Security: 0-Days and Back Doors
-
Vulnerability Acquisition Companies are Stockpiling 0-days and Selling Them to Governments Rather Than Allowing Them to be Patched
However we got here, this is indeed the state of the world: A place where shady organizations lure security researchers with huge sums of money and then turn around and sell their discovered vulnerabilities to government customers to use against their citizenry. According to the Zerodium website, their customers are “mainly government organizations…as well as major corporations from defense, technology, and financial sectors”. Zerodium prides themselves on their high payouts, stating on their website, “We pay BIG bounties, not bug bounties”. This model differs greatly from conventional bug bounty programs like HackerOne or Bugcrowd, which report submitted vulnerabilities directly to the developers so they can be patched immediately. Conventional programs also typically pay far less to the security researcher submitting a vulnerability.
-
Will open source software make your business more secure? [iophk: "FOSS is commercial, too". Ed: Such FUD has been popularised by Microsoft-connected firms.]
-
In 2018, cryptojacking is up for 459% and NSA is who to blame – Crypto News Today [Ed: No, Microsoft is to blame. It gave back doors to NSA and others, now the public pays for this intentional sabotage (e.g. hospital shutdowns).]
This malware was functioning on an outdated Windows software; thus, Microsoft accused the U.S. government for allegedly “stockpiling weapons for cyberattacks.”
-
Report Finds Cryptojacking Instances Jumped 400% In A Year [Ed: This actually targets new versions of Windows, not old ones. Microsoft keeps using a lie, exploiting its own back doors to sell more 'upgrades' (to more malicious versions)]
The CTA's analysis explains that a number of Windows operating systems remain vulnerable to the bug, despite a patch released by Microsoft. As such, these systems run a vulnerable network file sharing protocol dubbed SMB1.
-
Leaked NSA Software ‘Eternal Blue’ Responsible Rise of Illegal Crypto-Mining
-
Crypto-Malware Cases Have Increased More Than 500% This Year
- Login or register to post comments
- Printer-friendly version
- 6444 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Recent comments
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago