Hack This Box

  • Increase font size
  • Default font size
  • Decrease font size

UK MPs to hold emergency debate on phone hacking

Wednesday, 08 September 2010 21:19 hackinthebox.org
The Downing Street communications chief Andy Coulson is under renewed pressure as it was announced that MPs will hold an emergency Commons debate about newspaper phone hacking tomorrow. Nick Clegg, the deputy prime minster, gave only qualified backing to Coulson at prime minister's questions today as Labour strived to keep the affair at the top of the political agenda. As the Speaker, John Bercow, said he would grant a debate on phone hacking, Clegg refused to say whether he believed Coulson's insistence that he did not know about the illegal practices that took place when he was editor of the News of the World. Taking prime minster's questions in the absence of David Cameron, who flew to France to be with his ill father today, Clegg warned Labour not to "second guess" police inquiries into fresh allegations surrounding Cameron's press chief.
Write comment (0 Comments)
 

Security vendor demonstrates insider attack on VMware ESX

Wednesday, 08 September 2010 21:18 hackinthebox.org
The VMware ESX hypervisor could let IT staff steal sensitive data by abusing administrative access, particularly if customers fail to implement role-based access controls, the security vendor BeyondTrust argued last week at VMworld. IT staff with root access to VMware ESX can steal virtual machine disk files and then erase log files and other traces of the illicit activity by manipulating the service console, a Linux-based instance that manages the VMware hypervisor, BeyondTrust says. This could make it easy to steal medical records, financial data, or any other files tied to virtual machines, says Jordan Bean, principal systems engineer for BeyondTrust. Bean provided a demonstration of this type of attack on the VMworld conference exposition floor. But in response, VMware noted that root access to any sort of IT product could let users do malicious things. VMware doesn't have built-in access controls for the service console, but does offer a recommended set of best practices to enable role-based access controls and has partnered with third parties – including BeyondTrust – to track and manage access into virtualized environments.
Write comment (0 Comments)
 
More Articles...
  • «
  •  Start 
  •  Prev 
  •  1 
  •  2 
  •  3 
  •  4 
  •  5 
  •  6 
  •  7 
  •  8 
  •  9 
  •  10 
  •  Next 
  •  End 
  • »
Page 1 of 1452