Language Selection

English French German Italian Portuguese Spanish

Security: Updates, Deloitte Crack, 'Optionsbleed', Browsers Will Store Credit Card Details

Filed under
  • Security updates for Monday
  • Deloitte hack hit server containing emails from across US government

    The hack into the accountancy giant Deloitte compromised a server that contained the emails of an estimated 350 clients, including four US government departments, the United Nations and some of the world’s biggest multinationals, the Guardian has been told.

    Sources with knowledge of the hack say the incident was potentially more widespread than Deloitte has been prepared to acknowledge and that the company cannot be 100% sure what was taken.

    Deloitte said it believed the hack had only “impacted” six clients, and that it was confident it knew where the hackers had been. It said it believed the attack on its systems, which began a year ago, was now over.

    However, sources who have spoken to the Guardian, on condition of anonymity, say the company red-flagged, and has been reviewing, a cache of emails and attachments that may have been compromised from a host of other entities.

  • Apache Patches Optionsbleed Flaw in HTTP Server

    The Apache HTTP Web Server (commonly simply referred to as 'Apache') is the most widely deployed web server in the world, and until last week, it was at risk from a security vulnerability known as Optionsbleed.

  • Browsers Will Store Credit Card Details Similar to How They Save Passwords

    A new W3C standard is slowly creeping into current browser implementations, a standard that will simplify the way people make payments online.

    Called the Payment Request API, this new standard relies on users entering and storing payment card details inside browsers, just like they currently do with passwords.

More in Tux Machines

Security: Updates, Synopsys/Black Duck FUD, and Software Security Over Convenience

  • Security updates for Tuesday
  • With Much of the Data Center Stack Open Source, Security is a Special Challenge [Ed: Black attacking FOSS again in order to sell its proprietary products; does proprietary software have no security issues? Which cannot be fixed, either?]
  • Synopsys reveals its open-source rookies of the year [Ed: Anti-FOSS company Black Duck, which markets its proprietary software by attacking FOSS (it admitted being anti-GPL since inception, created by Microsoft employee), wants the public to think of it as a FOSS authority]
  • Software security over convenience
    Recently I got inspired (paranoid ?) by my boss who cares a lot about software security. Previously, I had almost the same password on all the websites I used, I had them synced to google servers (Chrome user previously), but once I started taking software security seriously, I knew the biggest mistake I was making was to have a single password everywhere, so I went one step forward and set randomly generated passwords on all online accounts and stored them in a keystore.

MIPI-CSI camera kit runs Linux on Apollo Lake

Congatec’s rugged, Linux-driven “Conga-CAM-KIT/MIPI” camera kit combines its Intel Apollo Lake based Conga-PA5 SBC with a MIPI-CSI 2 camera from Leopard Imaging and other components. Congatec announced a Conga-CAM-KIT/MIPI camera kit, also referred to as the MIPI-CSI 2 Smart Camera Kit. The kit runs a Yocto Project based Linux distribution on Congatec’s Conga-PA5, a Pico-ITX SBC with Intel’s Apollo Lake Atom, Pentium, and Celeron SoCs. Also included is a MIPI-CSI 2 camera (LI-AR023Z-YUV-MIP) from Leopard Imaging based on ON Semiconductor’s AR0237 HD sensor. Extended temperature ranges are supported. Read more

Latest on webOS

Red Hat Leftovers