Linus Åkesson (July 25, 2008)
Friday, September 21, 2012
Tuesday, April 24, 2012
A factory backdoor account in RuggedCom's Rugged Operating System (ROS®) has been disclosed. <RuggedCom> is a manufacturer of rugged networking equipment popular in industrial, utility, and defense industries. These sensitive consumers of frequently security sensitive networking devices have recently been informed by RuggedCom, who has acknowledged the backdoor. Due somewhat to RuggedCom's unresponsiveness after acknowledgement, this information was publicly disclosed. According to the disclosure, an undocumented account, "factory", which cannot be disabled, is included in all released versions of ROS® with a password generated from the device's MAC address.
<Secunia - Full Disclosure CVE-2012-1803 (April 23, 2012)>
Sunday, April 22, 2012
Customers voice their opinion to supporters of the newest dangerous Internet bill, CISPA (H.R. 3523).
Source: Verizon Wireless Community Forum
April 22, 2012 12:00PM
(The original text has been modified for formatting, linking, and alignment.)
Some other supporters:
- Business Roundtable
- CTIA - The Wireless Association
- Cyber, Space & Intelligence Association
- Edison Electric
- The Financial Services Roundtable
- Independent Telephone & Telecommunications Alliance
- Information Technology Industry Council
- Internet Security Alliance
- Lockheed Martin
- National Cable & Telecommunications Association
- US Chamber of Commerce
- US Telecom - The Broadband Association
Sunday, February 12, 2012
<Steam>, the popular gaming digital rights management platform by <Valve>, pushed an update today containing an "update news" page, which warned of the discovery that personal data was stolen in last year's intrusion. Steam warned that a copy of a backup file about transactions between 2004 and 2008 may have been obtained. Steam assured that no Steam account passwords were included, but mentioned the following user data being contained in the taken data:
Tuesday, January 17, 2012
This blog would be forced offline if the currently proposed U.S. legislature is passed.
SOPA and PROTECT IP are poorly defined, easily abused, unclear bills proposed to the U.S. House and Senate with unrealistic expectations of Internet technology, which will stifle free speech and innovation while giving the U.S. Government the ability to censor the U.S. Internet and seize U.S. domain names with little reason or limitation. Enforcement of these bills would require the restructuring of many web services which would affect Internet users globally.
These bills threaten a blog like this through vague terminology lacking definitions, such as "committing or facilitating the commission of criminal violations" [of copyright infringement or counterfeit products]. "Facilitation" can often be argued as simply teaching or demonstrating how to do something. As I interpret this, any website with Hacking/Hacker/Hack in the name or topic would technically be automatically out of compliance and be at the mercy of enforcement of these laws to not permanently seize associated domain names and possibly further prosecute owners.
These bills create a largely undefined take down process that will clearly leave many types of web services, such as the free blog host here at blogger.com, unable to meet requirements. No provisions for abuse make these vague bills a prime target for more abuse than the DMCA takedown request system has historically endured.
Some other concerning areas of these bills include provisions against circumvention of such measures, which the U.S. State department funds creating hypocritical tools for doing just that, to offer citizens under [foreign]"repressive regimes" uncensored access to the internet.
Please do all you can to educate the public and urge U.S. citizens to contact their government representatives urging them to vote against these reckless bills.
Bill text PROTECT IP (Senate):
Bill text SOPA - Stop Online Piracy Act (House):
A Layman's examination:
History of DCMA takedown abuse:
How these bills violate free speech and innovation:
U.S. State department funds tools to circumvent censoring:
I apologize for any inconvenience. We will be returning soon.