Skip to main content

Seven fails epics fail 'of computer security to be remembered over time

After seeing as a mistake in the security of a web content manager such as Drupal and a couple of outdated plugins have resulted in the publication of customer and company data in what has been known as «Panama papers », Let's see some of the most famous computer security flaws of all time.


And it is that no operating system is free from suffering from time to time a security breach, which does not have to be catastrophic, but sometimes it does generate an important problem.Sooner or later, the design errors of the software can come to light and computer failures are no longer something generic, to become a specific problem.Let's see some of them.


Windows XP and the Sasser and Blaster viruses


Seven fails epics fail 'of computer security to be remembered over time


The one now yearned for by many Windows XP had two very important security problems, which were used by the Sasser and Blaster viruses to infect millions of computers, causing computers to constantly restart and many companies had to deal with millionaire losses.They took advantage of the buffer overflow in RPC DCOM and spread through TCP, which in a few days its expansion grew exponentially throughout the world.


The effect was such that installing a computer with Windows XP without updating to a few minutes after it was infected .Fortunately, "vaccines" came out quickly and Microsoft soon published the necessary patch which solved this problem, at the same time that numerous security firms released updates of their products to eliminate the infection.Yes, the damage was already done.


Verisign, when the fault is a security company


Verisign is one of the most prestigious companies in the world at the time of issuing SSL certificates , which guarantee the identity of the websites, and in regards to domain validation and control.That is to say, it is responsible for certifying that the page we are visiting is authentic and not a forgery.In 2010 it suffered an attack that they did not report until 2011.


The problem was that no information or the indispensable minimum was provided, without knowing how much the company's systems were compromised.The hackers obtained access to the systems and privileged information , so Verisign certificates were compromised.


LastPass, WHAT if the master password is at risk?


Seven fails epics fail 'of computer security to be remembered over time


Something similar happened in 2015 with LastPass.It is a password manager, which allows you to safely store all the passwords of the websites where we identify ourselves.The attackers had access to all LastPass systems exposing the master passwords of the users.


To improve security, after a short time, they set up a two-step verification system, so that in order to identify ourselves, in addition to the password, an additional code is needed that they send us to the mobile phone or that we generate through of the company's own app.


The DNS failure that affects all Internet


The researcher and security expert Dan Kaminsky detected a failure in the DNS that could compromise Internet security in 2008.Recently he has discovered another problem that allows web browsers to be deceived through the response of excessively long DNS names by part of the servers, causing a buffer overflow.


This allows to carry out attacks and execute remote code , so that it is possible to take control of the equipment.Correcting the problem for which a patch exists could take a long time, since it depends on the update of a Linux library, Glibc, the operating system used by many of the affected servers.


Stuxnet, there is always SOME INGENUO that connects a USB memory


Seven fails epics fail 'of computer security to be remembered over time


Stuxnet can be considered the first information weapon .It was created by the governments of the United States and Israel to attack Iran’s nuclear enrichment program.USB sticks that distributed around the central area in the hope that someone, at some point, would connect it within the system.


And it happened.Somebody skipped all security protocols and connected an infected memory.tuxnet was programmed to cause a system malfunction, no messages appeared or a system restart, just the results of the enrichment of Uranium were not expected.This caused a delay of more than two years in the Iranian nuclear program.


Ashley Madison, the most private is made public


When a web service has discretion as its main claim, it cannot afford security problems.This is what happened to Ashley Madison, a social network designed to find new partners to be unfaithful to the current one.A security breach allowed a hacker to seize the database of all users.


I try to negotiate with the social network, but finally the lack of agreement caused the data to be made public , with the corresponding damage to its users and to the image of the company, which was seriously compromised, in addition to revealing some non-ethical practices.


Ransomware, you shouldn't have opened that email


One of the last problems we have had has been Ransomware attacks .In this case, they take advantage of the ignorance or confidence of users to open an email and run a program that is disguised as email notification, bank notice, etc.It's what is called social engineering , which seeks to gain the trust of the person on the other side of the keyboard to run a program.


From here, the files on the hard disk of the computer are encrypted , as well as the network drives that are connected, so if we want to recover the files, we can only pull backup or pay the ransom that they ask us to obtain the encryption password, something that on the other hand does not offer any guarantee.


The information security is a very sensitive issue .A good investment is needed to keep the systems up to date and secure, but it is not visible immediately, but is raised late, at the time it is verified that things did not do well after having suffered an attack.

Images | pixelcreatures | geralt | EssaRiuta | MasterTux

Comments

Popular posts from this blog

Is it a good idea to share photos of our children on social networks?

VGstockstudio/Shutterstock A few days ago it transpired that Gwyneth Paltrow, who has 5.3 million followers on Instagram, had had a small fight with her daughter, Apple Martin, after the 14-year-old girl called her mother's attention to climb to the social networks a photo in which she left.The important thing, beyond who is right, is that the issue has generated a discussion about where the limits on the information that parents should place they share their children on the networks. Related We often think in a wrong way that young people don't care about their privacy, a belief fueled by advertising campaigns they give because they share their personal life in excess or do not understand what they are exposed to.However, as I have written on some occasion on the subject, parents may have to worry less than they think, given that young people tend to to handle privacy responsibly.or, it should be the parents, and not their children, who were most careful with their o...

Why do young Spaniards want to be (at all costs) "popus" in social networks?

Through mobile, tablet or computer, teenagers are now connected at all times with their friends or strangers thanks to social networks, instant WhatsApp messaging or video platforms such as YouTube. According to data from the consultancy Comunica + por-, 40% of adolescents in this country are connected 24 hours a day, while 5 out of 10 connect until they go to sleep, and only 30% it is less than 3 hours a day.The intensive Internet connection is thus the modus vivendi of young Spaniards. Related In addition, this generation likes to use many media at the same time.While they watch television, listen to music, surf the Internet and connect to their social profiles, they may be doing their homework.social and apps to connect with your friends , like the popular WhatsApp, take your preferences .This is because, in the adolescent stage, people usually build their identity, wondering who they are and how others see them. Be accepted by peers They seek the acceptance of their peers ...

The 10 trends that have changed the way we shop from top to bottom

From the Orange Foundation they show us how the changes in the business fabric of our country are taking place thanks to the Internet and all its «friends»: the multiscreen, the social networks, the mobile, the cloud...If our (bis) grandparents saw us, they would not know how it is possible for us to buy a jacket by squeezing a few buttons.That if, as soon as we explained it, they would hook up without remedy.-The digital transformation of the retail sector shows us the keys to this process.Today we are going to study the ten trends that are being fundamental to change the way we buy.Do you aim? 1.The omnichannel of the retail sector Behind this long word, there is a very simple explanation.Do you want to buy from your PC, or better using the tablet, or maybe from the smartphone...? You can do it from the store's website or through Facebook. A multitude of channels and they all take us to the same port: a satisfactory purchase. 2.Automation, customization and recommendat...

The fourth century of the data guardian: this has changed the AEPD

October 1993.Bill Clinton has recently been elected president in the United States.Checoslovaquia has ceased to exist and the Medellin cartel terrorizes Colombia, while Pablo Escobar counts his last days.In the Spanish covers the future of Europe and democracy.There was talk of reforming the labor market and a new abortion law that would never be approved.Discussions resembled those of today, but a revolution was beginning to cook . Related The Internet was then something unknown to most of the population.In our country, there was a whopping 10,000 machines connected to the network (according to Red Iris data ).There were 10,000 web pages in the world.Mobile phones would be a luxury from the following year (1994); smartphones , still science fiction.Most of the inhabitants of the planet had not yet begun to leave the trail of data that haunts us today.And yet, that October of 1993 was born the Spanish Agency for Data Protection as a premonition of what was to come. everything ...

Tribes: the instant messaging app for musicians and their fans

Tribes, a startup of Spanish origin, has just launched a new free application that unites instant messaging, streaming music and the ability to connect musicians and fans Everyone with similar tastes. The application, which has just presented its mobile version for Android, allows you to create and join groups, called tribes, in which to comment, discover and listen to songs in streaming. Tribes, which has an intuitive interface and Colorist , offers more than 50 million songs to share and the possibility of creating and playing collaborative playlists in each tribe. »Music fans miss a place to interact with others fans and with our favorite bands, something like what was once MySpace, "explains its CEO and founder, Andres Sanchez through a statement." Social networks now play this role, but not They are designed or designed for music lovers.Using new available technologies such as messaging and streaming reinvent the concept and try to make Tribes the place of ref...

How to achieve the perfect selfie on Instagram (word of photographer)

That you raise your hand that has never taken a selfie ...Ok, you may not have finally uploaded it to Instagram because you have not left as favored as you thought, but all, at last and after all, we have succumbed to the temptation to photograph ourselves. If the reason why you have not dared to upload this snapshot to your social network is because you have not obtained the expected result, calm.It is not necessary to be the king or queen of the selfies, but here we are going to Offer a series of tips and tricks to improve your technique .Word of professional photographer. The light, the light... Let's recognize it.It has been difficult to find a photographer who wants to give us these guidelines.Not surprisingly, they usually work doing portraits, and the protagonist of their work is always in front of the camera, not behind. Therefore, Carlos Aires tells us that his main advice now is not to take any selfie ."The saturation is of such a magnitude that it seems ...

I want to be an eSports player, where do I start?

Nowadays, the eSports industry is something unbeatable for a rookie player .How many leagues are there? Where can you start playing professionally? without getting lost between forums and promotions? What requirements are necessary? If you are tempted to be an eSports player, read on. We are going to put a little order on this gigantic ecosystem that attracts more spectators and players every day and in which not only players, but also trainers, physiotherapists, lawyers and analysts of diverse people are involved, so if you want to train part of such a demanding industry, we already let you know: it requires a lot of discipline, commitment, companionship and sense of duty . PLAYING FOR FUN The common situation is usually the following: a player has been soaking up his favorite hobby for some time, consulting forums and improving his system in order to have a team capable of competing: headphones, a good keyboard and mouse, looking the best way to optimize the imput lag of ...

How to create animations online without touching a line of code

Although traditionally the photographic and video edition, the design of logos, the elaboration of posters and other disciplines were relegated to the professionals, the popularization of the Internet and the technological development have resulted in the birth of more tools simple to use that have brought this type of creations to all types of users. Today we will focus on those designed to design animations , something that we usually associate with complicated tasks and programming processes, however, it is possible to give rise to some of the funniest without touching a single line of code or download any software.These are the best online services that will allow us to do so. Make Web Video One of our favorites is Make Web Video, a site that is not only easy to use, but also has a vast and original selection of templates .For example, there are some to create cartoons , to design corporate videos, scrapbooks and others.Also, by passing over them, we can preview them,...

How to put music to a YouTube video without being deleted for infringing copyright

Upload a video to YouTube that contains a song may violate copyright and cause unpleasant consequences, from the removal of the video to, in case of repeated violations, the closing of the channel.However, put music on YouTube without infringing copyright is possible and there are several methods. Related You can take advantage of the functions of the portal that let you know if a song is usable and, in addition, monetize its use.It is also possible to access the archive of free songs made available by YouTube or, alternatively, go to one of the numerous Websites that host melodies with a Creative Commons license. But, we go in order with this little guide . All the options to upload music in a video The famous platform for watching and sharing videos introduced a system to discover how to use a particular song, even if it is covered by copyright. How to do it? Once the web has been logged in through the Google account, you must click on our image (or in the space for...

If you want to get rich on YouTube, you better not talk about politics

There are youtubers gastronomic, fashion, technology, games and almost anything that comes to mind, some of them with masexito and others with less.The illusion of all these new audiovisual communicators is to live from it and become the new Rubius.And it may be that someone achieves this dream... as long as he does not choose national politics as thematic. At least it is what emerges from a study recently published, prepared by teachers Vanessa Rodriguez Breijo, Jorge Gallardo Camacho and Javier Sierra Sanchez, from the universities of La Laguna and Camilo Jose Cela. Enel, concludes that Youtube is a territory that is not very fertile for political debate. selflessness for politics In fact, as highlighted in the conclusions of this investigation, the frequency, number of views and user interaction in the videos selected in the sample revealed that the viewers had less interest in politics that for other themes related mainly to entertainment and it seems, in addition, that ...