|
Social networkers fail to tackle security
2009-08-31 15:07:00 Three-quarters of social networkers are failing to protect themselves against online threats according to security firm, AVG. Just 27 percent of social networkers are protecting themselves against online threats said the company. AVG’s Bringing Social Security to the Online community survey, which was conducted in conjunction with the CMO Council, revealed that 64 percent of ...
Google fixes severe Chrome flaws
2009-08-31 15:03:00 Google has been forced to release new security fixes for multiple high severity vulnerabilities in its Chrome browser which could lead to an attacker taking over a victim’s PC remotely. The flaws, which were issued as part of the Chrome 2.0.172.43 update sent automatically to users, include two rated ‘high severity’ and one ‘medium risk’, according ...
New virus spreads by attacking Borland compiler
2009-08-22 15:52:00 An imaginative new virus that infects programs as they are being compiled has claimed its first scalps, infecting software sent out on a cover CD by a major German computer magazine and even other malware programs. The 18/2009 edition of Computer Bild reportedly distributed the Win32.Induc virus inside an obscure browser aids called TidyFavorites 4.1 to ...
Facebook disables 6 rogue phishing apps, but 5 more appear
2009-08-22 15:47:00 Facebook on Thursday said it had disabled six rogue apps that were stealing Facebook users’ log-in credentials and spamming people, and within hours more appeared. Five more of the apps appeared on Thursday, called "Friends," "Friends Gifts," "Matching," "Pok," and "Your Photos," according to an updated blog post by Trend Micro researcher Rik Ferguson. Facebook ...
WINS attacks now in the wild
2009-08-19 15:18:00 The "critical" WINS vulnerability that Microsoft issued a patch for last week is now being exploited actively in the wild, according to the SANS Institute. The Internet Storm Center (ISC), which is operated by SANS, is receiving preliminary reports that hackers are targeting Microsoft’s WINS service on Windows NT, 2000 and 2003 servers. WINS attacks now ...
Microsoft Black Tuesday: Microsoft finally fixes Excel zero day, plus more
2009-04-22 14:57:00 Many of these bulletins fix vulnerabilities that could allow remote attackers to take over your computers, so you should apply the updates post haste. I would recommend starting with the Excel patch, which finally fixes a zero day vulnerability reported over a month ago. Attackers have actively exploited this flaw in the wild, so you’ll ...
Rogue security software a rising threat
2009-04-11 14:21:00 The bogus security software programs often offer a free scan that falsely says a user’s computer is infected. If installed, the programs are ineffective against malicious software. Security experts have theorized that those behind the programs reap lucrative profits. Microsoft detected two Trojan horse programs, Win32/FakeXPA and Win32/FakeSecSen, masquerading as security software on more than 3 ...
Software Security Activities from the BSIMM
2009-04-08 15:35:00 Using the Software Security Framework (SSF) introduced in October, we interviewed nine executives running top software security programs in order to gather real data from real programs.Our goal is to create the Building Security In Maturity Model (BSIMM) based on these data, and we’re busy going over what we’ve built with the executives who run ...
How the economy is hurting security
2009-04-08 15:32:00 The economic crisis has affected virtually every facet of society, and information security is no exception. In a new report titled Unsecured Economies: Protecting Vital Information, researchers from Purdue University’s CERIAS security center lay out the fairly bleak view of what the tough times have done to corporate IT security. The report finds that intellectual property ...
Interview With Dino A. Dai Zovi
2009-04-08 15:30:00 In our continuing series on personal computing security, today we?re talking with Dino A. Dai Zovi. Three years ago, the organizers of CanSecWest started a contest titled Pwn2Own. This contest involved the challenge of exploiting fully-patched retail laptops. Hack the laptop and you?d win the machine as the prize. Dino A. Dai Zovi was the ...
Online crime complaints hit record high in 2008
2009-04-08 15:24:00 The FBI’s Internet Crime Complaint Center (IC3) says complaints of online crime hit a record high in 2008, driven mostly by non-delivery of goods and service and those pesky 419 (Nigerian) e-mail scams. Accordign to a new report (PDF from ic3.gov), the center received a a total of 275,284 complaints, a 33.1% increase over the previous ...
IBM sees Conficker hitting 4% of PCs
2009-04-08 15:22:00 After scanning 2 million computers over the past 24 hours, IBM’s Internet Security Systems (ISS) division said Thursday that it had spotted the worm on 4% of the IP addresses it monitored. Although Conficker is clearly the worst worm outbreak in years, the results came as a surprise, according to Holly Stewart, a threat response manager ...
Where can I get M.Eng topics on telcomms Network security
2008-09-09 00:25:00 I am a masters student of University of PortHarcourt Nigeria and I'm thinking of working on network security in my masters thesis but i dont really know the most challenging aspect and how to narrow down the topic. Pls I need topics on this broad area of network security
17 Network Security Tools
2008-05-11 02:51:00 Security threats evolve costantly. So, just for your own protection, here a list of the top 17 network security tools. Every tool mentioned has a description, and a homepage link. Metasploit. It provides useful information to people who perform penetration testing, IDS signature development, and exploit research. Nessus vulnerability scanner. Is the world-leader in active scanners, featuring ...SHARETHIS.addEntry({ title: "17 Network Security Tools", url: "http://www.the3dtechnologies.c-om/index.php/2008/05/11/17-netw-ork-security-tools/" });
NeoCatena Firewall To Ensure RFID Network Security
2008-05-09 02:07:00 Hmm. OK. I’m not sure what to make of this one. RFID is not my specialty to say the least. Any one have thoughts on this one? From RFID Journal: NeoCatena, a Sunnyvale, Calif., startup company, has emerged to address an issue its founders believe is of growing importance to end users of RFID technology: system security. The ...
Network Security Converges With Ubuntu Linux
2008-04-07 21:33:00 Ubuntu, the fastest-growing version of Linux, is starting to attract interest from the managed services industry. One prime example: Untangle, which develops security solutions for managed service providers, is preparing to add support for Ubuntu within the next few months, MSPmentor has learned.
By: Server Tales
Free Honeypot Client Could Sting Malware
2008-03-28 15:04:00 The Honeynet Project has released a new freebie honeypot client tool that lets security pros and researchers automatically detect and dissect bot infections and other malware attacks on client machines.
What Firewalls Do & Donot Do
2008-03-28 15:01:00 Over the last few years, security threats have grown and altered dramatically and so have the defences. Traditional firewalls, installed over three years ago, are often not best suited for current threats and don?t protect against a number of newer threats.
WhiteHat: 90% of Sites Still Vulnerable
2008-03-26 13:57:00 After years of fighting the hacker wars, today’s Websites are still a long way from being secure, according to a new research report.
Red Hat releases free security code
2008-03-26 13:55:00 Red Hat is freeing up the source code behind its identity management and security system in a bid to show that open source software is more secure than rival technologies..
A new type of Bluetooth security
2008-03-26 13:52:00 Bluetooth has been a big success in the mobile world, but primarily for just one application: wireless headsets. These are extremely popular and with good reason: You can’t beat the convenience, and they are have become quite inexpensive.
Dude, where is my perimeter?
2008-03-26 13:50:00 At one time, IT departments concerned themselves with hardening the perimeter. The idea was Medieval: build a fortress around yourself and don’t let outsiders in. Then came remote workers. Then chat apps. Then Web mail. And then mobile devices.
Facebook social network security mishap after update: Did you find loophole
2008-03-25 12:40:00 The security on Facebook is quite embarrassing when you think about it considering people were able to view other people?s personal photos that they posted on Facebook user profile pages, completely circumventing the recent upgrade to the site’s privacy controls. Facebook should never have a security lapse because people go to this social networking place for ...
By: Product Reviews
Scaring users into IT security
2008-03-21 07:54:00 There’s nothing like telling a good horror story to encourage your employees — from senior executives to rank-and-file workers — to do their part in improving IT security. Cisco Chief Security Officer John Stewart has all the technological tools in the world at his fingertips to help keep the networking giant’s data and operations locked ...
Encrypt volumes through a cross platform GUI with TrueCrypt 5.0
2008-03-21 07:49:00 Last month the TrueCrypt Foundation released TrueCrypt 5.0, which finally introduces a Linux GUI for the cross-platform encryption application. TrueCrypt 5.0’s numerous other enhancements include a Mac OS X port, XTS operation mode, the ability to encrypt a system partition or drive under Windows, and the addition of the SHA-512 hash algorithm.
The threat of the Ajax Super Worm
2008-03-21 07:46:00 The rapid evolution of ?Web 2.0? has sparked the convergence of social networking on a massive scale and the adoption of new combinations of technologies that significantly increase the so-called ?attack-surface?. This combination offers irresistible opportunities to organised crime.
Importance of Network Security System
2008-03-21 00:00:00 In today’s technologically advanced world, computers play a dominant role. No matter you are at work, in studies at college or school, or just enjoying a leisurely time in your home, it is certain that you may either switch on your computer or any other related state of the art devices. The importance of computer ...
eEye to Add Retina Web App Scanner
2008-03-14 07:13:00 eEye Digital Security tomorrow will make its first foray into the Web vulnerability space — with a new member of its Retina Security Scanner family that roots out Web application flaws. eEye founder and former CTO and chief hacking officer Marc Maiffret first revealed eEye?s plans to add Web application scanning to its portfolio in ...
Cyber laws and network security
2008-03-14 00:00:00 With the growth in business use of the Internet, network security is rapidly becoming crucial to the development of the Internet. Soon, security will be an integral part of our day-to-day use of the Internet and other networks.
FTP Hacking on the Rise
2008-03-12 15:18:00 The File Transfer Protocol (FTP) has attracted renewed interest lately, but not in a good way: The bad guys are now using the ?70s disco-era file transfer technology to serve up bot malware, and even as a backdoor into some enterprises that neglect to lock down their FTP servers.
Microsoft Patches 12 Office Security Holes
2008-03-12 15:16:00 Microsoft today issued four updates to fix at least a dozen security vulnerabilities in its Office software products. All of the updates earned Microsoft’s "critical" label, meaning attackers could exploit the flaws to break into Windows systems with little or no help from users.
Network Security 101 Posted By : mohan mittal
2008-03-07 05:03:00 As more people are logging onto the Internet everyday, Network Security becomes a larger issue. In the United States, identity theft and computer fraud are among the fastest rising crimes. It is important to protect your network and ensure the safety of all computers and users in that network. . More: continued here
Malware removes rival rootkits
2008-03-04 14:55:00 Miscreants have created a strain of malware capable of removing rootkits from compromised PCs, only to install almost undetectable backdoor code of its own. The Pandex Trojan stops previously installed rootkits from working by removing their hooks into system calls.
Stolen FTP Credentials Offered for Sale: Major Firms at Risk
2008-02-28 06:49:00 Cybercriminals are selling a new crimeware package that can automatically infect nearly 9,000 FTP servers at some major global companies, researchers said today. Researchers at Finjan say they recently stumbled upon a Website selling and trading these stolen FTP server administrator credentials in a software-as-a-service model.
VMWare opens hypervisor to security apps
2008-02-28 06:40:00 Virtual-machine software maker VMWare announced on Wednesday a way for security programs to access the company’s software and protect virtual systems in a way not possible today.
Researchers crack FileVault, BitLocker with canned air hack
2008-02-26 07:04:00 One of the adages of computing is that no hardware is safe when a hacker has physical access to the machine. In an age of booming laptop sales, people haven’t found that reassuring and have frequently turned to disk encryption in an effort to protect their personal data.
Black Hat: Dtrace a Rootkit?
2008-02-26 07:00:00 Sun’s Dtrace application was developed primarily as a tool to help monitor functions on Solaris. According to a pair of security researchers at the Black Hat conference, you can also use Dtrace as the basis for a rootkit-like tool for offensive and defensive security operations.
Experts hammer Web 2.0 security
2008-02-26 06:58:00 Even as social networking darling Facebook prepares a version of its online networking application aimed specifically at enterprise users, legions of security experts are getting behind the idea that the sites represent a serious threat to businesses and other organizations.
Free Web Filtering Service Taps User Input
2008-02-26 06:55:00 First it was the community-driven phish reporting site, and now, a people-powered Web filtering service: OpenDNS tomorrow will launch a free, user-powered Web categorization and filtering service in the spirit of its PhishTank site.
Network Security Assessment: From Vulnerability to Patch
2008-02-24 02:03:00 This book will take readers from the discovery of vulnerabilities and the creation of the corresponding exploits, through a complete security assessment, all the way through deploying patches against these vulnerabilities to protect their networks.* Unique coverage detailing both the management and technical skill and tools required to develop an effective vulnerability management system* Vulnerability management is rated the #2 most pressing concern for security professionals in a poll conducted by Information Security Magazine* Covers in the detail the vulnerability management lifecycle from discovery through patch.http://www.megaupload.com-/?d=8QGWFYJ1
The Future of Encryption
2008-02-19 07:09:00 In today?s world the protection of sensitive data is one of the most critical concerns for organizations and their customers. This, coupled with growing regulatory pressures, is forcing businesses to protect the integrity, privacy and security of critical information. As a result cryptography is emerging as the foundation for enterprise data security and compliance, and ...
Harvard Web site hacked, database on file sharing site
2008-02-19 07:07:00 One of Harvard University’s Web sites appeared on Monday to have been hacked, with its contents appearing on the BitTorrent file-sharing network. A compressed 125 M-byte file claiming to be the database for the Web site of Harvard’s Graduate School of Arts and Sciences is available via the BitTorrent P-to-P (peer to peer) network.
FrSIRT finds flaws in MySQL
2008-02-19 07:04:00 Researchers at a French security organisation have uncovered a number of security vulnerabilities in the MySQL database application, the open source software used to support many Web 2.0 applications. FrSIRT, the French Security Incidence Response Team, reported Thursday that it has identified seven vulnerabilities in MySQL.
Analyze This Malware
2008-02-18 09:07:00 No matter how you measure it, malware is proliferating at unprecedented levels. Last month, PandaLabs and AV-Test each joined the lists of vendors and researchers reporting massive malware growth in 2007. PandaLabs says it now receives an average of over 3,000 new strains of malware every day. AV-Test saw an increase from 973,000 unique malware ...
Is Banking Online Getting Any Safer?
2008-02-18 09:06:00 Banking online has become extremely pervasive and is becoming more and more common. But has it reached a point where it?s actually safer than going to your local branch?
How Does OpenDNS New Competition Stack Up?
2008-02-14 06:12:00 If you’ve considered a free DNS service for your client resolving needs, there is more than one game in town, now. DNS Advantage, a NeuStar, Inc. service, has just come online. Should you think about switching away from OpenDNS? Should OpenDNS be worried?
Use of Rogue DNS Servers on Rise
2008-02-14 06:10:00 Mendacious machines controlled by hackers that reroute Internet traffic from infected computers to fraudulent Web sites are increasingly being used to launch attacks, according to a paper published this week by researchers with the Georgia Institute of Technology and Google Inc.
Confessions of a Caller ID spoofer
2008-02-14 06:06:00 He spoofed the HR director’s work phone number, then the number of that guy’s boss, before moving up to a vice president, and finally, the CEO. Says he had no choice. He also says "this thing that I did is bad and should be outlawed."
Blended security threats on the rise, IBM says
2008-02-13 06:55:00 The number of malware code samples in the wild grew 30% to 410,000 in 2007, according to security researchers at IBM’s ISS division. The Storm Worm, in particular, accounted for 13% of the entire malware collection.
DNS Inventor Warns of Next Big Threat
2008-02-13 06:53:00 The industry is just one multi-million-dollar corporate data breach away from waking up to the serious and often-silent threat of corrupted DNS resolution servers, says DNS inventor Paul Mockapetris. |
|
 |
|
 |
