Security News

DINING WITH EMMA - Expat’s edible exploits
Jamaica Gleaner - I magine how hard it would be to live far from home. Forget that you’d miss family and friends. What about the food? No salt fish and ackee, Johnny cakes, jerk chicken or stew peas with spinners. We could certainly live without these for a time

PHP exploit code plants itself in GIF
ZDNet Australia - Once this type of malicious GIF is uploaded to a server, it can create havoc by remotely allowing more exploits to be deployed on the system, said Johannes Ullrich, chief research officer for the SANS Institute. When users download the image to view

Cyber-Crooks Offer Malicious Code Tool Mpack for $1000 Including One
Forbes - Hackers that want to update Mpack with new exploits can buy them for between $50 and $150 per exploit. Hackers use a number of techniques to get users to visit the pages, including spam, using trick domains (e.g. gookle, instead of google,) or

News Blog: Posts tagged Mpack
CNET News - Mpack attack continues to turn thousands of legitimate Web sites into compromised sites offering drive-by downloads of malicious software, security researcher Roger Thompson over at Exploit Prevention Labs reminds us there are other exploits

Grave concern as intruders risk jail sentences
Hampstead & Highgate Express - We have discovered hundreds of people who are doing it.” Details of their exploits were posted on the Urban Explorers website along with their pictures. Just days later they returned to the cemetery legitimately to go on an official guided tour. Wraith

News: Briton charged with hacking loses extradition fight
Briton charged with hacking loses extradition fight

US 'Spam King' new slick face of cyber crime (AFP)
AFP - They call him the "Spam King," but Robert Soloway is an unlikely figure accused of flooding computers with emails promoting everything from sex aids and penis enlargements to "pump-and-dump" stock schemes.

MS07-034 - Critical: Cumulative Security Update for Outlook Express and Windows Mail (929123)
Bulletin Severity Rating:Critical - This critical security update resolves two privately reported and two publicly disclosed vulnerabilities. One of these vulnerabilities could allow remote code execution if a user viewed a specially crafted e-mail using Windows Mail in Windows Vista. The other vulnerabilities could allow information disclosure if a user visits a specially crafted Web page using Internet Explorer and cannot be exploited directly in Outlook Express. For the information disclosure vulnerabilities, users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Who will be spying on your medical secrets?

Federico Biancuzzi: Embedded Problems
Embedded Problems >> Advertisement << ALERT: “How A Hacker Launches A Blind SQL Injection Attack Step-by-Step”!” - White Paper Blind SQL Injection can deliver total control of your server to a hacker giving them the ability to read, write and manipulate all data stored in your backend systems! Download this *FREE* white paper from SPI Dynamics for a complete guide to protection! https://download.spidynamics.com/1/ad/bsq.asp?Campaign_ID=701600000004c29

Is The iPhone Insecure?

Featured PRFirm
PRWeb - ESI Software develops Performance and Monitoring Software for Enterprise Content Management Applications ESI Software announced the creation of ecmXray at the FileNet UserNet 2004 Expo - 2004-10-29 Craig Taylor Appointed Vice President of Sales, Venue

Seven ways to boost application performance
Network World Fusion - Not all application performance issues stem from long-distance trips over the WAN. Sometimes applications act up right on the local network. Bret Moeller, CIO at Bunker Hill Community College in Charlestown, Mass., says server monitoring software

Congress Takes Aim at Spyware
MSN MoneyCentral - Privacy advocates have been pushing the FTC, for example, to require that Web sites alert visitors to tracking cookies and other monitoring software on their pages [see BusinessWeek.com, 11/15/06, “Taking Aim at Targeted Advertising”]. What all

MPEG-4 (AVC) Smart Video Encoder System Provides Cost effective
dBusinessNews.com - The initial product, RPT-1000, is the first H.264* compliant network appliance to offer multiple channels, intelligent encoding, IP transport and browser- and windows-based client monitoring software for remote configuration and management. Standard

Press Release Tips and Template
PRWeb - “After being picked-up by over 1,190 PRWeb subscribers, and ending up on E*TRADE radio as a result, we’re more than happy with the value proposition you folks have put together. Where else can you put out a measly $200 and be seen by such high

Microsoft to release four critical patches
Software giant plans to issues fixes next week for vulnerabilities in its Windows Mail, Internet Explorer and Windows XP.

Brief: HP to acquire SPI Dynamics
HP to acquire SPI Dynamics

EU wages war on cybercrime
As part of the targeted legislation, the Commission will consider laws for tackling ID theft later this year.

New web threat takes advantage of iFrame vulnerability
TG Daily - Security firm Trend Micro said that it has discovered a new threat that is currently making the rounds on the Internet. The threat is based on an iFrame vulnerability in webpage code to plant a keylogger to steal user passwords, or turn computers

All In One Keylogger V2.803 Is Out
pressbox.co.uk - This is invisible surveillance tool that registers every activity on your pc to encrypted logs. It allows you to secretly track all activities from all computer users and automatically receive logs to a desire e-mail, Network Folder (LAN) or FTP

MP’s concern after girl, 6, hacks into Commons computer
This is Hampshire - INVESTIGATION: Inside Out presenter Chris Packham and Brianagh, with a keylogger, outside Parliament. AN MP has told of her concerns after a six-year-old Hampshire girl hacked into her computer in the House of Commons. It took the youngster, from

Malicious software plays on legal fears
Computerworld - The keylogger is purposely mislabeled with a “.pdf” extension — Portable Document Format — another widely used document format, to make it look harmless, said Henry Gonzalez , Websense’s senior security researcher. The trick is another variation of

Hackers hijack Windows Update’s downloader
Computerworld - Malware, particularly Trojans, which typically first open a back door to the system for follow-on code, needs to sidestep firewalls to bring additional malicious software — a keylogger, for instance — to the PC. “[But] the most common methods are

Hybrid SSL/Keylogger Malware Surfaces
Managing Information - Tier-3 have announced that a highly dangerous hybridised version of the Russian Gozi virus has surfaced that not only features an integrally-coded keylogger, but has the ability to steal data from an SSL stream. Sunday newswire reports apparently

ContentWatch controls employees’ Internet access
Network World Fusion - For example, just one click on a porn site even for the briefest peek is a likely way to pick up a keystroke logger on the PC. The 2005 Electronic Monitoring & Surveillance Survey from American

VM Rootkits: The Next Big Threat?
eWeek - The group used the prototype rootkits to develop four malicious services a phishing Web server, a keystroke logger, a service that scans the target file system for sensitive information and a defense countermeasure to defeat existing VM-detection

Check Point and Sygate corral end points
Computerworld Australia - A Java applet that is downloaded to the client upon connection, ODA creates an encrypted virtual desktop with updated anti-virus software, anti-virus definitions, an anti-keystroke logger, and a personal firewall. After the session, ODA deletes all

Can Web-based applications outwit, outplay, outlast the desktop?
Infoworld - This guide examines the results of Symantec’s 2006 security surveys, evaluates spam and malware solutions, and analyzes security assessment appliances. Download a copy of this new Mail Security Sponsored Solutions Guide. Sponsored by Symantec.

News Blog: Posts tagged yahoo
CNET News - Now, Chris Boyd, Director of Malware Research at Facetime Security Labs, has found a recent Skype worm variant that is able to infect not just Skype, but ICQ and MSN Messenger, with the potential to infect AIM, Trillian, and Yahoo Messenger as well

Stoner warns Nationals of globalisation challenge
Australian Broadcasting Corp. - We cannot let the drought become a Trojan horse that masks much more serious structural changes that are being forced on regional economies because if we close our eyes to the problems now, then we’ll forever miss the opportunity to resolve them

Parade rumbles Idaho Street
Elko Daily Free Press - Greg Thornton and Sean Clark, both from Elko, had two of the more distinguishable helmets on display. Thornton wore a black executioner s mask, while Clark topped his head with a Trojan helmet. Every motorcyle and biker certainly has a story to tell

GIRLS SOCCER: First-team P.O. All-Stars, second team, honorable
Public Opinion - Trojan coach Shawn Stenger said, “In the win over CD at home, Steph was huge. In districts, she came up big. The bigger the game, the better she played. She had confidence in the girls in front of her — they kind of fed off her and she fed off them

One more time around the track for outstanding Trojans twosome
Belleville Intelligencer - Rowe was voted soccer and wrestling MVP at Moira plus earned her athletic bar of excellence and honours plaque for accumulating 100 and 80 points, respectively, during four years of varsity sports as a Trojan. Still, Rowe didn’t like the fact she

Mark Rasch: Your Space, My Space, Everybody’s Space
Your Space, My Space, Everybody’s Space

Google promises to dump user data after 18 months (AFP)
AFP - Faced with concerns by European online privacy advocates, Google is promising to obscure information about people's Internet searches after only 18 months.