The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015

The Case of Aaron Schwarz goes to Court

The Case of Aaron Schwarz goes to Court

Aaron Schwarz, a political activist and prominent computer programmer, has been accused of stealing MIT’s data, using MIT’s guest network. He was caught by the virtue of MIT webcam stakeout.

Aaron Schwarz is a founder of the activist group Demand Progress. He was arrested by the MIT police in January and charged with breaking and entering – allegedly entering a “restricted” networking room. Actually room was open 24 hours a day to students and guests. So, Schwarz did not in fact break or enter anything.

Schwarz used a laptop, hidden in a networking closet, to download 70 Gbs of academic documents. A member of MIT’s tech staff found the laptop and reported to police. Police officers took the laptop to search it for latent fingerprints. Then they returned it and installed a webcam to observe the room.

Now Schwarz is being arrested and charged with burglary and “breaking into depository”. A hearing in the case will take place next month in Cambridge District court.

JSTOR have not made any claims against Schwarz because the company got all the stolen data back.

But police officers still say that Schwarz had an intention to put the archive on the web through peer-to-peer file sharing service.

Schwarz is facing 35 years in prison and a $ 1 million fine under indictment.

In 2008 Schwarz also downloaded 20 million pages of Federal court documents and uploaded them to the Amazon’s EC2 cloud computing service.

The courts reported Schwarz to FBI, but it dropped the case, after an unsuccessful stakeout and useless attempts to get Schwarz to talk.

(c) Naked Security


Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015