Print

Welcome to Smokey's Security Forums.

Guests have only limited access to the board and it's features, please consider registering to gain full access!

Registration is free and it only takes a few moments to complete.

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[rv56]

Report: Attackers exploit IIS hole to breach university server
20 May 2009, 10:44 pm



It didn't take long for hackers to take advantage of a zero-day hole in Microsoft Internet Information Services (IIS).

Ball State University in Muncie, Ind., told The Register that servers running the program were breached on Monday, the same day Microsoft warned the public about the vulnerability.

Students accessing ...



Source: CNET News - Security

[rv56]

Security firm warns of Java flaw in Mac OS X
20 May 2009, 5:16 pm



Macintosh security consulting firm SecureMac.com on Tuesday issued a critical warning for what it says is an unpatched Java security vulnerability in Apple's Mac OS X.



According to the man credited with discovering it, Landon Fuller, the Java flaw even affects the latest version of Mac OS X, ...

Originally posted at News - Apple



Source: CNET News - Security

[rv56]

Flaw in encryption armor discovered
19 May 2009, 7:05 pm

An underlying flaw in the widely used encryption protocol Open Secure Shell (OpenSSH) has been made public by researchers from the Royal Holloway, University of London.

The flaw, which lies in version 4.7 of OpenSSH on Debian/GNU Linux, allows 32 bits of encrypted text to be rendered in ...



Source: CNET News - Security

[rv56]

'Gumblar' attacks spreading quickly
19 May 2009, 4:04 pm

The attackers behind a series of rapidly spreading Web site compromises have begun using a new domain to deliver their malicious code, security experts say.

The attacks, collectively referred to as "Gumblar" by ScanSafe and "Troj/JSRedir-R" by Sophos, grew 188 percent over the course of a week, ScanSafe said ...



Source: CNET News - Security

[rv56]

Protecting yourself from vishing attacks
19 May 2009, 1:00 pm

You might have heard about online "phishing" scams designed to steal money from unsuspecting Web users, but now criminals are using another type of scam called "vishing" to commit the same crimes.

Last week, the Federal Trade Commission filed lawsuits against two telemarketing firms in Florida and a company claiming ...

Originally posted at News - Wireless



Source: CNET News - Security

[rv56]

Microsoft warns of new server vulnerability
19 May 2009, 4:52 am



A new, unpatched vulnerability exists in one of Microsoft's server products, the company warned late Monday.

In a technical bulletin, the company said it is looking into "public reports of a possible vulnerability in Microsoft Internet Information Services (IIS)."

The company said that a flaw exists in a certain

... Originally posted at Beyond Binary



Source: CNET News - Security

[rv56]

Symantec, McAfee target iPhone for new products
18 May 2009, 4:11 pm

Security companies Symantec and McAfee will be the latest big-name developers to make products for Apple's iPhone, as the two look to cash in on the popularity of the device.



Speaking to Reuters, McAfee CEO Dave DeWalt said his company is developing security software for the iPhone, though no ...

Originally posted at News - Apple



Source: CNET News - Security

[MaB69]

DMCA conviction for seller of bogus Microsoft product keys
16 May 2009, 2:52 am



Federal authorities accused Adonis Gladney of selling counterfeit Microsoft product keys, and on Thursday he was convicted of violating the Digital Millennium Copyright Act.

Gladney, 24, is believed to be the first person convicted for DMCA violations dealing with the circumvention of security protections on software, according to Assistant U....



Source: CNET News - Security

[MaB69]

Man sells bogus Microsoft product keys, convicted on DMCA violation
16 May 2009, 2:52 am





Federal authorities accused Adonis Gladney, 24, of selling counterfeit Microsoft product keys and on Thursday he was convicted of violating the Digital Millennium Copyright Act (DMCA).

Gladney is believed to be the first person convicted for DMCA violations dealing with the circumvention of security protections on software, according to Assistant

...

Source: CNET News - Security

[MaB69]

McAfee to buy whitelisting vendor Solidcore
15 May 2009, 6:34 pm

Intent on beefing up its security offerings, McAfee is adding another company to its mix. McAfee announced on Friday an agreement to buy Solidcore Systems, a vendor of whitelisting technology.



McAfee will pay $33 million upfront to acquire privately held Solidcore, with the promise of an extra $14 million if ...



Source: CNET News - Security

[MaB69]

U.K. police swamped by surveillance TV data
15 May 2009, 4:17 pm

The police cannot deal with the amount of information generated by surveillance cameras, according to the U.K.'s Association of Chief Police Officers.

Ian Readhead, director of information for the ACPO Criminal Records Office, said this week that police are overwhelmed by the volume of such data and that ...



Source: CNET News - Security

[MaB69]

Facebook members hit by another phishing scam
15 May 2009, 2:47 am

In what's just the latest Facebook phishing scam, hackers on Thursday broke into accounts and sent e-mails to friends urging them to log on to fake Facebook sites, according to new reports and anecdotes from members.



The social-networking site is in the process of cleaning up from the hack ...



Source: CNET News - Security

[MaB69]

Pirated Windows 7 RC builds botnet
14 May 2009, 2:58 pm

A pirated version of Windows 7 Release Candidate infected with a Trojan horse has created a botnet with tens of thousands of bots under its control, according to researchers at security firm Damballa.

The software, which first appeared on April 24, spread as quickly as several hundred new bots per ...



Source: CNET News - Security

[MaB69]

Microsoft patches critical PowerPoint hole
12 May 2009, 7:39 pm



Microsoft on Tuesday released a patch aimed to fix a critical vulnerability in PowerPoint that had already led to exploits.

The vulnerability is listed as critical for Office 2000, but rated only as important for Office XP, Office 2003, and Office 2007. However, the hole had already formed the basis ...

Originally posted at Beyond Binary



Source: CNET News - Security

[MaB69]

Five simple PC security tips
7 May 2009, 6:00 pm

The list of PC security products never ends. For every name that drops off, two more jump on. In fact, determining the best security hardware and software is a full-time job. Sometimes, you just want to throw up your hands and take your chances.

Maybe I'm just a cockeyed ...

Originally posted at Workers' Edge



Source: CNET News - Security