ICT Security-Sécurité PC et Internet
87.1K views | +0 today
Follow
ICT Security-Sécurité PC et Internet
Education Technology
ICT Security + Privacy + Piracy + Data Protection - Censorship - Des cours et infos gratuites sur la"Sécurité PC et Internet" pour usage non-commercial... (FR, EN+DE)...
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Symantec has discovered a Linux back door that cleverly avoids detection by injecting code into legitimate traffic.

Symantec has discovered a Linux back door that cleverly avoids detection by injecting code into legitimate traffic. | ICT Security-Sécurité PC et Internet | Scoop.it
From www.symantec.com - November 14, 2013 6:49 AM
 In May of this year, sophisticated attackers breached a large Internet hosting provider and gained access to internal administrative systems. The attackers appear to have been after customer record information such as usernames, emails, and passwords.


While these internal administrative systems had access to customer records, discovery of the attack and certain security implementations mitigated the scope of the breach. Customer passwords were accessible, but these passwords were hashed and salted making mass password cracking difficult. Customer financial information was also accessible, but encrypted. Unfortunately, access to the encryption key cannot be ruled out.


While breaches of organizations and mass customer record dumps are posted almost daily, this particular attack was more sophisticated than we have seen in the past.


Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux

 

more...
No comment yet.
Sign up to comment
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

'Sophisticated' backdoor malware opens up security blackhole in Apache web servers

'Sophisticated' backdoor malware opens up security blackhole in Apache web servers | ICT Security-Sécurité PC et Internet | Scoop.it
From www.zdnet.com - May 1, 2013 9:31 AM
Malware that hides itself from admins has been found in the wild, allowing attackers to compromise web servers and redirect users to sites hosting exploit kits.

 

Researchers at security firm ESET have dubbed the malware Linux/Cdorked.A and are calling it "the most sophisticated Apache backdoor" due to its ability to evade detection. 

 

===> Apache web servers run about 50 percent of the world’s websites, according to UK-based internet security firm, Netcraft. <===

 

The researchers claim the malware has been installed on hundreds of compromised web servers, which have served up malicious redirects to thousands of visitors.

Gust MEES's insight:

 

===> Apache web servers run about 50 percent of the world’s websites, according to UK-based internet security firm, Netcraft. <===

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Apache-vulnerabilities

 

 

more...
Gust MEES's curator insight, May 1, 2013 9:27 AM

 

===> Apache web servers run about 50 percent of the world’s websites, according to UK-based internet security firm, Netcraft. <===

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Apache-vulnerabilities

 

 
Sign up to comment
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Vulnérabilité dans le noyau Linux

Vulnérabilité dans le noyau Linux | ICT Security-Sécurité PC et Internet | Scoop.it
From www.mag-securs.com - May 17, 2013 6:35 AM

Le centre d’expertise gouvernemental CERTA, vient de mettre en ligne sur son site web, un bulletin d’alerte qui a pour objet la vulnérabilité dans le noyau Linux.

 

Cette faille permet à un attaquant de provoquer une élévation de privilèges. Elle lui offre la possibilité d'exploiter un code publiquement et activement.

 

Gust MEES's insight:

 

Le centre d’expertise gouvernemental CERTA, vient de mettre en ligne sur son site web, un bulletin d’alerte qui a pour objet la vulnérabilité dans le noyau Linux.

 

Cette faille permet à un attaquant de provoquer une élévation de privilèges. Elle lui offre la possibilité d'exploiter un code publiquement et activement.

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux

 

more...
Gust MEES's curator insight, May 17, 2013 6:33 AM

Le centre d’expertise gouvernemental CERTA, vient de mettre en ligne sur son site web, un bulletin d’alerte qui a pour objet la vulnérabilité dans le noyau Linux.


Cette faille permet à un attaquant de provoquer une élévation de privilèges. Elle lui offre la possibilité d'exploiter un code publiquement et activement.

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Linux

 
Sign up to comment
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Backdoor entdeckt: Angreifer kaperten schon hunderte Apache-Server

Backdoor entdeckt: Angreifer kaperten schon hunderte Apache-Server | ICT Security-Sécurité PC et Internet | Scoop.it
From www.itespresso.de - April 30, 2013 6:19 AM
Bösartige Angreifer kapern Apache-Webserver und leiten deren Besucher auf Schad-Websites um. Die Tarnung der Malware ist fast perfekt.

 

Eine Hintertür, die von Administratoren nur schwer bemerkt werden kann, sorgt dafür, dass Internet-Anfragen an Apache-Server nicht in Logs aufgenommen werden. Die gesendeten http-Anfragen, die in Wirklichkeit einen Trojaner steuern, sind nicht ersichtlich. Der Rest des Angriffs läuft im Speicher ab, Bugfixes gibt es noch nicht.

 

29. April 2013 von Manfred Kohlen 0


Die Malware Linux/Cdorked.A ist eine raffinierte Hintertür, die alles tut, um den Internetverkehr auf schädliche Webseiten umzuleiten, schreibt Sicherheitsanbieter Eset in einer aktuellen Warnung.   Der Schädling sei so gut, dass er laut eigener Analysen schon hunderte von Webservern unter seine Kontrolle gebracht habe.

 

Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Apache-vulnerabilities

 

more...
About Follow us Resources Terms Mobile Features
Facebook
X
LinkedIn