Category: CyberSec / ITSec / Sicherheit / Security / SPAM

Russian IT Security Updates 2020-01
13.01.2020

now WITH SPICY COMMENTS X-D SecurityLab, [22.12.19 12:40] A Twitter user using the alias 08Tc3wBB created tfp0-an exploit that allows you to jailbreak the latest iPhone models with IOS 13.3. The functionality of the exploit has already been confirmed by […]

the second nftables howto – it is fast and …… complicated
12.01.2020

with all the benefits of nftables: performance an important question is: how well can nftables / firewalld shield against DDoS? (the developers need to consider this problem as „default“ scenario, yes this is something one excepts a firewall at least […]

Russian IT Security Updates Dec22
23.12.2019

SecurityLab, [25.11.19 15:44] The Creator of the world wide web Tim Berners-Lee (Tim Berners-Lee) presented an action plan to protect the network from political manipulation, fake news, privacy violations and other harmful influences. Tim Berners-Lee: „control of information is hugely […]

Mail Thunderbird – disable JavaScript
17.12.2019

for security reasons highly recommended: always keep Thunderbird up to date (go to … then it should start downloading the update automatically if there is any) DISABLE JAVASCRIPT! X-D get to Thunderbird’s preferences (in any language edition): if the „Edit“ […]

Russian IT Security Updates Dec3
03.12.2019

SecurityLab, [22.11.19 08:23] French company Edenred reported a cyberattack using malware that affected an unknown number of computer systems. The company has launched an investigation to determine the extent of the contamination. Payment solution provider Edenred has been the victim […]

Russian IT Security Updates Nov2
21.11.2019

new Russian IT Security updates: thanks to https://www.securitylab.ru/ and https://translate.yandex.com/   SecurityLab, [06.11.19 16:12] The Libarchive compression library, which is included by default in Debian, Ubuntu, Gentoo, Arch Linux, FreeBSD, and NetBSD distributions, contains a vulnerability that allows an attacker […]

07.11.2019

SecurityLab, [01.11.19 15:21] Google has released fixes for two vulnerabilities in Chrome, including a zero-day vulnerability exploited in real-world attacks. The issues are fixed in browser version 78.0.3904.87 for Windows, Mac and Linux, and users are strongly advised to install […]

another reason NOT to use wireless keyboards
27.10.2019

„In the popular series of wireless keyboards Fujitsu LX390 found two dangerous vulnerabilities. According to researchers from the company SySS, exploitation of vulnerabilities allows nearby attackers to „spy“ passwords entered on the keyboard, or even to seize control of the […]

19.09.2019

for whatever reason, it is not enough to allow udp traffic on port 5900, one also needs to allow tcp traffic. /sbin/iptables -A INPUT -p tcp -m tcp –dport 5900 -j ACCEPT /sbin/iptables -A INPUT -p udp -m udp –dport […]

quantum computing and a universe wide wireless communication network faster than the speed of light
12.08.2019

Why is quantum computing important: optimization Update: Google claims to have reached quantum supremacy The tech giant unveiled its x-quantum computer chip Bristlecone in March 2018 (src: cnet) original nasa paper: https://drive.google.com/file/d/19lv8p1fB47z1pEZVlfDXhop082Lc-kdD/view book: https://deepai.org/machine-learning/researcher/eleanor-g-rieffel https://www.amazon.com/Quantum-Computing-Introduction-Engineering-Computation/dp/0262015064 Scott’s Supreme Quantum Supremacy FAQ! […]

24.07.2019

„Linux desktop remains an unpopular choice among mainstream desktop users, making up a little more than 2% of the desktop operating system market share. This is in contrast to the web server market share, which consists of 70% of Linux-based operating systems. […]

24.07.2019

Capitalism inspires the short sighted incentives. But trust and honesty is key in long term relationships. So for a short period of time – some dishonest people might enjoy the benefits – but in the end – it comes home […]

ntpd – when fundamentals fail
06.07.2019

servers/clients/computers/programs/services/webservers need accurate time… they usually get it from time servers that have an atomic clock attached to their USB port. (just guessing) ping time.google.com PING time.google.com (216.239.35.4) 56(84) bytes of data. 64 bytes from time2.google.com (216.239.35.4): icmp_seq=1 ttl=46 time=43.5 […]

can you trust PDF attachments/files in 2019?
06.07.2019

thank you ccc you are doing a lovely work – make this planet more interesting by creativity and more informed about security 🙂 keep it up 🙂 https://cdn.media.ccc.de/events/gpn/gpn19/h264-hd/gpn19-45-eng-BADPDF_-_Stealing_Windows_Credentials_via_PDF_Files_hd.mp4 https://cdn.media.ccc.de/events/gpn/gpn19/h264-hd/gpn19-45-eng-BADPDF_-_Stealing_Windows_Credentials_via_PDF_Files_hd.mp4 today i discovered a mail at my client from domain v-kamen.ru […]