Old Linux kernel security bug bites

LinuxSecurity.com: OK, hands up, who knows what High-Level Data Link Control (HDLC) is? It’s an archaic networking data framing protocol that’s used in modems, X.25, frame-relay, ISDN, and other now uncommon networking technologies. I know it because I used to work with them back in the day. You’ll get to know it now because a researcher discovered a security hole hidden within the Linux kernel driver that implements it.

From: Linux Security

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail

Virtual machine escape fetches $105,000 at Pwn2Own hacking contest

LinuxSecurity.com: Contestants at this year’s Pwn2Own hacking competition in Vancouver just pulled off an unusually impressive feat: they compromised Microsoft’s heavily fortified Edge browser in a way that escapes a VMware Workstation virtual machine it runs in. The hack fetched a prize of $105,000, the highest awarded so far over the past three days.

From: Linux Security

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail

Ethical Hacking: The Most Important Job No One Talks About

LinuxSecurity.com: If your company doesn’t have an ethical hacker on the security team, it’s playing a one-sided game of defense against attackers. Great power comes with great responsibility, and all heroes face the decision of using their powers for good or evil. These heroes I speak of are called white hat hackers, legal hackers, or, most commonly, ethical hackers.

From: Linux Security

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail