It’s not a good day for Drupal users, with the security folks at the CMS platform telling all users to consider themselves compromised if they didn’t install a security patch within seven hours of its release on October 15th.
Fixing the infected sites will require a bit of work. Sites will need to be taken offline, and the current install of Drupal blown-up and replaced with a backup from before October 15th. Any changes made [...]
Continue reading Drupal Hack & WordPress Users
For nearly a month now, we at FOSS Force have had no trouble reaching the popular FOSS sites Tux Machines and TechRights. Both sites are published by Roy Schestowitz and both sites, especially the former, had been offline during much of September due to a prolonged DDOS attack.
On October 4th, when we last reported on this, accessibility to both sites was greatly improved but still somewhat spotty. During most of this month, however, we’ve [...]
Continue reading Tux Machines DDOS Attack Mostly Contained
From its inception, we knew the Internet to be an unsafe place. Before the first server was cracked by an online hacker, we knew that was bound to happen sooner or later. We knew because people were already breaking into computers, even without the Internet offering 24/7 cracker/hacker convenience.
Back in the early 90s, when I was living in the college town of Chapel Hill, I shelled-out five bucks or so at the local Egghead [...]
Continue reading Should Everything in the World Be Facing the Internet?
Now that a working exploit of the USB vulnerability that’s baked-in to the USB standard has been released, it might be a prudent move to no longer employ any USB devices that aren’t already under your control until this situation has been fixed.
The exploit was first made public two months ago at the Black Hat conference in Las Vegas when Karsten Nohl and Jakob Lell of Berlin based Security Research Labs (SRL) demonstrated an [...]
Continue reading Researchers Release USB Exploit & Incomplete Fix on GitHub