Featured Slideshow

http://cdn.phys.org/newman/gfx/news/2014/yvgtujyb.jpg

Hackathon team's GoogolPlex gives Siri extra powers

Friday, April 18, 2014

Posted by l33tdawg

0 comment(s)

L33tdawg: Speaking of hackathons, registration for #HackWEEKDAY at HITB Haxpo is still open with some awesome prizes up for grabs including of course EUR1337 for the 'most l33t coder' sponsored by... read more

http://cdn.arstechnica.net/wp-content/uploads/2014/04/146441042_06a1579994_z.jpg

75-year-old human cloned for the production of stem cells

Friday, April 18, 2014

Posted by l33tdawg

Science

0 comment(s)

Several years ago, as the therapeutic potential of stem cells was first being recognized, the only way to create them was to harvest cells from an early embryo. That embryo could come from the large... read more

http://www.cnet.com/news/facebook-launches-nearby-friends/#ftag=CAD590a51e

Facebook adds new Nearby Friends feature to engage mobile users

Thursday, April 17, 2014

Posted by l33tdawg

Facebook, Industry News

0 comment(s)

Facebook has spent a lot of time recently talking about anything but Facebook. Instead, the company has spent billions buying technology and developing new apps separate from the Facebook service.... read more

Critical Java Update Plugs 37 Security Holes

Thursday, April 17, 2014

Posted by l33tdawg

Java, Security

0 comment(s)

Oracle has pushed a critical patch update for its Java SE platform that fixes at least 37 security vulnerabilities in the widely-installed program. Several of these flaws are so severe that they are... read more

Top Chinese hacking team reveals members' identities

Thursday, April 17, 2014

Posted by l33tdawg

China, Hackers, Security

0 comment(s)

The Keen, a top hacking team which took down Windows 8.1. Adobe Flash in just 15 seconds and Apple’s Safari Mac OS X Mavericks system in only 20 seconds during a Pwn2Own Vancouver event in March, has... read more

SSL

First sites admit data loss through Heartbleed attacks

Submitted by l33tdawg on Tue, 2014-04-15 05:07

http://core0.staticworld.net/images/article/2014/04/heartbleed-100260998-orig-100261478-large.jpg

Canada’s tax authority and a popular British parenting website both lost user data after attackers exploited the Heartbleed SSL vulnerability, they said Monday.

The admissions are thought to be the first from websites that confirm data loss as a result of Heartbleed, which was first publicized last Tuesday. The flaw existed in Open SSL, a cryptographic library used by thousands of websites to enable encryption, and was quickly labeled one of the most serious security vulnerabilities in years.

Tags:

Security

SSL

Read more about First sites admit data loss through Heartbleed attacks
11089 reads

OpenSSL: The single line of code that broke online security

Submitted by l33tdawg on Mon, 2014-04-14 05:11

http://cdn.mg.co.za/crop/content/images/2013/12/09/passwordcomputerreuters.jpg/676x380/

On New Years Eve in 2011, at one minute before 11pm, a British computer consultant named Stephen Henson finished testing a new version of a popular piece of free security software. With a few keystrokes he released OpenSSL version 1.0.1 into the public domain. Now, more than two years later, the events of that night have shaken the foundations of the internet.

Tags:

Security

SSL

Tests confirm Heartbleed bug can expose server's private key

Submitted by l33tdawg on Mon, 2014-04-14 05:03

http://s2.djyimg.com/n3/eet-content/uploads/2014/04/heartbleed1-676x450.jpg

Four researchers working separately have demonstrated a server’s private encryption key can be obtained using the Heartbleed bug, an attack thought possible but unconfirmed.

The findings come shortly after a challenge created by CloudFlare, a San Francisco-based company that runs a security and redundancy service for website operators.

Tags:

Security

SSL

Heartbleed exploit, patch, both released

Submitted by l33tdawg on Mon, 2014-04-14 04:57

As the Heartbleed fallout continues, the good news is that code to fix the problem in OpenSSL has been released. The bad news is that exploit code is also available.

Let's start with the latter, released by a chap who took up Cloudlare's challenge to coders in the hope someone, somewhere, would be able to use Heartbleed to extract a private SSL key from an undefended server it erected.

Tags:

Security

SSL

Read more about Heartbleed exploit, patch, both released
555 reads

'Heartbleed' bug in OpenSSL puts encrypted communications at risk

Submitted by l33tdawg on Tue, 2014-04-08 04:18

Computer security experts are advising administrators to patch a severe flaw in a software library used by millions of websites to encrypt sensitive communications.

The flaw, nicknamed “Heartbleed,” is contained in several versions of OpenSSL, a cryptographic library that enables SSL (Secure Sockets Layer) or TLS (Transport Security Layer) encryption. Most websites use either SSL or TLS, which is indicated in browsers with a padlock symbol.

Tags:

SSL

Security

Contact Us

Hack In The Box

36th Floor, Menara Maxis,
Kuala Lumpur City Centre
50088 Kuala Lumpur
Malaysia

Tel: +603-2615-7299
Fax: +603-2615-0088

Link Exchange

Security Central Forum
Dailyrotation
Astalavista
Go Hacking
XSSed.com
madirish.net
SecurityXploded

Featured Slideshow

Hackathon team's GoogolPlex gives Siri extra powers

75-year-old human cloned for the production of stem cells

Facebook adds new Nearby Friends feature to engage mobile users

Critical Java Update Plugs 37 Security Holes

Top Chinese hacking team reveals members' identities

SSL

First sites admit data loss through Heartbleed attacks

OpenSSL: The single line of code that broke online security

Tests confirm Heartbleed bug can expose server's private key

Heartbleed exploit, patch, both released

'Heartbleed' bug in OpenSSL puts encrypted communications at risk

Pages

Friday, April 18th

Thursday, April 17th

Wednesday, April 16th

Tuesday, April 15th

Monday, April 14th

Contact Us

Recent comments

Link Exchange

You are here

SSL

Pages