Linux bug leaves USA Today, other top sites vulnerable to serious hijacking attacks

Posted by BernardSwiss on Aug 11, 2016 5:09 AM EDT
Ars Technica; By Dan Goodin
Mail this story
Print this story

The vulnerability resides in the design and implementation of RFC 5961, a relatively new Internet standard that's intended to prevent certain classes of hacking attacks. In fact, the protocol is designed in a way that it can easily open Internet users to so-called blind off-path attacks, in which hackers anywhere on the Internet can detect when any two parties are communicating over an active transmission control protocol connection. Attackers can go on to exploit the flaw to shut down the connection, inject malicious code or content into unencrypted data streams, and possibly degrade privacy guarantees provided by the Tor anonymity network.

Full Story

  Nav
» Read more about: Story Type: Security; Groups: Linux, Standards

« Return to the newswire homepage

This topic does not have any threads posted yet!

You cannot post until you login.