Networking

A flaw in widely used Unix software could allow attackers to gain control over computers running
Solaris, HP-UX and several versions of Linux, security analysts and the company selling the
software warned Monday.

SSH Communications Security, a Finnish company, reported Monday that the latest edition of its SSH Secure
Shell software, version 3.0.0, released June 21, can let an attacker gain control over some Unix or Linux
computers.

It appears that after two years of simultaneously entertaining and disgusting it's visitors, StileProject is calling it quits.

The site, which was hacked earlier this morning had all of it's contents rm'd by none other than "fluffybunny". The admin did not have a full backup and has decided to just shut down. While I didn't frequent Stileproject, it's sad to see someones hobby destroyed in such a malicious way. So I bow my head and give a moment of silence to another casualty in the war against stupidity.

Traditionally, security issues are tackled by formulating a security policy, educating staff in the importance of security, and employing appropriate tools such as anti-virus software, VPNs and firewalls. These measures can be further enhanced by more sophisticated measures such as firewall reporting, access reporting and traffic analysis so you can detect any suspicious activity.

Internet protocol virtual private networks (VPNs) have become a mainstream technology, one that so far has proved immune to the continuing economic woes, according to a recent report by IDC. The report says that demand for these services has never been higher and is on the verge of exploding. IDC forecasts revenue generated from IP VPN equipment will more than triple from $2.3 billion in 2000 to $7.5 billion in 2005.

You have learned well master "Young Thief" says Yoda, head of the Lucas Arts online support team. 'Young Thief' was able to defeat the Jedi guards and hack the Lucas Arts Support area on the web site on Sunday July 22nd.

Mirror of Defacement.

Well it appears the hackers from Perfect Brazil are trying to send a message to Microsoft's security engineers. PB have hacked the Microsoft Network's Career Section and replaced it with their own defacement. The hacking occurred on the 22nd of July and yet as of this morning July 23rd at 9:15am the defacement was still online and being displayed to the public.

Mirror of the defacement.

MUST READ!!! ... MUST READ!!!

I'm hoping all of you that frequent HITB will take a look at this article. What this is, is an open letter to the hacker community concerning the future of DefCon. Dark Tangent (A.K.A. Jeff Moss) has asked for feedback in order to help shape the way DefCon is presented in the coming years. Please read this and give all the advice you can, this is, to my knowledge, the first time this has ever been done.

DEF CON 9 - Open Letter to the community

United Airlines has suffered a glitch in their security system that would allow users to literally shift points to themselves and score free flights worldwide.

CERT released this advisory today at 6pm and states that "this year, CERT has seen a significant increase in activity resulting in compromises of home user machines. In many cases, these machines are then used by intruders to launch attacks against other organizations. Home users have generally been the least prepared to defend against attacks.

On a day that the White House's Web site came under attack, U.S. Attorney General John Ashcroft announces a new initiative that includes added personnel to fight hackers and pirates. U.S. Attorney General John Ashcroft said federal officials would crack down on an increasing wave of cybercrime by beefing up 10 specialized units so they can better concentrate on catching hackers and pirates.

The squads, dubbed Computer Hacking and Intellectual Property, or CHIP, units will focus on copyright theft, computer fraud and hacking.