Sunday, June 8, 2014

Top 5 Infosec links of the week (XXVIII)

"OpenSSL vulnerability, passports posted on Twitter, intercom owned, CISOs in the management team of big companies and new vulnerability in WordPress". The five top post this week, directly in the Sunday compilation.

"A open secret" read the title of the article CIGTR into the top, and with good reason. OpenSSL library open communications encryption tools par excellence, has several critical vulnerabilities. And its creators seem to hid this situation until the truth has come to light. Can we now trust LibreSSL, the fork OpenSSL created after the discovery of the security breach in Heartbleed?

Who would think to take a picture with the passports of your coworkers? Vauxhall, sponsor of the English team, before the match against Ecuador. A photo that lets you know the date of birth and passport number of each team member.

By returning SbD surprises us once more with a hacking tutorial somewhat peculiar. This time, from Intercoms. Devices with increasing responsibility, and generally keep your commands and default administration password and can lock the door, open it or keep it open for several minutes with the classic and annoying active.

The security business is becoming an issue of greater importance. And this is mainly because with advancing regulation on digital data security breaches affecting more and more directly to the business. It is not uncommon for it to many large U.S. companies are looking for security experts to positions of senior executives, matching the CISO figure with the CIO.

And ended up with a vulnerability to consider. If you are the administrator of a page managed by Wordpress, surely you should know that the famous All in One SEO Pack plugin has published several vulnerabilities that allow an attacker to modify the information on page SEO and escalate privileges to administrator.

Top five topics of the week. News Five drinking from the same source. The business that are behind the theft.


Post a Comment