Burglars stole laptop, laptop struck back, burglars got arrested
It’s a Mac. Does Windows machines have such features?
Written by pinolobu on May 13th, 2008 with no comments.
Read more articles on news.
Security flaw turns Gmail into open-relay server
A recently-discovered flaw in Gmail is capable of turning Google’s e-mail service into a highly effective spam machine. According to the Information Security Research Team (INSERT), Gmail is susceptible to a man-in-the-middle attack that allows a spammer to send thousands of bulk e-mails through Google’s SMTP service without fear of detection. This attack bypasses both Google’s identity fraud protection mechanisms and the current 500-address limit on bulk e-mail.
Written by pinolobu on May 11th, 2008 with no comments.
Read more articles on news.
High street chains will be the next victims of cyber terrorism
High street chains will be the next victims of cyber terrorism, some of the world’s elite hackers have warned.
They claim it is only a “matter of time” before the likes of Tesco and Marks & Spencer are targeted.
Criminals could use the kind of tactics which crippled Estonia’s government and some firms last year, they warned.
The experts were members of the infamous “Hackers Panel” which convened in London this week at the InfoSecurity Europe conference.
The panel includes penetration testers and so-called “white hat” hackers, who help companies tighten up their digital security by searching for flaws in their defences.
Previous panellists include Gary McKinnon, known as Solo, alleged by the US government to have hacked into dozens of US Army, Navy, Air Force, and Department of Defense computers.
The “hackers” usually remain anonymous, “for security reasons”, but this year’s panellists agreed to break cover.
Full story
Written by pinolobu on April 26th, 2008 with no comments.
Read more articles on news.
Hackers are still exploiting 10 year old web vulnerabilities
Web designers making very old mistakes are letting malicious hackers hijack visitors to their sites, say experts. Many of the loopholes left in the code created for websites have been known about for almost a decade say the security researchers. The poor practices are proving very attractive to hi-tech criminals looking for a ready source of victims. According to Symantec the number of sites vulnerable in this way almost doubled during the last half of 2007.
Written by pinolobu on April 14th, 2008 with no comments.
Read more articles on news.
There are now more than 1 million computer viruses
Yes, that number includes all malicious software: viruses, worms and trojans.
That’s what security firm Symantec Corp said in the latest edition of its bi-annual Internet Security Threat Report. The company added that most of these were created in the past year.
Written by pinolobu on April 10th, 2008 with no comments.
Read more articles on news.
US homeland security chief says cyber risk “equals 9/11 impact”
On the 8th of April 2008, the BBC reported that the US homeland security chief has made a heartfelt plea to Silicon Valley workers to stand up and be counted in the fight to secure the cyber highway.
Michael Chertoff invoked the attacks of 9/11 as he sought to galvanise IT professionals and security experts.
He told the world’s biggest IT security conference that serious threats to cyberspace are on “a par this country tragically experienced on 9/11″.
Such attacks can hit financial bodies and a government’s powers, he said.
Written by pinolobu on April 9th, 2008 with no comments.
Read more articles on news.
The world’s largest information security industry conference and expo
The RSAConference claims to be the most comprehensive forum in information security.
The 2008 edition in the US claim to have 17,000 attendees from the industry’s best and brightest.
There are 19 class tracks and more than 220 sessions.
Keynote addresses from Microsoft, RSA, The Security Division of EMC, CA, VeriSign, Symantec, TippingPoint, Oracle, and IBM.
Many networking (the human sort) events such as the Peer2Peer Sessions, First-Time Attendee Orientation, Welcome Reception, and the annual RSA® Conference Codebreakers Bash.
More than 350 exhibitors.
Written by pinolobu on April 9th, 2008 with no comments.
Read more articles on news.
Trend Micro website hacked
InfoWorld reported on 14th March 208 that top security vendor Trend Micro has fallen victim to a widespread Web attack that splashed malicious software onto hundreds of legitimate Web sites in recent days.
A Trend Micro spokesman confirmed that the company’s site had been hacked Thursday, saying that the attack took place earlier in the week. “A portion of our site — some pages were attacked,” said Mike Sweeny, a Trend Micro spokesman. “We took the pages down overnight Tuesday night — and took corrective action.”
On Thursday, security vendor McAfee reported that more than 20,000 Web pages have been affected by the attack. The pages are infected with malicious code that tries to install password-stealing software on the PCs of people who visit the sites.
Researchers are still not sure how the attackers are managing to hack these Web pages, but the pages all seem to use Microsoft’s Active Server Page (ASP) technology, which is used by many Web development programs to create dynamic HTML pages. A software bug in any of those programs is all the attackers need to install their malicious code.
The infected Web pages are not obviously malicious, but the attackers have added a small bit of JavaScript code that redirects visitors’ browsers to an invisible attack launched from servers based in China.
Written by pinolobu on March 19th, 2008 with no comments.
Read more articles on news.
Google Mail vulnerable to sidejacking, even though it has SSL
According to security researcher and CEO of Errata Security Robert Graham:
Google’s JavaScript code makes HTTP requests in the background via an XMLHttpRequest. By default, these requests are SSL-encrypted—but if SSL fails, they change to nonencrypted mode. When a user attempts to connect to a WiFi hotspot, Google Mail attempts to connect with SSL both enabled and disabled. Even if the attempt fails, session-ID cookies are still transmitted to the router, and can therefore be captured by anyone sitting nearby with an appropriately configured software suite.
Written by pinolobu on February 3rd, 2008 with no comments.
Read more articles on news.
Nearly 95 percent of e-mail is junk: US Web security firm
Nearly 95 percent of the e-mail sent in 2007 has been “spam,” junk advertising loathed by its recipients, according to a report released Wednesday by a US Web security firm.
The amount of junk e-mail has skyrocketed despite a 2004 US CAN-SPAM Act that placed restrictions on sending unwanted messages and sanctioned penalties for “spammers,” according to California-based Barracuda Networks Inc.
Junk messages made up an estimated 70 percent of e-mail the year the act was passed, the Barracuda report indicates.
“The spam war is a continuous battle between spammers and security vendors,” said Barracuda chief executive Dean Drako.
“Security vendors now require 24-by-7 defense operations to continuously monitor the Internet for new spam trends and distribute new defensive solutions immediately.”
Barracuda said it based its findings on analysis of more than a billion e-mail messages received daily by its approximately 50,000 customers worldwide.
Spammers cunningly hide their identities by routing e-mails through other people’s websites, blogs or computers, according to Barracuda.
Source
Source
http://news.yahoo.com/s/afp/20071212/ts_alt_afp/lifestyleusitinternetcompanybarracuda
Written by pinolobu on December 13th, 2007 with no comments.
Read more articles on news.