Saturday, February 21, 2009

Around The Horn vol.1,46

Alerts

Feb 20, 2009 (yesterday)

TA09-051A: Adobe Acrobat and Reader Vulnerability

from US-CERT Technical Cyber Security Alerts

Adobe Acrobat and Reader Vulnerability

1:02 AM (20 hours ago)

SSL attack announced at Blackhat DC, (Sat, Feb 21st)

from SANS Internet Storm Center, InfoCON: green

Moxie Marlinspike presented a way to attack SSL communication during Blackhat conference in DC this ...(more)...

 

Security News

12:37 PM (8 hours ago)

Kaminsky calls for DNSSEC deployment

from The Register - Security

Political hot potato

ARLINGTON, VA. -- Dan Kaminsky's second act has begun: Pushing the adoption of the DNSSEC security standard for the domain-name system.…

Feb 20, 2009 (yesterday)

State bill would turn RFID researchers into felons

from The Register - Security

If white hats are outlawed...

The sponsor of a controversial bill before the Nevada legislature has promised to introduce amendments after security experts and civil libertarians warned it would make felons of people studying privacy threats involving RFID, or radio frequency identification.…

Feb 20, 2009 (yesterday)

Symantec dismisses blind SQL hack claims

from The Register - Security

'It's just an error message'

Symantec's website has been given the once-over by the same Romanian hacking group that exposed security problems with websites run by Kaspersky Lab, F-Secure and Bitdefender earlier this month.…

Feb 20, 2009 (yesterday)

'Sexy View' SMS malware targets Symbian devices

from The Register - Security

Signed, Sealed, Delivered (You're pwned)

Bad sorts have created a malware targeted at Symbian mobile phones that comes signed with an apparently valid Symbian Certificate.…

4:47 AM (16 hours ago)

Permanent fix needed for DNS security issues, Kaminsky warns

from Network World on Security by Jaikumar Vijayan

Seven months after the disclosure of a fundamental design flaw in the Domain Name System protocol that was discovered by security researcher Dan Kaminsky , industrywide efforts to address the DNS problem have made considerable headway, according to Kaminsky.

Feb 20, 2009 (yesterday)

Adobe flaw heightens risk of encountering malicious PDFs

from Network World on Security by Jeremy Kirk

Security companies are warning of a new flaw in two Adobe Systems programs that could compromise a PC merely by opening a malicious PDF file.

Feb 20, 2009 (yesterday)

Bradford's NAC Director gives pipeline firm more control

from Network World on Security by Tim Greene

Mark MacDonald was looking for NAC because he had trouble controlling outside contractors that need to connect to the Enbridge Gas Distribution corporate network in Ontario, Canada.

4:47 AM (16 hours ago)

Novell aquisition bolsters ID governance portfolio

from Network World on Security by Tom Jowitt

Novell has quietly bolstered its ID governance portfolio after acquiring the technology assets of a tiny British company and signing a 'perpetual' licensing deal with California-based ActivIdentity.

Feb 20, 2009 (yesterday)

Researcher shows new SSL Web site hack

from Network World on Security by John E. Dunn

A researcher has found a convincing way to hack the SSL protocol used to secure logins to a range of Web sites, including e-commerce and banking sites.

4:47 AM (16 hours ago)

Adobe Acrobat, Reader vulnerability affects Mac

from Network World on Security by Dan Moren

Nothing wakes you up faster than a security vulnerability for a major piece of software. Adobe announced on Thursday that they'd found a wee bug in Acrobat and Reader versions 7 through 9. Just a tiny little critical buffer overflow hole that could let a malicious attacker take control of your computer.

4:47 AM (16 hours ago)

Microsoft: Online gamers still a top malware target

from Network World on Security by Robert McMillan

What's the most common type of malware on the Internet? Viruses? Botnet code? How about password-stealing worms, designed to victimize online gamers?

Feb 20, 2009 (yesterday)

DShield Web Honeypot Project - Alpha Version Released

from Darknet - The Darkside by Darknet

For those of you who are not familiar with DShield (where have you been? under a rock?) it’s a Cooperative Network Security Community. Basically what that means is they collect firewall logs and map out the trends. Like when there was a worm going around that bruteforced SSH2 you could see a spike in port 22 [...]

Feb 20, 2009 (yesterday)

Feds Propose Storing Internet User Data for 2 Years

from Wired Top Stories by David Kravets

Congress is pondering a bill that would retain individuals' internet-surfing data for two years, a measure one privacy expert said was "creepy."

7:22 PM (2 hours ago)

Scam Antivirus App Spreads Malware

from PC World Latest Technology News

Promoters of the virus are even seeding fake product reviews promoting the supposed antivirus app.

Feb 20, 2009 (yesterday)

Malware Troubles? Start from Square One

from PC World Latest Technology News

The only way to truly come clean: Back up your data, format your hard drive, and begin again

Feb 20, 2009 (23 hours ago)

Conficker Spawn, Recession Smackdown

from PC World Latest Technology News

A new version of Conficker has turned up and could portend even more malevolent uses of that already-nasty malware...

Feb 20, 2009 (yesterday)

Adobe Acrobat, Reader Vulnerability Affects Mac

from PC World Latest Technology News

Nothing wakes you up faster than a security vulnerability for a major piece of software. Adobe announced on Thursday that...

Feb 20, 2009 (yesterday)

Adobe Reader Suffers Targeted Zero-day Attacks

from PC World Latest Technology News

Symantec today reported finding a new, unpatched flaw that is being actively targeted by poisoned .pdf files.

No comments:

Post a Comment

My Blog List