Sun’s Dtrace application was developed primarily as a tool to help monitor functions on Solaris. According to a pair of security researchers at the Black Hat conference, you can also use Dtrace as the basis for a rootkit-like tool for offensive and defensive security operations.
Black Hat: Dtrace a Rootkit?
February 26th, 2008 · Comments Off
Experts hammer Web 2.0 security
February 26th, 2008 · Comments Off
Even as social networking darling Facebook prepares a version of its online networking application aimed specifically at enterprise users, legions of security experts are getting behind the idea that the sites represent a serious threat to businesses and other organizations.
Free Web Filtering Service Taps User Input
February 26th, 2008 · Comments Off
First it was the community-driven phish reporting site, and now, a people-powered Web filtering service: OpenDNS tomorrow will launch a free, user-powered Web categorization and filtering service in the spirit of its PhishTank site.
Stripping Away Malware Armor
February 26th, 2008 · Comments Off
Security analysts use stealth to win the "arms race" against malware. Getting around the defense mechanisms that malware writers erect isn’t easy. From packers to run-time obfuscators, software-armoring techniques create problems for reverse engineers and security analysts.
Google scanning is it legal?
February 26th, 2008 · Comments Off
If content is placed on the public web it is almost a foregone conclusion that search engines such as Google will spider and index it. It’s also very likely that a link to that content will eventually turn up in someone’s search results, and that someone will follow the link and see the content.
The Future of Encryption
February 19th, 2008 · Comments Off
In today’s world the protection of sensitive data is one of the most critical concerns for organizations and their customers. This, coupled with growing regulatory pressures, is forcing businesses to protect the integrity, privacy and security of critical information. As a result cryptography is emerging as the foundation for enterprise data security and compliance, and [...]
Harvard Web site hacked, database on file sharing site
February 19th, 2008 · Comments Off
One of Harvard University’s Web sites appeared on Monday to have been hacked, with its contents appearing on the BitTorrent file-sharing network. A compressed 125 M-byte file claiming to be the database for the Web site of Harvard’s Graduate School of Arts and Sciences is available via the BitTorrent P-to-P (peer to peer) network.
FrSIRT finds flaws in MySQL
February 19th, 2008 · Comments Off
Researchers at a French security organisation have uncovered a number of security vulnerabilities in the MySQL database application, the open source software used to support many Web 2.0 applications. FrSIRT, the French Security Incidence Response Team, reported Thursday that it has identified seven vulnerabilities in MySQL.
Analyze This Malware
February 18th, 2008 · Comments Off
No matter how you measure it, malware is proliferating at unprecedented levels. Last month, PandaLabs and AV-Test each joined the lists of vendors and researchers reporting massive malware growth in 2007. PandaLabs says it now receives an average of over 3,000 new strains of malware every day. AV-Test saw an increase from 973,000 unique malware [...]
Is Banking Online Getting Any Safer?
February 18th, 2008 · Comments Off
Banking online has become extremely pervasive and is becoming more and more common. But has it reached a point where it’s actually safer than going to your local branch?