In an important ruling, Mr Justice Tugendhat has cleared the way for the group of Brits known as Safari Users Against Google’s Secret Tracking to sue Google in the the British courts. Google had argued that the case should be heard in the US. Mr Justic…
Cisco Small Biz Wi-Fi Products Remotely Vulnerable
Popular Cisco Wi-Fi routers for small and medium-sized businesses are in the cross-hairs thanks to a vulnerability that could allow an unauthenticated, remote attacker to gain root-level access to an affected device – and from there intercept informati…
Trojan Minecraft App Version Uses Smalihook to Defeat Certificate Signing
A false version of the popular Android Minecraft PE app is being sold via Russian app stores for around half the price of the official app. Since third party app stores are not generally as thorough as Google’s Play Store at finding and removing bad ap…
US-CERT Warns of NTP Amplification Attack Surge
Network Time Protocol (NTP) amplification attacks, an emerging form of distributed denial-of-service (DDoS) that relies on the use of publicly accessible servers, is starting to make the rounds, US-CERT is warning.
Passing the Hash with Remote Desktop
Kali Linux contains a large number of very useful tools that are beneficial to information security professionals. One set of such tools belongs to the Pass-the-Hash toolkit, which includes favorites such as pth-winexe among others, already packaged in…
Stroz Friedberg Snaps Up Financial Investigations Firm
The recent acquisition of Tyrian Partners by Stroz Friedberg aims to strengthen international forensic accounting services offered by the multinational forensic investigations specialist.
How to Nuke your Encrypted Kali Installation
There’s been a fair amount of discussion around the recently introduced LUKS nuke patch we added to the cryptsetup package in Kali Linux. We wanted to take this opportunity to better explain this feature, as well as demonstrate some useful approa…
Patch Tuesday Preview: January 2014
Microsoft is extending the holiday period for Sys Admins this month: there are only four bulletins in January’s Patch Tuesday; and not a single one marked ‘critical’. Two, however, will require a restart, while the other two ‘may’ require a restart – s…
Two Thirds of Personal Banking Apps Found Full of Vulnerabilities
A researcher looked at the security of home banking apps, and found shocking results. Forty home banking apps from the top 60 most influential banks in the world were tested and found to have major security weaknesses.
Kali Linux 1.0.6 Release
Kernel 3.12, LUKS nuke, Amazon AMI / Google Compute images and more!
It’s been a while since our last minor release which makes 1.0.6 a more significant update than usual. With a new 3.12 kernel, a LUKS nuke feature, new Kali ARM build scripts, a…