Language Selection

English French German Italian Portuguese Spanish

Security: Forwarding, Outlook Incident and Systemd Picks Up Support For MACsec

Filed under
Security
  • The Problem with SSH Agent Forwarding

    Put simply: if your jump box is compromised and you use SSH agent forwarding to connect to another machine through it, then you risk also compromising the target machine!

    Instead, you should use either ProxyCommand or ProxyJump (added in OpenSSH 7.3). That way, ssh will forward the TCP connection to the target host via the jump box, meaning that the actual connection happens on your workstation and if someone on the jump box tries to MITM your connection, then you will be warned by the SSH command.

  • Some Outlook Accounts Were Available To Hackers For Several Months

    According to a report by The Verge, a support agent’s account was hacked by unnamed hackers from January 2019 to March 28, 2019, due to which the malicious attackers could get access to several users’ email addresses, folder names, and subject lines of emails on Outlook.

  • Microsoft reveals hackers accessed some Outlook.com accounts for months

    Microsoft has started notifying some Outlook.com users that a hacker was able to access accounts for months earlier this year. The software giant discovered that a support agent’s credentials were compromised for its web mail service, allowing unauthorized access to some accounts between January 1st and March 28th, 2019. Microsoft says the hackers could have viewed account email addresses, folder names, and subject lines of emails, but not the content of emails or attachments.

  • Systemd Picks Up Support For MACsec To Better Secure Ethernet Connections

    Following this week's release of systemd 242, one of the newly-merged features for what will become systemd 243 is support for MACsec within the networkd code.