Alberto Bartoli - Blog

SQL Injection Blamed for New Breach The online breach, which led hackers to cardholder information for 110,000 credit cards, was facilitated via SQL injection -- one of the most frequent modes of attack hackers use to illegally acquire payment-card details. tags: SecurityIncident Banking Hackers deface Yayasan 1 Malaysia website tags: SecurityIncident Defacement The Econet broadband website has been hacked tags: SecurityIncident Defacement Posted from Diigo . The rest of my favorite links are here .

Romanian police cuff 40+ over €millions telecom blag tags: SecurityIncident Phones European banks see new ATM skimming attacks - Computerworld Banks in Europe are seeing innovative skimming attacks against ATMs, where fraudsters rig special devices to the cash machines to record payment card details. tags: SecurityIncident Banking Bancomat Ad networks owned by Google, Microsoft serve malware tags: SecurityIncident Malware World Record : 404907 websites hacked by Iskorpitx (Turkish Hacker) ! tags: ...

Wikileaks: hacker colpiscono Visa e MasterCard | tags: SecurityIncident Banking DoS Dutch police website attacked after arrest of suspected hacker tags: SecurityIncident DoS MasterCard, Visa, Paypal and 4chan – The furor of Wikileaks unleashed | Naked Security tags: SecurityIncident DoS Banking AP website hacked from Pak | Deccan Chronicle tags: SecurityIncident Defacement Over 200 Indian webs...

Google è un OpenID provider. E' cioè in grado di autenticare utenti su richiesta di altri servizi. L'utente someuser@gmail.com può quindi autenticarsi su un servizio S fornendo le proprie credenziali a Google e non a S. Ovviamente S deve essere predisposto per delegare l'autenticazione a terzi con il protocollo OpenID. L'identificatore da fornire a S è questo: http://openid-provider.appspot.com/someuser Apparirà una schermata che dice "sono una demo application, non sono l'endpoint ufficiale di Google" (non c'è da preoccuparsi; è solo una applicazione che fa da bridge tra S e Google, in quanto Google offre---per quanto ne so---solo una interfaccia programmatica per OpenID). Questa applicazione invita ad autenticarsi su Google. Una volta che l'utente si è autenticato, è automaticamente rediretto su S. Piccola complicazione: adesso S deve capire quale dei propri account locali deve essere collegato all'utente  someuser@gmail.com . Per r...

Hackers use malware to break into Lady Gaga’s computer tags: SecurityIncident Vulnerable Malware Hackers poison well of open-source FTP app Hackers breached the main server hosting ProFTPD and remained undetected for three days, causing anyone who downloaded the popular open-source file transfer application during that time to be infected with a backdoor that grants unauthorized access to their systems. tags: SecurityIncident Vulnerable Hacking Malware Cuffed Oz bank Trojan perp aiming to bleach his hat A South Australian hacker who admits using banking Trojan malware to infect more than 2,300 computers and steal personal information wants ...