocked offline by a distributed denial of service (DDoS) attack last week.
Seti requires computer users to download a screensaver-type program that automatically downloads, analyses and returns 'units' of data collected from the Arecibo radio telescope in Puerto Rico.