LinuxSecurity.com: Mozilla, the maker of the open source Firefox browser, is redoubling its efforts to check user created add-ons for viruses and Trojans after it discovered that a language pack on its official add-on page had been infected for months
LinuxSecurity.com: Computer forensics is the application of computer investigation and analysis techniques to determine potential legal evidence. Since computers are vulnerable to attack by some criminals, computer forensics is very important. Understanding computer forensic procedures will help to capture vital
LinuxSecurity.com: In an ideal world, words like cryptography and security wouldn't even exist, but the real world is far from perfect, so software developers have to spend a good deal of time building security into applications. Cryptography is just one
LinuxSecurity.com: SH's (secure shell) most common authentication mode is called "interactive keyboard password authentication", so called both because it is typically done via keyboard, and because openssh takes active measures to make sure that the password is, indeed, typed interactively
LinuxSecurity.com: New mozilla-thunderbird packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues, including crashes that can corrupt memory, as well as a JavaScript privilege escalation and arbitrary code execution flaw. More details about these
LinuxSecurity.com: Kees Cook discovered a flaw in the way gpdf displayed malformed fonts embedded in PDF files. An attacker could create a malicious PDF file that would cause gpdf to crash, or, potentially, execute arbitrary code when opened. (CVE-2008-1693)
LinuxSecurity.com: New php packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. Note that PHP5 is not the default PHP for Slackware 10.2 or 11.0 (those use PHP4), so if your PHP code is
LinuxSecurity.com: A vulnerability was found in aterm, Eterm, Mrxvt, multi-aterm, RXVT, rxvt-unicode, and wterm, allowing for local privilege escalation.
ADI-GARDINER, along with Bristol based Security Solutions Direct, has supplied the Redland Green School with a comprehensive access control solution to protect the new GBP36million site. The ACTpro 3000 system from ACT was specifically chosen to provide a secure environment
McAfee Avert Labs has reported the most significant malware outbreak in three years with more than 500,000 detections of a Trojan horse masquerading as a media file.Since Friday May 2nd, more than half a million instances of the Trojan have
The need to restrain and eject unruly customers at events is frequently believed to be a major role for event security companies. But, as Roy Wise, Training and Development Officer at Showsec, points out "Our focus is on the safety
Alexander Gostev, the author of the report and senior virus analyst at Kaspersky Lab, outlines the key malware trends and threats facing today's information security industry
Khashayar Fereidani has discovered some vulnerabilities in Maian Links, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "msg_script3" and "msg_script2" in admin/inc/footer.php is not properly sanitised before being returned to the user.
Khashayar Fereidani has reported some vulnerabilities in Maian Greetings, which can be exploited by malicious people to conduct cross-site scripting or SQL injection attacks. 1) Input passed to the "keywords" parameter in index.php when the "cmd" parameter is set to
InjEctOr5 has reported a vulnerability in PostcardMentor, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "cat_fldAuto" parameter in step1.asp is not properly sanitised before being used in an SQL query. This can
