Silensec Newsletter

Top News

Juniper Finds Backdoor that Decrypts VPN Traffic

 Juniper Networks today has released an emergency patch that removes what it's calling "unauthorized code" from ScreenOS that could allow attackers to decrypt VPN traffic from NetScreen devices. 

Juniper senior vice president and chief information security officer Bob Worrall said today that two vulnerabilities were discovered during a recent internal code review.

These vulnerabilities affect ScreenOS 6.2.0r15 through 6.2.0r18 and 6.3.0r12 through 6.3.0r20. Read more...



You can Hack into a Linux Computer just by pressing 'Backspace' 28 times

 A pair of security researchers from the University of Valencia have uncovered a bizarre bug in several distributions of Linux that could allow anyone to bypass any kind of authentication during boot-up just by pressing backspace key 28 times.

This time, the issue is neither in a kernel nor in an operating system itself, but rather the vulnerability actually resides in Grub2, the popular Grand Unified Bootloader, which is used by most Linux systems to boot the operating system when the PC starts. Read more...



Top News

Google cloaks Android in Red Screen of malware Dearth

 Google has extended its anti-social engineering Chrome tool to Android, making big efforts to reduce blacklists bandwidth costs along the way. The Red Screen of malware Dearth officially branded Safe Browsing has long been a feature of Chrome desktop platforms where bandwidth and processing requirements are much less restrictive.

There the red splash screen has walled off all but the most persistent to be pwned users from websites known to have hosted malware, advertising injectors, or other web scum. Read more...



Brit-American hacker duo throws pwns on IoT BBQs, grills open admin

‪‎Kiwicon American hardware hackers have ruined Christmas cooks ups across Australia, revealing gaping and pwnable vulnerabilities in Internet-connected barbecues.

Hardware hackers Matthew Garrett and Paul McMillan revealed how the Internet-of-things CyberQ exposed its remote administration facilities and could be owned over the internet. Read more...




Top News

Anonymous Leaks Paris Climate Summit Officials' Private Data

Hackers have leaked the private login details of nearly 1,415 officials at the UN climate talks in Paris in an apparent act of protest against arrests of activists in the city.

Anonymous, the hacktivist movement, hacked the website of the summit organisers, the UN Framework Convention on Climate Change (UNFCCC), and posted names, phone numbers, usernames, email addresses, and secret questions and answers onto an anonymous publishing site. Read more...



GCHQ can hack your systems at will – thanks to 'soft touch' oversight

‪‎Privacy International claimed that previously secret documents, and witness statements produced by GCHQ, show that, among other things, overseas hacking does not require authorisations to name or describe a particular piece of equipment, or an individual user of the equipment.
The complaints follow the outing of GCHQ's "Operation Socialist", in which the spooks attacked Belgacom, the largest telecommunications company in Belgium, to gain access to its core GRC routers – ultimately for the purpose of running man-in-the-middle attacks against targets roaming with smartphones. Read more...




Silensec Cyprus HQ

Silensec Africa

Feel free to contact us if you have any problems.

Silensec UK

Feel free to contact us if you have any problems.

News Feed