clock

Yikes! Oracle Issues Emergency Fix For A Big Fat Security Problem (ORCL)

Source: http://www.businessinsider.com/yikes-oracle-issues-emergency-fix-for-a-big-fat-security-problem-2012-1


larryellison oracle tbi

Oracle today warned customers that they need to fix a major hole in its flagship database or risk downtime and hacker attacks, reports Infoworld.

In a weird twist of events, the hole was actually found by Infoworld, a news site that covers the tech industry. Oracle even gave the publication a public credit for finding and reporting the hole — and waiting to publish the story until Oracle could issue a patch, which it did today.

The flaw had to do with time stamp technology that acts like an internal clock. This clock is the key to keeping data synchronized and safe. When multiple databases are linked together the clock could be manipulated to be inaccurate. This is one of those critical systems that was difficult to fix and affected a long list of Oracle’s products.

The critical patch sent out today fixes a whole bunch of other flaws, too. Some 78 holes will be patched across all of Oracle’s major product families.

Inforworld contends that Oracle executives knew about the time stamp problem and not only downplayed it, but issued a workaround fix that could have caused customers even more headaches and money. Oracle seems to have gotten its act together and really fixed the security flaw this time, Infoworld says.

 

Please follow SAI: Enterprise on Twitter and Facebook.

Join the conversation about this story »

See Also:




drag2share – drag and drop RSS news items on your email contacts to share (click SEE DEMO)

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Tuesday, January 17th, 2012 news No Comments

1024-bit RSA encryption cracked by carefully starving CPU of electricity

Source: http://www.engadget.com/2010/03/09/1024-bit-rsa-encryption-cracked-by-carefully-starving-cpu-of-ele/

Since 1977, RSA public-key encryption has protected privacy and verified authenticity when using computers, gadgets and web browsers around the globe, with only the most brutish of brute force efforts (and 1,500 years of processing time) felling its 768-bit variety earlier this year. Now, three eggheads (or Wolverines, as it were) at the University of Michigan claim they can break it simply by tweaking a device’s power supply. By fluctuating the voltage to the CPU such that it generated a single hardware error per clock cycle, they found that they could cause the server to flip single bits of the private key at a time, allowing them to slowly piece together the password. With a small cluster of 81 Pentium 4 chips and 104 hours of processing time, they were able to successfully hack 1024-bit encryption in OpenSSL on a SPARC-based system, without damaging the computer, leaving a single trace or ending human life as we know it. That’s why they’re presenting a paper at the Design, Automation and Test conference this week in Europe, and that’s why — until RSA hopefully fixes the flaw — you should keep a close eye on your server room’s power supply.

1024-bit RSA encryption cracked by carefully starving CPU of electricity originally appeared on Engadget on Tue, 09 Mar 2010 02:47:00 EST. Please see our terms for use of feeds.

Permalink p://www.theregister.co.uk/2010/03/04/severe_openssl_vulnerability/“>The Register, TechWorld  |  sourceUniversity of Michigan  | Email this | Comments

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Tuesday, March 9th, 2010 news 1 Comment

Your Data’s Probably Gone Forever [Outages]

Source: http://feeds.gawker.com/~r/gizmodo/full/~3/BtPKBvdhhc8/t+mobile-sidekick-outrage-your-datas-probably-gone-forever

T-Mobile Sidekick users have been holding out hope that their data might be recovered after T-Mo issued an optimistic message of hope. But the carrier just updated users and admitted the truth: Your shit’s gone. Sorry, guys.

It’s been more than two weeks without data for Sidekick users, and T-Mobile finally bit the bullet and announced that it probably isn’t coming back. The quote:

Regrettably, based on Microsoft/Danger’s latest recovery assessment of their systems, we must now inform you that personal information stored on your device – such as contacts, calendar entries, to-do lists or photos – that is no longer on your Sidekick almost certainly has been lost as a result of a server failure at Microsoft/Danger. That said, our teams continue to work around-the-clock in hopes of discovering some way to recover this information. However, the likelihood of a successful outcome is extremely low.

This is pretty crappy of T-Mobile and Danger, and while it’s probably unfair to make this connection, doesn’t give us any new confidence in Project Pink, developed by the remnants of Danger after Microsoft acquired it. (After all, Microsoft bought Danger specifically because of their software services. And now, it just goes kablooey?) Renowned Sidekick user and a-hole Perez Hilton, while normally hysteric about just about everything, has the right tone here:

To add insult to injury, the ONLY thing T-Mobile is offering their customers, whom they obviously don’t value or respect, is one month of free data service.

That’s shit!

One month of free data service (which is not the same thing as one month of free phone use) for SEVEN DAYS of heartache and no access to contacts????

That’s fucked!!!!

Really, that’s kind of putting it lightly. [T-Mobile via Boy Genius Report]


Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Saturday, October 10th, 2009 digital No Comments

Dr. Augustine Fou is Digital Consigliere to marketing executives, advising them on digital strategy and Unified Marketing(tm). Dr Fou has over 17 years of in-the-trenches, hands-on experience, which enables him to provide objective, in-depth assessments of their current marketing programs and recommendations for improving business impact and ROI using digital insights.

Augustine Fou portrait
http://twitter.com/acfou
Send Tips: tips@go-digital.net
Digital Strategy Consulting
Dr. Augustine Fou LinkedIn Bio
Digital Marketing Slideshares
The Grand Unified Theory of Marketing