|
Clickjacking exploits enable hackers to hijack webcams: related news
Tags:
clickjacking enable exploits hackers hijack webcams
MS08-043 – Critical: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (954066) - Version:1.3
in Computer Security
via SC Magazine @ 22:48 8th Oct
- Related
An anonymous reader writes "As discussed previously on Slashdot, concern has been raised over a class of 'clickjacking' vulnerabilities which affect all major Web browsers. These exploits allow an attacker to place invisible or seemingly legit objects on a Web page that perform undesired actions when a user clicks on them. In recent developments, 'Guya' posted a scary proof-of-concept that hijacks Adobe Flash Player to spy on users with a webcam and/or microphone. In response, Adobe released an advisory with a temporary workaround, and stated that a future Player update will address the exploit. This prompted the original disclosers of the vulnerabilities to post a summary of the exploits. Additionally, Giorgio Maone, creator of the popular NoScript extension for Firefox and other Gecko-based browsers, released version 1.
in Web Developer
via Slashdot @ 21:03 9th Oct
- Related
A security advisory issued by Adobe with regard to its Flash Player states that it could be subject to clickjacking attacks.
in Computer Security
via Smart House @ 22:18 8th Oct
- Related
I know. You were sitting around thinking that computer security has gotten boring. You were like 'viruses? worms? Trojans?...yawn'. You were thinking that spyware and phishing attacks are so yesterday. Well- Happy Day!! There is a new threat you can worry about: clickjacking. Robert Hansen, Founder and CEO of SecTheory LLC uncovered the details of these threats working with Whitehat Security's Jeremiah Grossman. The issue was supposed to be kept hush hush while vendors worked to patch the problem, but after a proof-of-concept was leaked that exploits clickjacking Hansen posted details on his blog, including a dozen potential clickjacking scenarios you should probably be aware of.
in Computer Security
via About @ 22:48 11th Oct
- Related
Adobe Systems warned users Tuesday that hackers could use recently reported "clickjacking" attack tactics to secretly turn on a computer's microphone and Web camera.
in Top Internet
via InfoWorld @ 23:19 8th Oct
- Related
A group of Greek hackers attacked a Large Hadron Collider web site and posted a page claiming responsibility for the act. The site, cmsmon.cern.ch, has since been taken off line and is no longer accessible to the public. Although the defacement was fairly benign, it raised concerns among some scientists at CERN because the hackers were one computer removed from a computer control system of one of the detectors that is part of the large collider. The target of the attack was CMSMON, part of the system that monitors data collected by the Compact Muon Solenoid Experiment. With scientists tweaking the system and getting ready for full-scale operation, any setbacks or delays could be critical. Besides defacing the site, the hackers also managed to damage one file and installed some additional files which the CMS team removed.
in General Science
via Overclockers Club @ 5:35 14th Sep
- Related
A Flash Player vulnerability could allow attackers to gain control of a user's webcam and microphone, according to a security advisory issued by Adobe. The company has issued a workaround; however a patch won't come until later. As always, Web surfers should be careful where they're clicking.
in Computer Security
via Linux Insider @ 22:19 9th Oct
- Related
A Flash Player vulnerability could allow attackers to gain control of a user's webcam and microphone, according to a security advisory issued by Adobe. The company has issued a workaround; however a patch won't come until later. As always, Web surfers should be careful where they're clicking.
in Computer Security
via Tech News World @ 15:10 9th Oct
- Related
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
in Computer Security
via Linux Today @ 22:46 11th Oct
- Related
LinuxInsider: "A Flash Player vulnerability could allow attackers to gain control of a user's webcam and microphone, according to a security advisory issued by Adobe.
in Computer Security
via Addict3d.org @ 15:13 9th Oct
- Related
A couple of dudes with more smarts than brains were busted for stealing the identities of legitimate trucking firms, setting up actual jobs and pocketing the cash, says Wired's Threat Level blog. But though the hackers operated for years out of the comfort of their home, the master plan was doomed to backfire.
in Computer Security
via Gizmodo @ 20:49 19th Oct
- Related
After four days of being hijacked by FaceBook hackers, normal service is restored on the science fiction FaceBook group owned by author Stephen Hunt. Worryingly, FaceBook show not a clue that a deep-level hack of their service has even occurred.
in Computer Security
via SF Crowsnest @ 0:16 18th Nov
- Related
Hackers claim they have broken into the computer system of the Large Hadron Collider, the mega-machine designed to expose secrets of the cosmos, British newspapers reported on Saturday. A group calling itself the Greek Security Team left a rogue web page mocking the technicians responsible for computer security at the giant atom smasher as ‘schoolkids’, the Times and Daily Telegraph reported. The hackers vowed they had no intention of disrupting the experiment at the European Organisation for Nuclear Research (CERN) on the Swiss-French border, they just wanted to highlight the flaws in the computer system’s security. “We’re pulling your pants down because we don’t want to see you running around naked looking to hide yourselves when the panic comes,” they wrote, according to the Daily Telegraph.
in Computer Security
via Daily Times @ 11:02 15th Sep
- Related
WASHINGTON: Hackers broke into the email account of Republican vice presidential nominee Sarah Palin, the John McCain campaign said on Wednesday. The hackers managed to infiltrate Palin’s personal Yahoo email account, and posted a number of the Alaska governor’s emails and two family photos on the Internet. “This is a shocking invasion of the governor’s privacy and a violation of law,” the McCain campaign said in a statement. It said the matter has been turned over to authorities and asked anyone in possession of Palin’s documents to destroy them. A group calling themselves “Anonymous” claimed responsibility for the breach. afp
in Computer Security
via Daily Times @ 3:33 19th Sep
- Related
Enable Holdings, formerly uBid Holdings, appointed Bob Geras to its Board of Directors. Co-founder of Sixpence Inns, which was acquired by Motel 6, and President and sole owner of LaSalle Investments for 30 years, Geras is a Founding Director of the Illinois Venture Capital Association and is involved with a number of venture funds, such as K-B Partners, Dunrath Capital Partners, Ceres Venture Fund, and the Illinois Accelerator Fund. Enable Holdings Inc.'s multi-channel asset-recovery solution includes online auction platform uBid.com.
in Online Auctions
via Auctionbytes.com @ 11:01 20th Nov
- Related
Barence writes "Hackers have released source code that allows the 'backup' of RFID-protected passports, although the tool can potentially be used to create fake or cloned documents. The Hacker's Choice, a non-commercial group of computer security experts, has released a video showing a cloned passport being approved by a security scanner at a Dutch airport. When the reader scans the passport, it is revealed to belong to one Elvis Aaron Presley, complete with picture. Reports of the hackers serenading security staff with 'Are You Clonesome Tonight' are unconfirmed."
in Computer Security
via Slashdot @ 7:59 2nd Oct
- Related
Web 2.0 could be driving browser vulnerabilities and entice hackers to create new security exploits using Javascript code..
in Computer Security
via PC Authority @ 2:19 31st Oct
- Related
Though the Large Hadron Collider's infiltration by hackers did not disrupt the historic project, experts warn that its computer systems are vulnerable -- though at least their exploitation won't destroy Earth. Shortly after physicists activated the Collider on Wednesday, hackers identifying themselves as Group 2600 of the Greek Security Team accessed computers connected to the Compact Muon Solenoid detector, one of four key subsystems responsible for monitoring the collisions of protons speeding around the 18-mile track near Geneva, Switzerland.
in Computer Security
via ABC News @ 15:08 15th Sep
- Related
ImageThe Greek hackers have put out of action one of sites of the European organisation of nuclear researches (CERN) - cmsmon.cern.ch. Breaking has occurred last week in day of successful start of the accelerator the TANK (Big Adronnogo Kollaydera, LHC). Hackers have laughed over managers of a site, asserting, that "trousers" have taken off from them.
in General Science
via Khabrein.info @ 3:41 17th Sep
- Related
Could the hackers who infiltrated Republican vice presidential hopeful Sarah Palin's personal Yahoo account avoid prosecution thanks to a Department of Justice policy statement? Though federal law prohibits the unauthorized access of someone's e-mail account, the DOJ's interpretation of one particular case might only hold the Palin hackers accountable for accessing unopened messages, according to the Electronic Frontier Foundation (EFF).
in Computer Security
via Lucianne.com @ 0:55 20th Sep
- Related
chromatic writes "Kernel hackers Arjan van de Ven and Auke Kok showed off Linux booting in five seconds at last month's Linux Plumbers Conference. Arjan and other hackers have already improved the Linux user experience by reducing power consumption and latency. O'Reilly News interviewed him about his work on improving the Linux experience with PowerTOP, LatencyTOP, and Five-Second Boot."
in Web Developer
via Slashdot @ 14:50 3rd Oct
- Related
Two men who played key roles in the massive cyberheist at TJX, parent of retailers T.J. Maxx and Marshalls, were involved in different scams tied to TJX, according to their respective indictments. The men's divergent sagas represent bookends of the vast digital crime. According to psychiatrists, hackers and computer-security experts, they represent the vanguard of cybercrooks: young, misguided males who rationalize that they've done nothing wrong.
Read the article: USA Today
in Computer Security
via GigaLaw.com @ 8:33 28th Oct
- Related
Now security researchers say cell phones, and not just PCs, are the next likely conscripts into the automated armies. The mobile phone as zombie computer is one possibility envisioned by security researchers from Georgia Tech in a new report coming out Wednesday. The report identifies the growing power of cell phones to open a new avenue of attack for hackers. Of particular concern is that as cell phones get more computing power and better Internet connections, hackers can capitalize on vulnerabilities in mobile-phone operating systems or Web applications. Botnets, or networks of infected or robot PCs, are the weapons of choice when it comes to spam and so-called “denial of service attacks,” in which computer servers are overwhelmed with Internet traffic to shut them down.
in Computer Security
via EChannelnews.com @ 6:48 1st Nov
- Related
The country's defense industry faces a serious security risk from hackers. Grand National Party lawmaker said Sunday based on data provided by the National Security Research Institute that LIGNex1, a guided missile manufacturer, uncovered malicious codes in its major computer systems planted by hackers in March, and Hyundai Heavy Industries, which makes naval vessels, found them in September.
in Computer Security
via Digital Chosun @ 6:36 29th Sep
- Related
The NoScript plug-in for Mozilla's Firefox browser has been updated to guard against clickjacking, which security experts call one of the most dangerous problems on the Web. The well-known NoScript plug-in for Firefox is the first to be announced as a defense against clickjacking, but solutions are expected for other Web browsers.
in Open Source
via CIO Today @ 18:59 13th Oct
- Related
Search took 0.09 seconds.
|
|
