According to a new white paper on e-commerce security entitled "An Electronic Citadel -- A Method for Securing Credit Card and Private Consumer Data in E-Business Sites," military fortification designers in the early 1800s used layers of barriers to weaken and stop attackers, while creating an impenetrable stone fortress at the heart of the citadel.
At first blush, recent reports of falling IT salaries and stalled technology spending might easily be interpreted as proof that the bloom is off the rose, that enterprises have lost interest in IT as a critical tool for achieving business advantage. That interpretation, however, would be wrong.
Pen Test member Kelvin writes: ?I have discovered several Internet Banks that are vulnerable to many standard IIS vulnerabilities. Many of the exploits are quite old.? Kelvin says he notified the banks and vendors in question, and after 48 hours, the vulnerabilities were still present.
The responses of his fellow list members seem to confirm that online banks are flirting with some serious security risks, partially because Internet banking applications have been developed and implemented at double-quick speeds...
Global law enforcement is working on a cybercrime treaty that may well strike fear in the hearts of hackers. Except it also worries some privacy groups and ISPs. Online outlaws beware: Global law enforcement is escalating the fight against cybercrime. Meeting late last week in Strasbourg, France, the Council of Europe - a group of 43 European nations - put the final touches on a treaty it has been working on with Canada, Japan, South Africa and the United States since 1997.
By Thomas C Greene in Washington
My recent column ridiculing security specialist Steve Gibson's claim that raw-socket functionality slated for Windows XP is a major threat attracted more flames than I can hope to post on this page.
Briefly, Gibson predicts that the ability of XP's raw sockets to send and forward spoofed packets will result in massive denial of service attacks which no one will be able to stop. I say he's loopy.