Matt

Daca intri pe adresa o sa iti apara un text : Revenim!

Dupa cum am spus si altui user nu dau socoteala nimanui ce posturi fac atata timp cat eu nu imi asum niciun credit pe ele.Probabil voi continua sa fac acelasi lucru , deoarece prefer ca in loc sa dorm la Off-Topic si Cosul de Gunoi , sau sa imi dau aere de mare om trecut prin viata sa postez niste informatii utile , chiar daca nu sunt scrise de mine. Eu am respectat subiectul forumului in acele posturi. 10 stiri postate valoreaza mai mult decat 2 posturi cu semnatura ta sau 2 posturi depre Tinkode la Cosul de Gunoi.

Invatat pe sistemul RSTCenter. /Edited.

The.Legend : Intai am intrebat administratorul unde voi posta acest topic si i-am urmat sfatul.Reactia mea este justificata doarece din posturile pe care le-ai scris pana acum nu au fost mai mult de 5 sau 6 despre subiectul forumului.Poate m-am si hazardat putin insa cred ca in continuare ceea ce am scris. Aici este un forum de securitate , nu ma intereseaza de tine ca imi vii si imi spui sa ma uit la semnatura ta , sa imi scrii din Biblie , psalmi , sa imi oferi lectii de viata. Din ce ai observat n-am avut nimic altceva de comentat decat asupra acestui subiect. Poate imi place sa fiu putin mai hater , dar cum scriam si in "tutorial" unii merita o anumita lectie. Sunt sigur ca esti mult mai bun ca mine , tocmai de aceea ceea ce ti-am scris mai sus n-ar trebui sa iti faca vreo anume impresie ci sa o iei ca un "sfat" . Nu am fost singurul care am avut o reactie negativa asupra ta. Preferam sa scrii intr-un pm , nu aici , unde nu isi are locul acest post. // Conteaza si atitudinea.

//

Tumblr launched an updated iOS app on Tuesday that includes a "very important security update" to address an internal flaw. In a company blog post, the Yahoo-owned microblogging site urged users of its iOS app to "please download this update now" and change their passwords on the site as well as on other sites where the same password is used. The issue, the nature of which was not described in the post, apparently does not affect the Android version as no update for that app was issued. Yahoo did not immediately respond to a CNET request for more information but did tell TheNextWeb that it only learned of the vulnerability on Tuesday : The microblogging site, which claims more than 300 million monthly unique visitors, was acquired by Yahoo last month for $1.1 billion. Sursa News.cnet.com

Researchers at Dell have found that hackers are selling off user information at rates of $1,000 per record. The company's SecureWorks subsidiary said that as hackers collect vital information on users, a trade in other data has emerged amongst cybercriminals. According to research from SecureWorks, hackers are not only harvesting account credentials but are now looking to bundle information as full packages, referrred to by hackers as “fullz.” The kits are said to include multiple forms of user identification, including social security numbers, “A number of these marketplaces are serving as a one-stop shop for identity theft and fraud,” SecureWorks said in its report. “Not only are they selling the stolen credentials, but they also sell the supporting (counterfeit) documentation or ("dox") for an extra charge.” According to the researchers, the kits include user information ranging from social security and health insurance data to drivers license, address and social security numbers. Such packages have been sold between hackers for prices of up to $500. Meanwhile, data drops which include online gaming accounts have been sold for even higher prices, fetching costs of up to $1000 when online gaming accounts such as PSN and Xbox Live credentials have been included. “Our CTU researchers discover caches of stolen data frequently, and we have found that the hackers will steal anything they think they can sell on the underground,” said Dell SecureWorks counter threat unit researcher Don Jackson. “Health insurance credentials continue to rise in value as we see the cost of health insurance and the cost of medical services continues to rise.” Sursa

Incep sa ma satur de US , PRISM , Snowden , Microsoft , Yahoo pe care ii vad ca incearca disperati sa isi justifice actiunile. Totusi ceva e suspect la mijloc pentru ca ar trebui sa fie un scandal de proportii , sa fie dati afara oameni din NSA , congres ( poate chiar au fost dati ) insa eu ma refer la presa. Cand se afla asa ceva trebuie "tambalau" mare .. acum nimic de parca presa ar fi manipulata sau asa ceva.

Piata neagra a vulnerabilitatilor nedescoperite anterior din software-le comerciale este in prezent atat de stabila, incat o vulnerabilitate se vinde in medie cu pana la 160.000 $. Un furnizor de asa-numite vulnerabilitati "zero-day" isi taxeaza clientii cu un abonament anual de 100.000 $, taxand in plus si pentru fiecare vanzare, potrivit New York Times. Costurile depind de gradul de complexitate a vulnerabilitatii si de gradul de utilizare a sistemului de operare sau software-ului comercial respectiv. Intr-o incercare de a contracara aceasta problema in crestere, multe companii din domeniul tehnologic au initiat programe de recompensare "bug bounty". Luna trecuta s-a alaturat in sfarsit si Microsoft companiilor Google, Paypal, Facebook si Mozilla Foundation in oferirea de recompense in bani pentru a preveni ca cei care gasesc bug-uri sa se indrepte catre piata neagra. Microsoft, care a oprit de curand oferirea de recompense banesti similare, a fost fortata sa revina cu o oferta de 100.000 $ pentru tehnici de exploatare impotriva protectiei integrate in Windows 8. Google, care a majorat recent recompensa oferita la 20.000 $ si Facebook, care pana acum a platit doar maxim 20.000 $ pentru un singur bug, s-ar putea sa fie nevoite sa-si regandeasca programele de recompense pentru a ramane eficiente. Piata este ridicata prin participarea tot mai mare a guvernelor dornice sa ramana cu un pas inaintea rivalilor lor, potrivit NYT. Intre cumparatorii de top de vulnerabilitati software se afla Marea Britanie, Israel, Rusia, India, Brazilia, Coreea de Nord, Malaezia si Singapore. Acest lucru este deosebit de ingrijorator in lumina faptului ca unii dintre acesti furnizori de pe piata neagra sunt specializati in vulnerabilitati din sistemele de control idustrial, care pot fi utilizate pentru a accesa sau perturba sistemele nationale de furnizare de utilitati, precum electricitate sau apa. Sursa: ComputerWeekly.com | Information Technology (IT) News, UK IT Jobs, Industry News

Microsoft has written to the US Attorney General asking him to let the company be more open about what information it hands over to the NSA, and has published a rebuttal of the claims from NSA whistleblower Edward Snowden about the privacy of its users. "The Constitution guarantees the fundamental freedom to engage in free expression unless silence is required by a narrowly tailored, compelling Government interest," said Microsoft's general counsel Brad Smith in a somewhat groveling letter to AG Eric Holder. "It's time to face some obvious facts," Smith wrote. "Numerous documents are now in the public domain. As a result, there is no longer a compelling Government interest in stopping those of us with knowledge from sharing more information, especially when this information is likely to help allay public concerns. Smith also published a blog post in which he rebutted claims that Microsoft has built backdoor access for federal investigations into some of its most popular software and services. Snowden's evidence has been misreported, Smith said, and Microsoft wants to set the record straight. Possibly the most damaging allegation is that Microsoft installed a backdoor in the encryption system used in Outlook.com. Snowden's documents indicate this was installed at the request of the NSA and developed by Microsoft in conjunction with the FBI. "We do not provide any government with direct access to emails or instant messages. Full stop," Smith said. "We do not provide any government with the technical capability to access user content directly or by itself. Instead, governments must continue to rely on legal process to seek from us specified information about identified accounts." When Microsoft receives a valid information request from law enforcement, it has no need to disable the encryption of messages, Smith said. Instead, Microsoft can take the data from its own servers (where it sits unencrypted) and then pass it on if legally required to do so. As for Microsoft's cloud service SkyDrive, Smith said that – like any other cloud provider – Redmond has to obey legal requests for data. The company had made changes in SkyDrive this year to "comply with an increasing number of legal demands governments worldwide," but he said direct access to the system's servers by analysts is not given. Skype users should stop worrying as well, Smith suggested, and denied Snowden's claims that Microsoft had made changes to Skype so that investigators would get easier access to call data, saying changes like the shift to supernodes and storing Skype IM data on Redmond's own servers were simply improvements to Microsoft's back-end systems. "As Internet-based voice and video communications increase," Smith wrote, "it is clear that governments will have an interest in using (or establishing) legal powers to secure access to this kind of content to investigate crimes or tackle terrorism. We therefore assume that all calls, whether over the Internet or by fixed line or mobile phone, will offer similar levels of privacy and security," he said. Smith also took special care to reassure Microsoft's business and government customers that none of their data has been given to the government for national security purposes, although it does deal with a small number of criminal investigation requests, including four last year. Microsoft's encryption of such data has no backdoors, he said, and Redmond doesn't share encryption keys with government. "The United States has been a role model by guaranteeing a Constitutional right to free speech. We want to exercise that right," Smith concludes. "With U.S. Government lawyers stopping us from sharing more information with the public, we need the Attorney General to uphold the Constitution." ® Sursa TheRegister.co.uk

'Anti-business values' behind Firefox cookie-blocking scheme Randall Rothenberg, president and CEO of industry group the Interactive Advertising Bureau (IAB), thinks the Mozilla Foundation's policy on third-party cookies is way out of line, and he's taken to the web with a 4,000-word screed essay to make his case. It was in February that Mozilla first said that a future version of its Firefox browser would block the controversial cookies – which are typically used by ad networks – but has repeatedly delayed its plans as it has sought input from online advertisers and others. The IAB has remained steadfastly opposed to the whole idea, however, and in a rambling, accusatory statement on Tuesday, Rothenberg said the problem boils down to Mozilla's "anti-business value system." Mozilla, Rothenberg wrote, exists "inside a cocoon spun by techno-libertarians and academic elites who believe in liberty and freedom for all, as long as they get to decide the definitions of liberty and freedom." To be specific, Mozilla's current definitions of freedom and liberty include working with the Center for Internet and Society at Stanford University to develop the Cookie Clearinghouse (CCH), an effort to create whitelists and blacklists to let browsers block or allow cookies from specific sites. According to Mozilla CTO Brendan Eich, the nonprofit plans to integrate the CCH into a future version of Firefox, and it won't ship a version of Firefox that blocks third-party cookies by default until the CCH code is ready. To Rothenberg, however, the idea of a browser that knows how to block cookies from selective sources is not only abhorrent, but it could mean the destruction of an entire segment of the global economy. "[Third-party cookies] have been part of the way Internet advertising has been delivered, measured, analyzed, optimized, and compensated for more than 15 years," he railed. "Were they to be embargoed tomorrow, billions of dollars in Internet advertising and hundreds of thousands of jobs dependent on it would disappear." Worse, he said, the impact will be inordinately felt by small businesses. "At this moment in the evolution of the Internet, third-party cookies are the technology that makes small publishers economically viable. Their elimination will concentrate ad revenues in a shrinking group of giant media and technology companies," he wrote. Rothenberg further accused Aleecia McDonald, who heads the CCH at Stanford, of valuing privacy over commerce, and he questioned Mozilla's values for associating with such a person. According to Rothenberg, McDonald once said that if some third parties go out of business because of W3C standards on tracking protection, "that is OK because that will be a good day for privacy" – a sentiment Rothenberg described as "insensitive." And Mozilla has been hanging around with other shady characters, too, he said, including Jonathan Mayer – the author of Firefox's cookie-blocking code – whom he described as an "anti-business extremist." In fact, he said, there are no representatives from content publishers or advertising agencies participating in the CCH effort – only "anti-business radicals." But according to Rothenberg, it's not too late to fix the situation. The solution, he said, would be for Mozilla to join the IAB. Apple, Google, and Microsoft are all already members, he pointed out, although he admitted that their browser development teams don't get involved. "By dealing exclusively with the issue of controls around cookies, Mozilla is missing a great opportunity to talk about the options for identity management and safety in a larger scope," Rothenberg wrote. "A solution that empowers consumer choice in both the mobile OS and desktop browser spaces would bring significantly more value to all involved parties, and allow Mozilla to promote thought leadership with its nascent Mobile OS." Representatives from Mozilla did not immediately respond to El Reg's request for comment. ® Sursa TheRegister.co.uk

Wi-Lan seems a step closer to having to wear the tag “patent troll”, with an East Texas federal jury tossing out its patent suit against Alcatel-Lucent, Ericsson, HTC and Sony. The patents at issue had been acquired from Airspan Networks. They included techniques such as channel pooling, subscriber terminals (mobile phones), and TDM techniques, encoders and decoders. US patent 6,008,326, 6,222,819 and 6,318,211 all covered wireless data processing, while 6,195,327 covers interference control. Wi-Lan had asserted that products implementing 3GPP standards infringed these patents, and began its litigation based on the patents in 2010. LG, also named in the original suit, settled in favour of paying royalties to Wi-Lan, but the other four companies decided to fight it out. As Bloomberg notes, this is the first time Wi-Lan's patent suits have been brought to trial, and the result includes invalidation of three of the four patents. HTC says it believes “Wi-Lan has exaggerated the scope of its patent in order to extract unwarranted licensing royalties from entities who have been focused on bringing innovation forward in their own products”, while Alcatel-Lucent spokesperson Kurt Steinert told Bloomberg the result “validates our belief that Wi-Lan was stretching the boundaries of its patents”. However, the Financial Post reports that with a $US170-million war chest and other patent trials in the pipeline, Wi-Lan will survive even though it quotes Cantor Fitzgerald lawyer Justin Kew called the outcome a “worst case scenario” for the company. ® Sursa TheRegister.co.uk

Sony has begrudgingly abandoned its fight to contest a £250,000 fine handed down by the Information Commissioner’s Office after its massive 2011 PlayStation Network data breach. The Japanese electronics giant was slapped with the fine back in January for breaching the Data Protection Act after the personal info of millions of Brits – including names, addresses and account passwords – were stolen by hackers who infiltrated its PlayStation Network systems. Sony has now decided not to fight the fine, despite still strongly opposing it, because of fears the Information Rights Tribunal would have forced it to divulge sensitive details about its network security set-up. "This decision reflects our commitment to protect the confidentiality of our network security from disclosures in the course of the proceeding,” a Sony spokesman told the BBC. "We continue to disagree with the decision on the merits." Back in January, the ICO concluded after an investigation that the breach of around 70 million gamers could have been prevented if Sony had taken best practice security measures such as hashing and salting log-ins and keeping system patches up to date. Deputy commissioner David Smith said in a statement released at the time : The £250,000 fine is one of the biggest ever doled out by the ICO, although it can't top the £375,000 handed down to Brighton and Sussex NHS Trust after patient records were stolen from a hospital and put on eBay. Sursa TheRegister.co.uk

E acelasi domeniu , ca e in Romania sau Laponia.

Exact sub topic-ul acesta ai un alt topic care se numeste : Facultati de Informatica https://rstforums.com/forum/70576-facultati-de-informatica.rst Mi-e greu sa cred ca nu l-ai vazut.

Nu trece zi sa nu zica unu Tinkode.

Pranks

) Da-i o tura pe la : https://rstforums.com/forum/club-showoff.rst

S-au gasit xxs-uri in fbi.gov. Nu e legal.

Ba merge. // E un fisier corupt si cred ca e imposibil sa mai scoti ceva de la el.

Din lipsa de ocupatie si din lipsa alte carti pe care sa le citesc doresc o parere , doua asupra cartilor urmatoare : Criminalitatea informatica Cisco - arhitecturi de securitate (Gil Held) Le-a citit cineva?

Nu imi amintesc. Probabil i s-au adunat infractiunile.

Respectivul a luat ban.

Polonic? // Sa-i ia cineva microfonul doamne.. // So nVIDIA .. ))

So many Legends.