Meanwhile, the DOJ sets its sights on money mules
Welcome to yet another El Reg security roundup. Off we go.
OpenBSD a little too true to its name
The widely-used OpenBSD operating system is the host of a rather serious security vulnerability.
Researchers with Qualys found and reported, an authentication bypass flaw that would allow an attacker to login without valid credentials.
"We discovered an authentication-bypass vulnerability in OpenBSD's authentication system: this vulnerability is remotely exploitable in smtpd, ldapd, and radiusd, but its real-world impact should be studied on a case-by-case basis," notes Qualys. "For example, sshd is not exploitable thanks to its defense-in-depth mechanisms."
Admins will want to update their systems as soon as possible.
