Ipswitch has patched several security flaws in its widely used email and communications server software, the worst of which could allow an anonymous attacker to take over a system from the Internet.
The flaws affect the latest version of the Ipswitch Collaboration Suite (ICS), which includes e-mail, calendaring, contact list sharing and other communications components, but earlier versions are also thought to be vulnerable. Patches are available from Ipswitch here. The software runs on Windows and has a user base of more than 50 million, according to Ipswitch.
Supporters of the Heartland Institute got a different kind of e-mail recently from the Chicago-based think tank.
This one wasn't a policy paper on a pressing economic issue. Rather, the e-mail warned "Internet pirates" had hijacked the Heartland's Web domain name. Their likely goal: To use the institute's good name to defraud people.
The Heartland Institute found itself at the center of a growing problem: Use of the Internet to swipe identities and people's money.
A software flaw in Cisco voice over IP phones could allow hackers to crash them.
The problem has been reported by the UK’s National Infrastructure Security Co-ordination Centre (NISCC) and Cisco is issuing patches to solve the problem.
A DNS (domain name system) protocol vulnerability affects the client software in the phones. DNS handles the translation of domain names into IP addresses via DNS servers across the internet to perform the translation.
The system is designed to ensure that IP packets arrive at their proper destinations at the right time.
The Career Development Center, or CDC, notified students yesterday that its computer system was “improperly accessed from outside of the Stanford network” on May 11. Information available on the Web site was limited to files that generally include names, resumes, letters of recommendation and Social Security numbers.
It is still unknown who hacked into the site, which included information from 1996 to the present.