As much as most IT managers wish otherwise, security remains a top concern of most departments. According to a recent survey commissioned by GFI (www.gfi.com) of senior executives and IT managers at more than 450 small to midsized enterprises, security and system downtime are their top daily concerns, with 71% of respondents mentioning both.
Tips For Improving Users Security Awareness
February 15th, 2008 · Comments Off
A Guide to Different Kinds of Honeypots
February 15th, 2008 · Comments Off
Honeypots come in many shapes and sizes and are available to mimic lots of different kinds of applications and protocols. We shall take the definition of a honeypot as "a security resource whose value lies in being probed, attacked, or compromised"[Spitzner02]. That is, a honeypot is a system we can monitor to observe how attackers [...]
Computer Users Expect More Mac Attacks
February 15th, 2008 · Comments Off
Computer users are becoming increasingly pessimistic about the Mac’s ability to sustain its mostly malware-free existence. Sophos, a computer security company, surveyed 355 computer users, asking them whether they believed Apple’s Macintosh computers will be targeted more frequently by malware in the future.
Password Cracking Wordlists and Tools for Brute Forcing
February 15th, 2008 · Comments Off
I quite often get people asking me where to get Wordlists, after all brute forcing and password cracking often relies on the quality of your word list. Do note there are also various tools to generate wordlists for brute forcing based on information gathered such as documents and web pages.
How Does OpenDNS New Competition Stack Up?
February 14th, 2008 · Comments Off
If you’ve considered a free DNS service for your client resolving needs, there is more than one game in town, now. DNS Advantage, a NeuStar, Inc. service, has just come online. Should you think about switching away from OpenDNS? Should OpenDNS be worried?
Use of Rogue DNS Servers on Rise
February 14th, 2008 · Comments Off
Mendacious machines controlled by hackers that reroute Internet traffic from infected computers to fraudulent Web sites are increasingly being used to launch attacks, according to a paper published this week by researchers with the Georgia Institute of Technology and Google Inc.
Confessions of a Caller ID spoofer
February 14th, 2008 · Comments Off
He spoofed the HR director’s work phone number, then the number of that guy’s boss, before moving up to a vice president, and finally, the CEO. Says he had no choice. He also says "this thing that I did is bad and should be outlawed."
Blended security threats on the rise, IBM says
February 13th, 2008 · Comments Off
The number of malware code samples in the wild grew 30% to 410,000 in 2007, according to security researchers at IBM’s ISS division. The Storm Worm, in particular, accounted for 13% of the entire malware collection.
DNS Inventor Warns of Next Big Threat
February 13th, 2008 · Comments Off
The industry is just one multi-million-dollar corporate data breach away from waking up to the serious and often-silent threat of corrupted DNS resolution servers, says DNS inventor Paul Mockapetris.
In latest release, Nmap looks better than ever
February 13th, 2008 · Comments Off
December’s release of Nmap 4.50 marked the popular port-scanning tool’s tenth anniversary. The 4.50 release includes Zenmap, a cross-platform GUI front end for Nmap which includes a command creation wizard, a scripting engine, and a host of other improvements. Zenmap makes it easier than ever to use Nmap.