Security researchers are warning administrators to secure their servers in the wake of new Secure Shell (SSH) attacks. Researchers at security firm SANS warned that so-called ‘brute force’ attacks were occurring on a "daily" basis.
SSH server attacks resurface
April 22nd, 2009 · Comments Off
Hacking Tools & Techniques and How to Protect Your Network from Them
April 22nd, 2009 · Comments Off
Hackers today use a wide variety of tools and techniques to gain entry into networks across the globe, stealing and destroying confidential data, as well as defacing public websites, writing malicious code, and bringing systems and networks to their knees.
Microsoft Black Tuesday: Microsoft finally fixes Excel zero day, plus more
April 22nd, 2009 · Comments Off
Many of these bulletins fix vulnerabilities that could allow remote attackers to take over your computers, so you should apply the updates post haste. I would recommend starting with the Excel patch, which finally fixes a zero day vulnerability reported over a month ago.
Conficker reprogrammed for new attack run
April 11th, 2009 · Comments Off
Researchers are warning that the Conficker worm has been reprogrammed to strengthen its defences and boost its ability to attack more machines.
Rogue security software a rising threat
April 11th, 2009 · Comments Off
The bogus security software programs often offer a free scan that falsely says a user’s computer is infected. If installed, the programs are ineffective against malicious software. Security experts have theorized that those behind the programs reap lucrative profits.
Software Security Activities from the BSIMM
April 8th, 2009 · Comments Off
Using the Software Security Framework (SSF) introduced in October, we interviewed nine executives running top software security programs in order to gather real data from real programs.Our goal is to create the Building Security In Maturity Model (BSIMM) based on these data, and we’re busy going over what we’ve built with the executives who run [...]
How the economy is hurting security
April 8th, 2009 · Comments Off
The economic crisis has affected virtually every facet of society, and information security is no exception. In a new report titled Unsecured Economies: Protecting Vital Information, researchers from Purdue University’s CERIAS security center lay out the fairly bleak view of what the tough times have done to corporate IT security.
Interview With Dino A. Dai Zovi
April 8th, 2009 · Comments Off
In our continuing series on personal computing security, today we’re talking with Dino A. Dai Zovi. Three years ago, the organizers of CanSecWest started a contest titled Pwn2Own. This contest involved the challenge of exploiting fully-patched retail laptops.
2009 When a Bot master goes mad - Kill the OS
April 8th, 2009 · Comments Off
This time we are taking a close look about what things could happen with an infected computer when the running bot receives an specific command about to kill the Operating System. Not all type of bots usually have this functionality, but banking Trojans usually have.
Online crime complaints hit record high in 2008
April 8th, 2009 · Comments Off
The FBI’s Internet Crime Complaint Center (IC3) says complaints of online crime hit a record high in 2008, driven mostly by non-delivery of goods and service and those pesky 419 (Nigerian) e-mail scams.