Hackin9

Trung tâm tiếng Anh EFA đã có gần 8 năm kinh nghiệm đào tạo Anh ngữ tại Việt Nam. Tiếng anh cấp tốc cho sinh viên du học Anh, Úc, Mỹ… (các khóa học viết chuyên sâu, viết các bài luận để dự tuyển vào các trường Đại Học trên thế giới- SOP, Study Plan, CV….) -  Tư vấn du họcTiếng Anh cho người đi làm. Tiếng Anh giao tiếp

 
Google is looking to triple the number of people testing Glass before the official rollout of the wearable computers next year.
 
Dropbear SSH 'buf_decompress()' Function Denial of Service Vulnerability
 
RETIRED: Apple Mac OS X APPLE-SA-2013-10-22-3 Multiple Security Vulnerabilities
 
Salesforce.com is gearing up for its annual Dreamforce conference, which is set to be the biggest yet, with 120,000 people expected to register.
 
The U.S. Dept. of Justice is expected to announce on Wednesday a resolution to a long-standing visa case involving Indian outsourcer Infosys, an official has confirmed.
 
Growth in iPhone shipments couldn't prevent Apple from reporting a drop in profits for the last quarter, as the iPad market flattened and Mac shipments fell.
 
Verizon Wireless announced it will begin selling the BlackBerry Z30, a 5-in. touchscreen-only smartphone, some time in November for $199.99 and a two-year service agreement.
 
In much the same way that Microsoft brought spreadsheet crunching to the business world through its now-ubiquitous Excel, the company is hoping to make a similar impact with big data analysis with its new Windows Azure HDInsight service.
 
Facebook CEO Mark Zuckerberg sometimes speaks quickly and his statements on Internet privacy are not always clear. So researchers created an archive of everything he has said publicly to better understand where Facebook stands on privacy.
 

Security Policy Orchestration brings InfoSec into larger tent
Network World
For a long time many pundits have spoken about a time when security does not exist in a separate silo but is instead integrated into the larger IT mission. Combining this with development processes represents a holy grail for some in security as well ...

 
Speculation that had been growing about mysterious barges harbored on both sides of the U.S. is exploding.
 
Tech spending in the U.S. will increase by a smaller amount this year than earlier predicted, Forrester Research said today. And it blames Congress for the forecast decline.
 
Samsung kicked off its first global developer conference on Monday where where Samsung officials focused on smart TV, gaming, multiscreen innovations as well as developer tools for a recently introduced mobile software developer kit.
 
Apple's decision to give away OS X upgrades and other software, including the iWork productivity suite, stemmed from both offensive and defensive strategies, analysts said today.
 
HP has filed suit against seven makers of optical disk drive technology, claiming that over a six-year period the group conspired to drive up the price of products sold to HP and others.
 
Buyers looking to purchase Lenovo's latest ThinkPad X240 laptop with a touchscreen will have to wait until December.
 
The U.S. Dept. of Justice is expected to announce on Wednesday a resolution to a long-standing visa case involving Indian outsourcer Infosys, an official has confirmed.
 
Last week, I took a Basics of Business Photography class led by Bob Ring and Don Toothaker of New England Photo Workshops. The goal of the session was to get participants to think more strategically about photography. Though it was not focused specifically on smartphones, I learned a number of helpful lessons that can be applied to camera-phone photography. During the past couple of years, phone photography has also become a bit of a hobby of mine, and I have some tips of my own to share.
 
Japanese NTT Communications has acquired Virtela Technology Services and a majority stake in RagingWire Data Centers as part of its worldwide data center and cloud push.
 
The U.S. government needs to answer for human rights abuses related to the National Security Agency's massive worldwide surveillance of Internet communications and telephone records, privacy advocates told an international human rights board Monday.
 
When the social media management and sharing site Buffer was hacked over the weekend, it seemed like yet another embarrassing hack. "The incursion is no doubt a major black-eye for the upstart Buffer," wrote David Berlind at Programmable Web. "[Buffer CEO Joel] Gascoigne has entered the dreaded damage-control zone that no start-up CEO wants to be a part of."
 
X2Go 'libx2go-server-db-sqlite3-wrapper' CVE-2013-4376 Local Privilege Escalation Vulnerability
 

Federal prosecutors have accused a UK man of hacking thousands of computer systems, many of them belonging to the US government, and stealing massive quantities of data that resulted in millions of dollars in damages to victims.

Lauri Love, 28, was arrested on Friday at his residence in Stradishall, UK following a lengthy investigation by the US Army, US prosecutors in New Jersey said. According to prosecutors, the attacks date back to at least October 2012. Love and other alleged hackers are said to have breached networks belonging to the Army, the US Missile Defense Agency, NASA, the Environmental Protection Agency, and others, in most cases by exploiting vulnerabilities in SQL databases and the Adobe ColdFusion Web application. The objective of the year-long hacking spree was to disrupt the operations and infrastructure of the US government by stealing large amounts of military data and personally identifying information of government employees and military personnel, a 21-page indictment said.

"You have no idea how much we can fuck with the US government if we wanted to," Love told a hacking colleague in one exchange over Internet relay chat, prosecutors alleged. "This... stuff is really sensitive. It's basically every piece of information you'd need to do full identity theft on any employee or contractor" for the hacked agency.

Read 6 remaining paragraphs | Comments


    






 
Oracle is exploring silicon photonics, an optical technology drawing widespread interest, as a potential weapon in the battle against data-center power consumption.
 
3-D printing may have an image problem. It's sometimes seen as a hobbyist pursuit -- a fun way to build knickknacks from your living room desktop -- but a growing number of companies are giving serious thought to the technology to help get new ideas off the ground.
 
Google's rivals have been given another opportunity to review the search giant's latest proposed measures aimed at avoiding a fine from the European Commission for allegedly breaking competition rules.
 
Natural and manmade disasters are facts of life. Smart IT managers prepare for the worst before trouble hits, so that the businesses and government institutions that rely on IT can resume normal operations as soon as possible.
 
Enterprises can now run Hortonworks' Hadoop-based Data Platform in Rackspace's managed hosting environment and its public cloud.
 
Boeing, NASA, Lockheed Martin and GE are among the large corporations that for decades have used additive manufacturing, known more popularly as 3-D printing.
 
Low-power servers running on Calxeda's 64-bit ARM chip will be available a year from now, Calxeda said.
 
Apple's iWork free upgrade has angered long-time Mac power users, who have flooded the company's support forum with complaints about lost features.
 
Oracle has joined the ranks of ERP software vendors hoping to capitalize on uncertainty among customers of SAP's Business ByDesign software, offering to waive one year of subscription fees to those who migrate to Oracle's competing products.
 
CVE-2013-5695 Multilple Cross Site Scripting (XSS) Attacks in Ops View
 
You will never be secure if you labor under the delusion of privacy.
 
LinuxSecurity.com: A path vulnerability in X2Go Server may allow remote execution of arbitrary code.
 
LinuxSecurity.com: Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to Denial of Service.
 
LinuxSecurity.com: pmake uses temporary files in an insecure manner, allowing for symlink attacks.
 
LinuxSecurity.com: The Google Chrome Security Team discovered two issues (a race condition and a use-after-free issue) in the International Components for Unicode (ICU) library. [More...]
 
LinuxSecurity.com: It was discovered that roundcube, a skinnable AJAX based webmail solution for IMAP servers, does not properly sanitize the _session parameter in steps/utils/save_pref.inc during saving preferences. The vulnerability can be exploited to overwrite configuration settings and [More...]
 
LinuxSecurity.com: Two buffer overflow vulnerabilities in TPTEST may allow remote attackers to execute arbitrary code or cause Denial of Service.
 
LinuxSecurity.com: Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-2906 [More...]
 
LinuxSecurity.com: Multiple vulnerabilities have been found in GNU Automake, allowing local arbitrary command execution with the privileges of the user running an Automake-based build.
 
LinuxSecurity.com: Multiple vulnerabilities have been found in Groff, allowing context-dependent attackers to conduct symlink attacks.
 
LinuxSecurity.com: Multiple vulnerabilities have been found in MPlayer and the bundled FFmpeg, the worst of which may lead to the execution of arbitrary code.
 
LinuxSecurity.com: Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code.
 
LinuxSecurity.com: The update of librack-ruby in DSA-2783-1 also addressed CVE-2013-0183. The patch applied breaks rails applications like redmine (see Debian Bug #727187). Updated packages are available to address this problem. [More...]
 
[PT-2013-46] Local File Include in Nagios Looking Glass
 
ILIAS eLearning 4.3.4 & 4.4 CMS - Persistent Notes Web Vulnerability
 
Re: Call for Papers, 2014 Symposium on Protocols and Rules for Security (SPRS2014)
 
Pmake Insecure Temporary File Creation Vulnerability
 
[scip_Advisory 10847] MobileIron 4.5.4 Device Registration regpin Cross Site Scripting
 
vBulletin remote admin injection exploit
 
Multiple CSRF Horde Groupware Web mail Edition 5.1.2
 
Call for Papers, 2014 Symposium on Protocols and Rules for Security (SPRS2014)
 
[CVE-2012-6297] DD-WRT v24-sp2 Command Injection
 
[SECURITY] [DSA 2786-1] icu security update
 
Benh yếu sinh lý nguyen nhan gay len tinh trang nay do cac nguyen nhan benh ly thoi quen hang ngay xem phim tranh, roi loạn noi tiet dan den vo sinh ,và con co the gay xuat tinh som do suc khoe, stress, hut thuoc la và các van de xa hoi gay liệt dương va viêm tuyến tiền liệt Phương phap dieu tri xuat tinh som o nam gioi điều trị xuất tinh sớm ban hieu gi ve benh nam gioi dac biet la chung xuất tinh sớm là gì tại sao lai bi benh xuat tinh som, vo ban se coi ban nhu the nao neu ban bi xuat tinh som tim hieu ve nguyen nhan và cach phong chong liet duong nguyên nhân liệt dương Phuong phap dieu tri benh liet duong điều trị liệt dương liệt dương là gì tai sao lai bi vo sinh tại sao vô sinh cach chua vo sinh nhu the nao la hieu qua chữa vô sinh nguyen nhan vo sinh va cach khac phuc nguyên nhân vô sinh read more:http://duocsinhly.blogspot.com
 
Benh yếu sinh lý nguyen nhan gay len tinh trang nay do cac nguyen nhan benh ly thoi quen hang ngay xem phim tranh, roi loạn noi tiet dan den vo sinh ,và con co the gay xuat tinh som do suc khoe, stress, hut thuoc la và các van de xa hoi gay liệt dương va viêm tuyến tiền liệt Phương phap dieu tri xuat tinh som o nam gioi điều trị xuất tinh sớm ban hieu gi ve benh nam gioi dac biet la chung xuất tinh sớm là gì tại sao lai bi benh xuat tinh som, vo ban se coi ban nhu the nao neu ban bi xuat tinh som tim hieu ve nguyen nhan và cach phong chong liet duong nguyên nhân liệt dương Phuong phap dieu tri benh liet duong điều trị liệt dương liệt dương là gì tai sao lai bi vo sinh tại sao vô sinh cach chua vo sinh nhu the nao la hieu qua chữa vô sinh nguyen nhan vo sinh va cach khac phuc nguyên nhân vô sinh read more:http://duocsinhly.blogspot.com
 
Benh yếu sinh lý nguyen nhan gay len tinh trang nay do cac nguyen nhan benh ly thoi quen hang ngay xem phim tranh, roi loạn noi tiet dan den vo sinh ,và con co the gay xuat tinh som do suc khoe, stress, hut thuoc la và các van de xa hoi gay liệt dương va viêm tuyến tiền liệt Phương phap dieu tri xuat tinh som o nam gioi điều trị xuất tinh sớm ban hieu gi ve benh nam gioi dac biet la chung xuất tinh sớm là gì tại sao lai bi benh xuat tinh som, vo ban se coi ban nhu the nao neu ban bi xuat tinh som tim hieu ve nguyen nhan và cach phong chong liet duong nguyên nhân liệt dương Phuong phap dieu tri benh liet duong điều trị liệt dương liệt dương là gì tai sao lai bi vo sinh tại sao vô sinh cach chua vo sinh nhu the nao la hieu qua chữa vô sinh nguyen nhan vo sinh va cach khac phuc nguyên nhân vô sinh read more:http://duocsinhly.blogspot.com
 
Benh yeu sinh ly nguyen nhan gay len tinh trang nay do cac nguyen nhan benh ly thoi quen hang ngay xem phim tranh, roi loạn noi tiet dan den vô sinh ,và con co the gay xuất tinh sớm do suc khoe, stress, hut thuoc la và các van de xa hoi gay liet duong va viem tuyen tien liet read more:http://duocsinhly.blogspot.com
 
[SECURITY] [DSA 2785-1] chromium-browser security update
 
Paypal Inc Bug Bounty #104 - Persistent Exception Vulnerability
 
[ISecAuditors Security Advisories] XSS vulnerability in LinkedIn
 
[SECURITY] [DSA 2787-1] roundcube security update
 
Buffer, a service for scheduling social media posts, said Sunday it has strengthened its security after spammers gained access to its network.
 
PernixData FVP clusters server-side flash to improve virtual machine performance and reduce SAN latency
 
Mobile presents a huge opportunity for companies to tighten customer relationships, but it also poses significant development challenges for IT. Here's how four companies are leveraging mobile to great success.
 
LG is flexing its muscle in smartphone technology with a new handset that boasts a curved touchscreen, along with a special "self healing" technology that the company claims can prevent scratches on the phone's casing.
 
A malicious software program found in ATMs in Mexico has been improved and translated into English, which suggests it may be used elsewhere, according to security vendor Symantec.
 
Microsoft's new financial reporting format makes it much harder to get a grip on how two of its most important software franchises, Windows and Office, are performing, an analyst said.
 
Photodex ProShow Producer 'load' File Remote Stack Buffer Overflow Vulnerability
 
IBM Security AppScan Enterprise CVE-2013-3989 Man in the Middle Information Disclosure Vulnerability
 

Posted by InfoSec News on Oct 28

http://www.washingtonpost.com/blogs/the-switch/wp/2013/10/24/inside-former-nsa-chief-michael-haydens-interview-with-an-amtrak-live-tweeter/

By Brian Fung
The Switch
Washington Post
October 24, 2013

He should’ve taken the quiet car.

But that’s not what Michael Hayden did on Thursday afternoon as he boarded
Acela No. 2170, bound for New York.

Instead, the former NSA director nestled into a regular coach seat and
soon began what for many...
 

Posted by InfoSec News on Oct 28

Forwarded from: Dr Tyrone W A Grandison <tgrandison (at) gmail.com>

http://w2spconf.com/2014/cfp.html

WEB 2.0 SECURITY AND PRIVACY 2014 WORKSHOP CALL FOR PAPERS

IMPORTANT DATES

Paper submission deadline: February 26, 2014 (11:59pm US-PST)
Workshop acceptance notification date: March 29, 2014
Workshop date: Sunday, May 18, 2014

Workshop paper submission web site:
https://www.easychair.org/conferences/?conf=w2sp2014

W2SP brings...
 

Posted by InfoSec News on Oct 28

http://pandodaily.com/2013/10/26/i-challenged-hackers-to-investigate-me-and-what-they-found-out-is-chilling/

By Adam L. Penenberg
PandoDaily.com
October 26, 2013

It's my first class of the semester at New York University. I'm discussing
the evils of plagiarism and falsifying sources with 11 graduate journalism
students when, without warning, my computer freezes. I fruitlessly tap on
the keyboard as my laptop takes on a life of its...
 

Posted by InfoSec News on Oct 28

http://www.sootoday.com/content/news/details.asp?c=63269

By Darren Taylor
SooToday.com
October 25, 2013

A SooToday.com reader has informed us that he has been the target of
unsolicited emails, texts and telemarketing calls, and claims this is the
result of a mishap involving the Sault Area Hospital (SAH) website's
online job application system.

The reader was notified by SAH in a letter dated October 24, 2013 that an
accidental...
 

Posted by InfoSec News on Oct 28

http://www.wantchinatimes.com/news-subclass-cnt.aspx?id=20131027000089&cid=1101&MainCatID=11

CNA
2013-10-27

A Taiwanese Air Force officer has been taken into custody on charges of
espionage, the Taiwan High Prosecutors Office's Kaohsiung branch said on
Saturday.

The officer, identified only by his family name Hau, was accused of having
sold classified information about E-2K Airborne Early Warning aircraft to
China through a...
 
Internet Storm Center Infocon Status