Anthony Zuiker's next project Cyberggedon just released its first trailer, embedded after the jump. The series is a collaboration between Zuiker and Symantec's Norton. The video will roll out in a series of installments through Yahoo! Media. It debuts September 25th. … [Read more...]
Disclosing software vulnerabilities isn’t against the EULA?
Software is just a compiled bunch of code but it represents ingenuity, innovation, effort and time. It is also a very interesting product. When you purchase software, the software is licensed to you, not sold. The Terms of Service and End User License Agreement can do some pretty interesting things such as disallowing participation in a class action lawsuit and requiring … [Read more...]
Ambitious script kiddie tries to embed backdoor into WordPress Github repository
A script kiddie with the username maxymax tried to include a backdoor in WordPress by modifying a file within the twentyeleven theme on the WordPress Github repository. The file was heavily modified to include references to "Saudi Sh31l v1.0". They then initiated a pull request, asking that their changes be accepted into the core code. … [Read more...]
Java 7u7 and 6u35 updates address prominent vulnerabilities
Java has released Java 7 Update 7 and Java 6 Update 35 to address vulnerabilities that were known to be exploited "in the wild". The zero-day became widely known on Sunday and has received much publicity since then. Oracle published a Security Alert for CVE-2012-4681, which also received a US-CERT alert. … [Read more...]
EFF guide to surviving a DDoS attack
The Electronic Frontier Foundation has prepared a guide to surviving a Distributed Denial of Service attack to your website. As DDoS attacks become more common, the EFF is trying to assist site owners with preparations to survive an attempt to censor your site. … [Read more...]