Category: CommunityCommunity tagged "security"

With the announcement of a new vulnerability that could lead to the leaking of OpenSSH clients’ private keys, SSH users should update. All versions of OpenSSH from 5.4 to 7.1 are vulnerable.

Jan 21, 2016, 12:30 pmBy: Corey Northcutt (0) Comments

Authentication factors are often categorized as something you know, something you have, and something you are. Passwords are the obvious example of something a user knows. In an ideal world, passwords would be something only the user knows, but because password databases are wont to leak, and because users can’t be relied on to choose […]

Jan 19, 2016, 10:41 amBy: Corey Northcutt (0) Comments

Security researchers recently showed that the company behind the MacKeeper application exposed the data of millions of its users. We’re used to hearing about such security breaches, but in this case it didn’t happen because of a software vulnerability or a clever social engineering attack. It happened because the MongoDB database used by the company […]

Jan 14, 2016, 11:29 amBy: Corey Northcutt (0) Comments

A few months ago, Cisco announced a new format for disclosing vulnerabilities. The PSIRT vulnerability disclosure format was intended to make it easier for system administrators to remain informed about vulnerabilities in Cisco’s products, which are used in data centers all over the world. This month, the company announced an API to make that information […]

APIciscoSecuritySystem Administration
Jan 12, 2016, 10:54 amBy: Corey Northcutt (0) Comments

I don’t think “backdoor” is a particularly good metaphor for the sort of security vulnerability that many organizations want to see introduced into purportedly secure software. The backdoor in my house is a convenient way for me to access my backyard. I have the key to it and I can make it as secure as […]

Enterprise ITSecuritySoftware
Jan 5, 2016, 4:15 pmBy: Corey Northcutt (0) Comments


Sign up to receive periodic InterWorx news, updates and promos!

New Comments

Current Poll

  • This field is for validation purposes and should be left unchanged.