The Network Security. OrgThe Network Security. OrgNetwork Security, Wireless Security, Browser Security, Internet Security News and Articles. Articles
Peering Inside the IRC Botnet
2007-12-18 07:19:00 The average life span of a command and control server in an Internet Relay Chat (IRC)-based botnet is less than two months. And these machines and their drones that make up a botnet are typically scattered around the world, a new study on IRC botnets reveals. Technorati Tags: irc botnet, irc botnet analysis, Malware More About: Inside , Botnet , Peering
Peering Inside the IRC Botnet
2007-12-18 07:19:00 Copyright © 2007 The Network Security. Org. Visit the original article at http://www.thenetworksecurity.org/peering -inside-the-irc-botnet.html.The average life span of a command and control server in an Internet Relay Chat (IRC)-based botnet is less than two months. And these machines and their drones that make up a botnet are typically scattered around the world, a new study ... More About: Inside , Botnet , Peering , Erin
Cybercrime: How online crooks put us all at risk
2007-12-18 07:15:00 Copyright © 2007 The Network Security. Org. Visit the original article at http://www.thenetworksecurity.org/cybercr ime-how-online-crooks-put-us-all-at-risk. html.Somewhere in St. Petersburg, Russia’s second largest city, a tiny startup has struck Internet gold. Its dozen-odd employees are barely old enough to recall the demise of the Soviet Union, but industry analysts believe they’re raking in well over $100 million a ... More About: Crooks , Identity Theft , Online , Risk , Cybercrime
Cybercrime: How online crooks put us all at risk
2007-12-18 07:15:00 Somewhere in St. Petersburg, Russia’s second largest city, a tiny startup has struck Internet gold. Its dozen-odd employees are barely old enough to recall the demise of the Soviet Union, but industry analysts believe they’re raking in well over $100 million a year from the world’s largest banks, including Wells Fargo and Washington Mutual. Technorati Tags: ... More About: Crooks , Identity Theft , Online , Risk , Cybercrime
Battle of the SSH Protocols: SSHv1 v SSHv2
2007-12-18 07:12:00 Copyright © 2007 The Network Security . Org. Visit the original article at http://www.thenetworksecurity.org/battle- of-the-ssh-protocols-sshv1-v-sshv2.html.T elnet has been eclipsed by two feature-laden Secure Shell protocols. But which one is best? Many network administrators have stopped using Telnet for switch management in favor of the more secure Secure Shell (SSH) protocol. But there are two versions of SSH. ... More About: Battle , Proto , Protocols
Battle of the SSH Protocols: SSHv1 v SSHv2
2007-12-18 07:12:00 Telnet has been eclipsed by two feature-laden Secure Shell protocols. But which one is best? Many network administrators have stopped using Telnet for switch management in favor of the more secure Secure Shell (SSH) protocol. But there are two versions of SSH. Technorati Tags: Encryption, secure shell, ssh protocols, ssh1, ssh2 More About: Network Security , Battle , Proto , Protocols
The Worlds Biggest Botnets
2007-12-18 07:01:00 You know about the Storm Trojan, which is spread by the world’s largest botnet. But what you may not know is there’s now a new peer-to-peer based botnet emerging that could blow Storm away. "We’re investigating a new peer-to-peer botnet that may wind up rivaling Storm in size and sophistication," says Tripp Cox, vice president ... More About: Worlds , Botnets
The Worlds Biggest Botnets
2007-12-18 07:01:00 Copyright © 2007 The Network Security. Org. Visit the original article at http://www.thenetworksecurity.org/the-wor lds-biggest-botnets.html.You know about the Storm Trojan, which is spread by the world’s largest botnet. But what you may not know is there’s now a new peer-to-peer based botnet emerging that could blow Storm away. "We’re investigating a new peer-to-peer botnet that may ... More About: Worlds , Botnets
Troubleshooting Remote Desktop
2007-12-18 06:49:00 Copyright © 2007 The Network Security . Org. Visit the original article at http://www.thenetworksecurity.org/trouble shooting-remote-desktop.html.Some reasons why it is sometimes difficult to establish a Remote Desktop session with a remote computer, and some workarounds to these various issues. Ever since the release of Windows XP, one of my favorite features as always been Remote Desktop. In ... More About: Troubleshooting , Mote
Troubleshooting Remote Desktop
2007-12-18 06:49:00 Some reasons why it is sometimes difficult to establish a Remote Desktop session with a remote computer, and some workarounds to these various issues. Ever since the release of Windows XP, one of my favorite features as always been Remote Desktop. In case you’re not familiar with Remote Desktop, it is a built-in Windows feature ... More About: Network Security , Troubleshooting
The Spy in Your Server Room
2007-11-06 06:28:00 How many times have you passed an unknown person in the hallway at work, held open a keycard-protected door for a stranger or let an office guest wander unaccompanied to the rest room? It may seem harmless enough, but the staff of TraceSecurity is banking on this type of human error to help them gain ... More About: Network Security , Enterprise Security , Server , Administration , Room
The Spy in Your Server Room
2007-11-06 06:28:00 How many times have you passed an unknown person in the hallway at work, held open a keycard-protected door for a stranger or let an office guest wander unaccompanied to the rest room? It may seem harmless enough, but the staff of TraceSecurity is banking on this type of human error to help them gain ... More About: Network Security , Enterprise Security , Server , Administration , Room
Yet Another Way to Evade NIDS
2007-11-06 06:25:00 Anonymous proxy services are online applications that enable users to surf the Web with enhanced privacy. These applications act as an SSL proxy between the user and the Web site to be visited, thus masking the IP address and providing additional privacy features, such as referrer hiding, script removal, cookies removal, and URL encoding. Proxify ... More About: Malware
Yet Another Way to Evade NIDS
2007-11-06 06:25:00 Anonymous proxy services are online applications that enable users to surf the Web with enhanced privacy. These applications act as an SSL proxy between the user and the Web site to be visited, thus masking the IP address and providing additional privacy features, such as referrer hiding, script removal, cookies removal, and URL encoding. Proxify ... More About: Malware
Security Training: Whose Responsibility Is It
2007-11-06 06:21:00 Who else other than the CIO? So why aren’t CIOs doing more about it? Mark Twain is reported to have famously remarked: "Everybody talks about the weather. But nobody does anything about it." I was reminded of that quip when I read a news story posted by my colleague K.C. Jones about the increased awareness ... More About: Security , Network Security , Enterprise Security , Training , TRAI
Security Training: Whose Responsibility Is It
2007-11-06 06:21:00 Who else other than the CIO? So why aren’t CIOs doing more about it? Mark Twain is reported to have famously remarked: "Everybody talks about the weather. But nobody does anything about it." I was reminded of that quip when I read a news story posted by my colleague K.C. Jones about the increased awareness ... More About: Security , Network Security , Enterprise Security , Training , Raining
Password policy Length vs. Complexity
2007-11-03 09:07:00 One of the many topics I like to cover in detail when teaching Essentials of Hacking and Ultimate Hacking is password brute forcing and cracking. I usually start off by letting the students come up with what they think is a strong password policy and later, we analyze common implementations &1 attacks against them. Inevitably, ... More About: Network Security , Enterprise Security , Policy , Password , Lexi
Password policy Length vs. Complexity
2007-11-03 09:07:00 One of the many topics I like to cover in detail when teaching Essentials of Hacking and Ultimate Hacking is password brute forcing and cracking. I usually start off by letting the students come up with what they think is a strong password policy and later, we analyze common implementations &1 attacks against them. Inevitably, ... More About: Network Security , Enterprise Security , Policy , Password
Free Beta Anti XSS Tool from Microsoft
2007-11-02 14:46:00 Not long ago, Microsoft was the chief butt of security jokes in the IT world. It?s safe to say that they no longer wear the crown - in fact they?ve moved to being a company often pointed to as ?getting it right.? And that?s coming from someone typing this post from his Ubuntu Linux laptop. Technorati ... More About: Network Security , Free , Beta , Tool
Free Beta Anti XSS Tool from Microsoft
2007-11-02 14:46:00 Not long ago, Microsoft was the chief butt of security jokes in the IT world. It?s safe to say that they no longer wear the crown - in fact they?ve moved to being a company often pointed to as ?getting it right.? And that?s coming from someone typing this post from his Ubuntu Linux laptop. More About: Network Security , Free , Beta , Tool
Website Security Seals Get a Boost
2007-11-02 14:31:00 Some security experts have dismissed Website seals such as Hacker Safe and ControlScan as more marketing ploy than security, and hackers have fueled the debate by exposing cross-site scripting vulnerabilities on sites proudly emblazoned with seals from Hacker Safe and other security seal providers. (See Hackers Reveal Vulnerable Websites and Are ‘Sealed’ Websites Any Safer?.) More About: Security , Network Security , Boost
Website Security Seals Get a Boost
2007-11-02 14:31:00 Some security experts have dismissed Website seals such as Hacker Safe and ControlScan as more marketing ploy than security, and hackers have fueled the debate by exposing cross-site scripting vulnerabilities on sites proudly emblazoned with seals from Hacker Safe and other security seal providers. (See Hackers Reveal Vulnerable Websites and Are ‘Sealed’ Websites Any Safer?.) Technorati ... More About: Security , Network Security , Boost
Why VoIP is the next target for spammers
2007-11-02 14:24:00 Industry experts believe that attacks over services such as Skype are moving from proof of concept to becoming a real threat In what looks like a highly developed piece of irony, hackers have proven that Voice over internet Telephony (VoIP) accounts are prone to the nuisance of voice spam - by attacking the university where ... More About: Firewall , Network Security , Voip , Target , Spammers
Why VoIP is the next target for spammers
2007-11-02 14:24:00 Industry experts believe that attacks over services such as Skype are moving from proof of concept to becoming a real threat In what looks like a highly developed piece of irony, hackers have proven that Voice over internet Telephony (VoIP) accounts are prone to the nuisance of voice spam - by attacking the university where ... More About: Firewall , Network Security , Voip , Target , Spammers
Catching up with a famous fraudster
2007-11-02 14:17:00 Played by Leonardo DeCaprio in the Steven Spielberg-directed film Catch Me If You Can, one-time fraudster Frank Abagnale knows a thing or two about security systems. During his time on the wrong side of the law, Abagnale posed as an airline pilot, a lawyer and a doctor. These days Abagnale is firmly on the right ... More About: Network Security , Enterprise Security , Identity Theft , Famous
Metagoofil 1.2 Metadata Extractor Tool
2007-11-02 14:08:00 Metagoofil is a tool for written in Python for extracting the metadata from public documents (pdf,doc,xls,ppt) available in the target websites. This information could be useful because you can get valid usernames, or people names, for using later in brute force password attacks (vpn, ftp, webapps etc.) More About: Network Security , Enterprise Security , Tool , Metadata , Extract
What Not to Do After a Security Breach
2007-11-02 14:00:00 Step number one after a security breach: Don’t immediately bring in the outside forensics team — get your attorney up to speed on the attack first. And don’t assume just because you had a break-in that you have to disclose it publicly — it all depends on whether data covered under regulatory mandates was exposed. ... More About: Security , Network Security , Enterprise Security , Forensics , Intrusion Detection
Password Cracking Chip Causes Security Concerns
2007-11-02 13:56:00 A technique for cracking computer passwords using inexpensive off-the-shelf computer graphics hardware is causing a stir in the computer security community. Elcomsoft, a software company based in Moscow, Russia, has filed a US patent for the technique. It takes advantage of the "massively parallel processing" capabilities of a graphics processing unit (GPU) - the processor ... More About: Security , Network Security , Enterprise Security , Password , Cracking
How Hackers Are Different from the Rest of Us
2007-10-28 07:47:00 Hackers who come to hacker conference, like ToorCon 9, which wraps up today, don’t see computing the way the rest of us do. Now, clearly, these guys aren’t true black hats, even if they came to see the attack side. The real bad hackers don’t register in advance for such conventions - tho they may ... More About: Network Security , Hackers , Rest , Diff
Forgot Your Password? Just Crack It
More articles from this author:2007-10-28 07:46:00 ElcomSoft on Monday said that it had filed to patent for a way to decrease the amount of time required to recover forgotten passwords, not to mention withheld passwords, by a factor of 25. The technique uses the graphics processing unit (GPU) on a computer in addition to its CPU. More About: Password , Crack , Network Access Protection 1, 2, 3, 4, 5, 6, 7 |
|
 |
|
 |
