Showing results 1 to 16 of 16

Oracle scrambles workarounds for database zero-day

Oracle has recommended workarounds for a zero-day Oracle Database flaw that was not fixed in the company's April critical patch update.The flaw in the Transport Network Substrate (TNS) Listener database component, which Oracle has known about for at least four years, could allow a hacker to break into a database without a username or password, Oracle said in a security advisory on Monday.

May 1, 2012 by

Singapore's NUS confirms security breach

update Hacker group Team Intra breaches local institution's database and publishes information such as staff username and hashed passwords. NUS confirms attack but says data on server not confidential.

January 5, 2012 by

Repeat after me: "Reusing passwords is BAD!"

a hacker group going by the name of Gnosis compromised the Gawker Media network (made up of popular websites such as Lifehacker, Gizmodo, Jezebel, io9, Jalopnik, Kotaku, Deadspin, Fleshbot, and Gawker itself) and liberated not only the source code for the site, but also the entire user database consisting of about 1.3 million usernames, email addresses, and password hashes. In an ideal world, this wouldn't be a problem, but we don't live in an ideal world, but this is far from an ideal world, so it has the scope to be a pretty big deal.

December 13, 2010 by

Fuzzing for Oracle database vulnerabilities

Database security vendor Sentrigo has released an open-source fuzz testing tool to help pinpoint security-related coding deficiencies in Oracle databases.The tool, called FuzzOr, runs on Oracle 8i and is aimed at PL/SQL programmers and DBAs looking to find and eliminate vulnerabilities that may be exploited via SQL injection and buffer overflow attacks -- the most common techniques used to launch hacker attacks on databases.

February 4, 2009 by

News to know: Apple patch; Fusion fun; Quantum computing; ODF; Vista galore

Notable headlines:Ryan Naraine: Hacker finds 492,000 unprotected Oracle, SQL database servers. Apple monster update fixes 41 Mac OS X, Safari vulnerabilitiesDan Farber: Michael Dell promises 'Greenprint' reference architectureLarry Ellison: First Fusion apps to arrive early in 2008Ed Burnette: D-Wave demonstrates latest quantum computer prototype at SC07.

November 14, 2007 by

Hacker attacks N.Y. Times

The New York Times Co. on Wednesday confirmed that the internal network of its flagship newspaper was hit by a security breach. The breach that hit The New York Times was first reported by SecurityFocus Online, a site that contains content about security issues. An article there said a hacker gained access to data ranging from employee names and social security numbers to delivery records. The report also said the hacker was able to tap into a database of sources and see the Social Security numbers and home phone numbers for luminaries including former U.N. weapons inspector Richard Butler and actor Robert Redford. New York Times Co. spokeswoman Christine Mohan said the newspaper had addressed the security flaws, though it is still trying to determine what information was accessed and when the intrusion took place. --Margaret Kane, Special to ZDNet News

February 27, 2002 by

2600 hackers hijacked

Hacker group 2600 has been subjected to a domain name hijacking. Due to a database error at domain registrar Network Solutions (NSI), a company called NB Productions was recently able to register illegally.

May 15, 2001 by

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.

Top Stories