A team of security researchers and academics has broken a core piece of internet technology. They made their work public at the 25th Chaos Communication Congress in Berlin today. The team was able to create a rogue certificate authority and use it to issue valid SSL certificates for any site they want. The user would have no indication that their HTTPS connection was being monitored/modified.
Continue reading “25C3: Hackers completely break SSL using 200 PS3s”
Last week we talked about a single rumored arrest over the OiNK torrent tracker. Since then, there’s been a confirmed report of 6 arrests. The arrests appear to be the result of users uploading pre-release music to the now defunct site. For some time, police have had access to the OiNK user records minus the passwords which are thought to be stored as a salted MD5 hash. It seems British authorities can force these individuals to reveal passwords under something called the Regulation of Investigatory Powers Act.
The Phoenix Mars Lander (pictured above) has found what might be a large piece of ice directly underneath it. This week the lander will scoop up a sample, melt its contents and test the various gases it releases. Twitter users can watch the mission’s progress in semi real time by following the MarsPhonix account. Lastly it looks like the official website for this mission was defaced through a SQL injection attack.
We already reported the world’s largest GPS drawing as a hoax. It has however inspired a few to look closer at the concept of position based art and others have already created authentic works. Our friends over at BoingBoing even made a little flash application to create your own “Unimpressive GPS Art“. Upon hearing of the hoax we were quick to draw up a brand new proposal for DHL using Google maps.