forever days / Boing Boing

/ SUBMIT / SEARCH / STORE /

Blog : Show me the posts

Forums : But read the community guidelines

Shop : A Directory of Wonderful Products

About Us : Editors, Contributors and Staff

Advertise Here : Thank you for not blocking ours

Cory Doctorow / 9:14 am Wed, Aug 22, 2018

All versions of Openssh share a critical vulnerability, including embedded code that will never be updated

Every version of the popular Openssh program -- a critical, widely used tool for secure communications -- share a critical vulnerability that was present in the program's initial 1999 release. Read the rest

Cory Doctorow / 10:12 am Thu, Oct 26, 2017

A common satellite comms package for ships and oil rigs has a backdoor that won't be patched

An audit of Inmarsat's AmosConnect 8 (originally sold by Stratos Global, now an Inmarsat division) reveals that the ship-to-satellite internet product has a deliberate hidden backdoor -- and an accidental SQL code-injection vulnerability -- that allows anyone in the world to take over all, interrupt, and/or spy on the internet access on many of the world's largest ships and oil rigs. Read the rest

Read the rules you agree to by using this website in our Terms of Service.

We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.

Boing Boing uses cookies and analytics trackers, and is supported by advertising, merchandise sales and affiliate links. Read about what we do with the data we gather in our Privacy Policy.

Who will be eaten first? Our forum rules are detailed in the Community Guidelines.

Boing Boing is published under a Creative Commons license except where otherwise noted.

Follow Us

Twitter / Facebook / RSS

All versions of Openssh share a critical vulnerability, including embedded code that will never be updated

A common satellite comms package for ships and oil rigs has a backdoor that won't be patched

Follow Us

Twitter / Facebook / RSS

All versions of Openssh share a critical vulnerability, including embedded code that will never be updated

SHARE / TWEET / 14 COMMENTS

coordinated disclosure / crypto / forever days / infosec / internet of shit / iot / openssh / revenge of heartbleed / security

A common satellite comms package for ships and oil rigs has a backdoor that won't be patched

SHARE / TWEET / 16 COMMENTS

forever days / infosec / logistics / maritime / nobus / piracy / security