Joy Global Shielded From Web 2.0 Hazards

By Rohan Parker

The announcement was made this month by Secure Computing Corporation that the gateway security company would be providing Secure Web(tm) to Joy Global Inc., the mining equipment manufacturer and distributor.
Secure Web, previously known as Webwasher, will allow Joy Global to protect against threats designed with Web 2.0 in mind.
Web 2.0 is the phase [...]

Vista’s UAC spots rootkits

By Grant Draper

Vista’s Account Control feature sets itself to one side, compared to any predecessors, by locating rootkits before they actually install.
You can’t get much worse than a rootkit - they install themselves on a system and from then onwards effectively have control, allowing them to do what ever they want, whether that’s deleting information or retrieving [...]

Adobe Flash Player Bug

By Grant Draper

Hackers have come across an unpatched bug in the Adobe Flash Player software which is, apparently, very similar to a bug that was patched just last month.
The flaw allowed hackers to install unauthorised software on a victim’s machine and was being used to install botnet programs and password-logging software.
Obviously, from a security point of [...]

NinjaProbe To Be Upgraded With Snort IDS

By Rohan Parker

Leader in network monitoring software, Endace Limited, announced today that NinjaProbe is to be upgraded with a new applied watch command center and data mining agent, Snort.
The addition of the Snort IDS (intrusion detection system) will not only mean Endace’s product portfolio will have been reinforced, but so will one of the chief passive [...]

Users hit by phony MP3 files

By Dave Nixon

Adware peddlers have found a novel method to deceive users, said security vendor McAfee.
The company stated that it has seen a vast increase in fake MP3 file distribution on peer-to-peer networks.
Even though the files have names that make them appear as audio recordings, they are essentially Trojan horse programs that attempt to install an [...]

Microsoft to release four new patches

By Dave Nixon

Microsoft is scheduled to fix serious defects in its Word, Publisher and Jet database software this week.
Additionally the software vendor aims to release a lesser-critical update for its anti-virus products, addressing a defect that attackers could leverage to initiate a denial of service (DoS) attack against products such as Windows Live OneCare and Microsoft Forefront [...]

Zero-day flaw uncovered in Microsoft Works

By Dave Nixon

Chinese-language blogs are specifying a zero-day susceptibility in Microsoft Works, the company’s lower-end office productivity suite, according to security vendor McAfee.
The vulnerability is inside an ActiveX control for the Works’ Image Server, wrote McAfee analyst Kevin Beets. A PC would need to visit a website engineered to exploit the flaw, Beets wrote.
A zero-day [...]

New Standards For Credit Card Processing and Collection

By Lashan Clarke

Information released by the PCI Security Council detail the use of a new version of the standards used to process credit cards.
The standards will be known as the Payment Application Data Security Standard or the PA-DSS.
The highlight of the PA-DSS is that is sets out the information needed to merchants to properly process [...]

Hacker Attacks CCP’s Popular Game

By Lashan Clarke

The source code for another game has supposedly been hacked. A computer hacker has stated that he or she hacked the source for the game EVE Online. In order to prove this was true, the hacker then posted the code to numerous P2P websites.
The hacker has stated it will only remove the hacked source [...]

Theft Cited As Largest Reason For Data Breaches

By Lashan Clarke

Even though we commonly think of spyware and trojan horses being responsible for obtaining secure information from computers, a lot of the
security breaches in the past have been because of purely human error.
These human errors included portable computers such as laptop being misplaced, or storage devices such as CDs being lost.
According to [...]

Extra patches for QuickTime

By Dave Nixon

Apple released 11 patches for its QuickTime multimedia program on Wednesday, fixing an assortment of troubles that could let a hacker implement malevolent code on a machine.
It’s no less than the sixth time Apple has patched QuickTime since October last year, as researchers and hackers have been intimately investigating media players for vulnerabilities. As operating [...]

QuickTime Player Patched

By Lashan Clarke

Apple has just released at least eleven patches to its QuickTime player.
These security holes would have made it possible for someone to create an attack using movie files.
The patches are being issued as updates to version 7.4.5, and range from basic security flaws in handling Java, to more harmful flaws that could seriously [...]

The 2008 Octopus Cybercrime Conference

By Lashan Clarke

In a move to help receive more cooperation for companies that provide Internet service to its customers, the Council of Europe will be voting on ways to ensure that online security problems are prevented.
This was the main agenda during the 2008 Octopus Conference on Cybercrime in France.
During this conference, members are hopeful to [...]

Many Passwords Stored Unencrypted

By Lashan Clarke

One of the highlights at the CanSecWest conference in the past week involved showing how software tools can be programmed to obtain user passwords.
This session was headed by Tom Liston and Sherri Davidoff, who are employed at Intelguardians, the software security firm.
Liston and Davidoff highlighted how using Windows and Linux software does not [...]

Resco offers backup for pocket PC

By Janine de Blois

Slovakian based, Resco has added Resco Backup for v1.10 to their repretoire of over thirty products for Windows and Palm pocket PCs.
Designed for end users as well as companies the software allows a variety of options for partial and full backup and restore. It offers compression and encryption (standard AES) as well as [...]

Upgrade Your Software

By Lashan Clarke

Even though the computer software manufacturers have done their part to ensure their programs are free from bugs, or plugged any security holes, many site owners are still using the older versions of software that have not had the security patches applied.
In this regard, website owners are allowing their sites to be susceptible to [...]

Apple Plugs Security Holes In Mac OS

By Lashan Clarke

Since this month, technology giant Appple has made at least two new updates to its Mac OS X system. These updates have also been made to any of the open source components associated with it, along with the Safari web browser.
In regards to the security issuses, Apple has had to plug more than ninety [...]

Google search behind most phishing sites

By Dave Nixon

75% of phishing sites are built on hacked servers that have been tracked down using pre-programmed Google search terms, according to study from brand-protection firm MarkMonitor.
Among additional activities, MarkMonitor tracks phishing attacks that target brand names.
Researchers assembled a list of 750 Google search terms that are used to track down websites liable to [...]

Finjan discovers website offering volume purchase of stolen credit cards

By Janine de Blois

“If further proof were needed that there is a very serious problem facing the card acceptance and processing industry, this is it,” said Yuval Ben-Itzhak, chief technology officer at Finjan.
“Prices are segmented depending on whether a card is a Classic Visa or MasterCard, a premium account such as a Gold, Platinum or Business/Corporate [...]

US agency issues USB devices to employees in attempt to control security

By Janine de Blois

Workers at Washington’s Division of Child Support have begun issuing SanDisk Cruzer drives which provide 256-bit AES encryption and are password-protected.
They are replacing all the privately owned devices which many workers were using to store clients personal data.
The personal data ranges from Social Security numbers, tax and employment records, to criminal [...]

Next Page »