Use the internet? This Linux flaw could open you up to attack

A flaw in the Transmission Control Protocol (TCP) used by Linux since late 2012 poses a serious threat to internet users, whether or not they use Linux directly.
That’s the key finding of a research study that’s scheduled to be presented Wednesday at the USENIX Security Symposium in Austin, Texas.
The TCP weakness, identified by researchers from the University of California at Riverside (UCR), enables attackers to hijack users’ internet communications remotely. It could be used to launch targeted attacks that track users’ online activity, forcibly terminate a communication, hijack a conversation between hosts or degrade the privacy guarantee of anonymity networks such as Tor, the researchers said.To read this article in full or to leave a comment, please click here


Original URL: http://www.computerworld.com/article/3106284/security/use-the-internet-this-linux-flaw-could-open-you-up-to-attack.html#tk.rss_all

Original article

Microsoft fixes critical flaws in IE, Edge, Office and Windows print services

Microsoft’s new batch of security patches fixes 47 vulnerabilities across its products, including in Internet Explorer, Edge, Office, Windows and the .NET Framework.
The patches, released Tuesday, are arranged in 11 security bulletins, 10 of which are for Microsoft products. The remaining patch covers Adobe Flash Player, which is bundled with Internet Explorer in Windows 8.1, Windows Server 2012, Windows RT 8.1, Windows Server 2012 R2 and Windows 10.
Six security bulletins, including the Flash Player one, are rated critical and primarily cover remote code execution vulnerabilities that could lead to a complete system compromise.To read this article in full or to leave a comment, please click here


Original URL: http://www.computerworld.com/article/3095266/security/microsoft-fixes-critical-flaws-in-ie-edge-office-and-windows-print-services.html#tk.rss_all

Original article

TP-LINK lost control of two domains used to configure routers and Wi-Fi extenders

One way that hardware vendors try to make the configuration of a router easier is by instructing users to browse to a domain name rather than an IP address. TP-LINK routers use either tplinklogin.net or tplinkwifi.net.The label on the back of a TP-LINK TL-WR841N routerThe image above is the back of an old TP-LINK router, the TL-WR841N, showing the instructions to use tplinklogin.net.To read this article in full or to leave a comment, please click here


Original URL: http://www.computerworld.com/article/3090959/networking/tp-link-lost-control-of-two-domains-used-to-configure-routers-and-wi-fi-extenders.html#tk.rss_all

Original article

Researchers warn computer clocks can be easily scrambled

In 2012, two servers run by the U.S. Navy rolled back their clocks 12 years, deciding it was the year 2000.

The servers were very important: they’re part of a worldwide network that helps computers keep the right time using the Network Time Protocol (NTP).

Computers that checked in with the Navy’s servers and adjusted their clocks accordingly had a variety of problems with their phones systems, routers and authentication systems.

The incident underscored the serious problems that can occur when using NTP, one of the oldest Internet protocols, which was published in 1985.

The protocol is fairly robust, but researchers from Boston University said Wednesday they’ve found several flaws in NTP that could undermine encrypted communications and even jam up bitcoin transactions.

To read this article in full or to leave a comment, please click here


Original URL: http://www.computerworld.com/article/2996188/security/researchers-warn-computer-clocks-can-be-easily-scrambled.html#tk.rss_all

Original article

Proudly powered by WordPress | Theme: Baskerville 2 by Anders Noren.

Up ↑

%d bloggers like this: