HackDig : Dig high-quality web security articles for hacker

Linux hardening: a 15-step checklist for a secure Linux server

Most people assume Linux is secure, and that’s a false assumption. Imagine your laptop is stolen without first being hardened. A thief would probably assume your username is “root” and your password is “toor” since that’s the default password on Kali and most people continue to use it. Do you? I hope not.The negative career implications of choosing not to ha
Publish At:2016-11-25 20:40 | Read:9264 | Comments:0 | Tags:Linux Open Source Security Servers IDG Insider

Thousands of Seagate NAS boxes host cryptocurrency mining malware

Thousands of publicly accessible FTP servers, including many from Seagate network-attached storage devices, are being used by criminals to host cryptocurrency mining malware.Researchers from security vendor Sophos made the discovery when they investigated a malicious program dubbed Mal/Miner-C, which infects Windows computers and hijacks their CPUs and G
Publish At:2016-09-12 17:00 | Read:2324 | Comments:0 | Tags:Security Malware Servers Network Storage Internet of Things

MySQL zero-day exploit puts some servers at risk of hacking

A publicly disclosed vulnerability in the MySQL database could allow attackers to completely compromise some servers.The vulnerability affects "all MySQL servers in default configuration in all version branches (5.7, 5.6, and 5.5) including the latest versions," as well as the MySQL-derived databases MariaDB and Percona DB, according to Dawid Golunski, t
Publish At:2016-09-12 17:00 | Read:2801 | Comments:0 | Tags:Security Servers Data Protection exploit

Suspect arrested in 5-year-old kernel.org breach

Five years after a security breach forced the Linux Foundation to take kernel.org offline and to rebuild several of its servers, police have arrested a suspect in the case.Donald Ryan Austin, a 27-year-old computer programmer from El Portal, Florida, was arrested during a traffic stop on Aug. 28 based on a sealed indictment returned by a federal grand ju
Publish At:2016-09-02 19:45 | Read:3207 | Comments:0 | Tags:Security Linux Data Breach Privacy Servers

FairWare ransomware infects servers through exposed Redis instances

Days after reports that a new ransomware attack was deleting files from web servers, security researchers determined that some of the affected servers were hacked through insecure deployments of the Redis database.Over the past week, reports popped up on support forums about web servers being wiped clean and hosting a ransom note through which attackers
Publish At:2016-09-02 01:25 | Read:3016 | Comments:0 | Tags:Security Encryption Web Development Web Services Servers

Nginx web server upgrade focuses on web security, JavaScript configuration

Security rules the day in version 10 of Nginx's enterprise-level web server, which features enhancements, including a web application firewall.Nginx Plus Release 10, available Tuesday, also introduces JavaScript-based scripting for configuration, IP transparency, and DSR (Direct Server Return) load-balancing.[ Use JavaScript in your dev shop? Inf
Publish At:2016-08-23 22:00 | Read:3562 | Comments:0 | Tags:Servers Hardware Internet Security

Black Hat: Be wary of HTTP/2 on Web servers

Researchers at Black Hat describe finding four flaws – now fixed - in the way the major server vendors implemented HTTP/2, but warn that the year-old Web protocol remains fertile ground for hackers seeking weaknesses in the way it’s rolled out.+More on Network World: IRS warns on super summer scam scourge | Follow all the coverage from Black Hat
Publish At:2016-08-04 02:25 | Read:3000 | Comments:0 | Tags:Security Servers

An online market that offered cheap hacked servers returns

A website that offered access to hacked servers for as little as $6 is back online.The market, called xDedic, went down last month on June 15 right after security firm Kaspersky Lab publicly exposed it. Access to more than 70,000 compromised servers from governments, businesses and universities had been sold through the site, in the two years it
Publish At:2016-07-12 23:50 | Read:2355 | Comments:0 | Tags:Security Hacking Servers

Hackers sold access to 170,000 compromised servers, many in the US

The market for hacked servers might be much larger than previously thought, with new evidence suggesting that hackers sold access to over 170,000 compromised servers since 2014, a third of them located in the U.S.The new revelation comes from antivirus firm Kaspersky Lab, whose researchers reported last week that a black market website called xDedic was
Publish At:2016-06-21 16:15 | Read:3437 | Comments:0 | Tags:Security Servers

Linux bug imperils tens of millions of PCs, servers, and Android phones

For almost three years, millions of servers and smaller devices running Linux have been vulnerable to attacks that allow an unprivileged app or user to gain nearly unfettered root access. Major Linux distributors are expected to fix the privilege escalation bug this week, but the difficulty of releasing updates for Android handsets and embedded devices means
Publish At:2016-01-20 07:40 | Read:3967 | Comments:0 | Tags:Risk Assessment Technology Lab android embedded devices expl

Microservices: Simple servers, complex security

The benefits of microservices architecture -- smaller development teams, faster release cycles, fewer dependencies, less risk -- are becoming widely known, thanks to companies like Amazon, Google, and Netflix sharing their experiences. Less widely understood are the security challenges introduced by this new paradigm, but the engineers in the vanguard have w
Publish At:2015-09-23 05:35 | Read:3554 | Comments:0 | Tags:Servers Security Storage

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud