Archive for August 2016

A New Wireless Hack Can Unlock 100 Million Volkswagens | WIRED

A New Wireless Hack Can Unlock 100 Million Volkswagens https://www.wired.com/2016/08/oh-good-new-hack-can-unlock-100-million-volkswagens/ In 2013, when University of Birmingham computer scientist Flavio Garcia and a team of researchers were preparing to reveal a vulnerability that allowed them to start the ignition of millions of Volkswagen cars without keys but were hit with lawsuit to delay publication. Now, a

Sandboxes Explained: How They’re Already Protecting You and How to Sandbox Any Program

http://www.howtogeek.com/169139/sandboxes-explained-how-theyre-already-protecting-you-and-how-to-sandbox-any-program/ Sandboxing is an important security technique that isolates programs, preventing malicious or malfunctioning programs from damaging or snooping on the rest of your computer. The software you use is already sandboxing much of the code you run every day. You can also create sandboxes of your own to test or analyze software in a

Linux TCP bug leaves sites vulnerable to serious hijacking attacks

http://arstechnica.com/security/2016/08/linux-bug-leaves-usa-today-other-top-sites-vulnerable-to-serious-hijacking-attacks/ There is a serious problem in new TCP feature designed to prevent hacking: it makes possible to make easily man-in-the-middle type attacks from anywhere. Feature is built into Linux kernel 3.6-4.7 (patch on newest version available). https://www.rt.com/usa/355558-linux-vulnerability-websites-attacks/ At the symposium, the researchers demonstrated the exploit by injecting code into a live USA Today page

QuadRooter Android security flaw

Android vulnerability QuadRooter attracted attention at DefCon24 event. QuadRooter was marketed as New Android Vulnerabilities in Over 900 Million Devices. Security company Check Point made lots of noise about it, including releasing an Adroid app to check your phone against this security flaw. QuadRooter is a set of four vulnerabilities affecting Android devices built using