Post from the past: security fix after 8 years
After almost eight years, the developer of the PHP Gift Registry web application has finally responded to a notice regarding a serious security vulnerability. Apparently, the problem has now been fixed
applications
notice
php
security
vulnerabilities
Interviews: Ask What You Will of Eugene Kaspersky
Eugene Kaspersky probably hates malware just as much as you do on his own machines, but as the head of Kaspersky Labs, the world's largest privately held security software company, he might have a different perspective — the existence of malware and other forms of online malice drives the need for security software of all kinds, and not just on personal desktops or typical internet servers. The SCADA software vulnerabilities of the last few years have led him to announce work on an operating system for industrial control systems of the kind affected by Flame and Stuxnet. But Kaspersky is not just toiling away in the computer equivalent of the CDC: He's been outspoken in his opinions — some of which have drawn ire on Slashdot, like calling for mandatory "Internet ID" and an "Internet Interpol". He's also come out in favor of Internet voting, and against SOPA, even pulling his company out of the BSA over it. More recently, he's been criticized for ties to the current Russian government. ...
bsa
cdc
eugene
existence
flame
internet
interpol
kaspersky labs
malice
opinion
question
russian government
scada
security
slashdot
sopa
stuxnet
vulnerabilities
Found more than 1 month ago on channel
Slashdot
MariaDB fixes zero day vulnerability in MySQL
The developers of the MySQL clone MariaDB have fixed a recently discovered security vulnerability in the open source database. Another bug, they say, is actually just a result of server misconfiguration
mariadb
misconfiguration
mysql
security
vulnerabilities
Pakistan’s PKNIC Says Hackers Exposed A Hole During Security Upgrade To Redirect Google.pk, Apple.pk And Hundreds More; Now Resorting To Whitelisting
Pakistan's domain registry provider PKNIC has posted an explanation of what it says happened when visits to a number of high-profile websites last weekend redirected to another page -- in many cases to one with a photo of penguins and a message from someone called Eboz claiming responsibility. It says that during a security upgrade, a vulnerability opened up, which let someone breach four user accounts, which in turn impacted nine DNS records, leading to "several website addresses" being impacted. It doesn't categorically rule it out, but it believes that there was no phishing attack carried out through the redirection. It says that the issue causing the problem was reverted a few hours after it was discovered and PKNIC itself was not hacked.
apple
dns
eboz
explanation
google
pakistan
pknic
redirection
responsibility
security
vulnerabilities
Researcher Finds Nearly Two Dozen SCADA Bugs In a Few Hours
Trailrunner7 writes "It is open season on SCADA software right now. Last week, researchers at ReVuln, an Italian security firm, released a video showing off a number of zero-day vulnerabilities in SCADA applications from manufacturers such as Siemens, GE and Schneider Electric. And now a researcher at Exodus Intelligence says he has discovered more than 20 flaws in SCADA packages from some of the same vendors and other manufacturers, all after just a few hours' work."
applications
intelligence
italian
revuln
scada
schneider
security
siemens
trailrunner
vulnerabilities
Found more than 1 month ago on channel
Slashdot