News Category: Security

Mitigating dirtyc0w with systemd

Basic mitigation Known exploits for the CVE-2016–5195 vulnerability involve the madvise syscall, so it’s possible to mitigate by excluding the necessary call via a systemd service or container configuration. This is easy with for a systemd unit: [Service] SystemCallFilter=~madviseThe tilde after...
Read 1 Comments

“Most Serious” Linux Privilege-Escalation Bug Ever Is Under Active Exploit (updated)

A serious vulnerability that has been present for nine years in virtually all versions of the Linux operating system is under active exploit, according to researchers who are advising users to install a patch as soon as possible. While CVE-2016-5195, as the bug is cataloged, amounts to a mere...
Read 0 Comments

Open Source, Third-Party Software Flaws Still Dog Developers

The new 2016 State of Software Security Report from Veracode shows the hazards of buggy libraries and applications. Application developers are getting burnt by security vulnerabilities in the very open source- and third-party frameworks and software components that make up their finished...
Read 0 Comments

GPG Sync Simplifies Encryption Key Management

Open source project GPG Sync makes it easier for organizations already using GPG to encrypt email messages to manage different user keys. In all the discussion about using encryption, a critical point keeps getting lost: It's difficult to work with, and it's even harder to deploy it at scale....
Read 0 Comments


Brian Spector
Brian Spector, MIRACL CEO and Co-Founder, described Apache Milagro -- a modern cryptosystem with distributed trust authorities -- at ApacheCon North America in May.

Apache Milagro: A New Security System for the Future of the Web

With 25 billion new devices set to hit the Internet by 2025, the need for a better worldwide cryptosystem for securing information is paramount. That’s why the Apache Milagro project is currently incubating at the Apache Software Foundation. It’s a collaboration between MIRACL and Nippon Telegram...
Read 0 Comments

Systemd Bug Allows Ordinary User to Crash Linux Systems

The systemd project is yet to release a fix for a bug that was disclosed on 28 September but at least one GNU/Linux distribution has patched the same. The bug, allowing a user to crash a system by using a short command as an ordinary user, was disclosed by a developer named Andrew Ayer. After...
Read 0 Comments

ICANN Grinds Forward on Crucial DNS Root Zone Signing Key Update

The Internet Corporation for Assigned Names and Numbers is moving -- carefully -- to upgrade the DNS root zone key by which all domains can be authenticated under the DNS Security Extensions protocol. ICANN is the organization responsible for managing the Domain Name System, and DNS Security...
Read 1 Comments


Minijail lets developers and admins safely run untrusted programs for debugging and security checks, said Google Software Engineer Jorge Lucangeli Obes at the Linux Security Summit.

Minijail: Google’s Tool To Safely Run Untrusted Programs

Google’s Minijail sandboxing tool could be used by developers and sysadmins to run untrusted programs safely for debugging and security checks, according to Google Software Engineer Jorge Lucangeli Obes, who spoke last month at the Linux Security Summit. Obes is the platform security lead for...
Read 0 Comments

Meet Apache Spot, a New Open-Source Project for Cybersecurity

Hard on the heels of the discovery of the largest known data breach in history, Cloudera and Intel on Wednesday announced that they've donated a new open-source project to the Apache Software Foundation with a focus on using big data analytics and machine learning for cybersecurity.  Originally...
Read 0 Comments

The Best Way to Develop Software with Effective Security

Regardless of the level at which you're doing your programming, security is going to get in the way. No amount of application abstraction or modern development process seems capable of shielding developers from the barriers raised by security. It's pretty hard not to hate security when it doesn't...
Read 0 Comments


Click Here!