At the Center for Information Technology Integration, Niels Provos and Peter Honeyman have been scanning the University of Michigan to identify and update vulnerable SSH servers. At the time of this writing, over 30% of all SSH servers appear to have the CRC32 bug.
Protect your server today.
Source: Wired
Tools used to detect computer viruses and stop malicious hack attacks may not be as effective as they could be because they lack the human touch.
Security experts contend that protecting computers from people-created plagues and problems requires technology based on human biology and behavior.
"Computers are the scapegoats of the modern age," said systems administrator David Young. "Computers never do bad things to people. But people often do really bad things to computers."
A new hybrid of computer viruses, ¡®Nimda,¡¯ has hit Korea. According to Ahnlab, Inc., the network security firm spotted Nimda Friday evening and put forward a vaccine program against the virus. Ahnlab said e-mails contaminated by the virus carry attachments that say ¡®readme.exe¡¯ or ¡®readme.eml.¡¯ The firm recommended downloading the vaccine program from its home page (www.ahnlab.com).
(Park Nae-sun, nsun@chosun.com)
Cisco's Pix firewall has a dangerous vulnerability, according to an advisory released by the company today.
The bug is in the SMTP command filtering feature, known as Mailguard, which is designed to give additional protection to the mail server.
Exploiting the hole would allow an attacker to gain information about email accounts and names. The attacker may also be able to execute arbitrary code on the mail server, if it is not properly secured.
A NEW WORM that can delete files from infected hard drives is using the terrorist attacks of two weeks ago, as well as the expected U.S. military response, to trick users into executing it, according to Ian Hameroff, business manager for security solutions at Computer Associates International (CA). Exact details of how the worm works, however, are not yet clear as different security companies have different analyses.
InfoWorld
Source: InfoWorld
A NEW WORM that can infect all 32-bit Windows computers and propagates using multiple methods has spread across the world Tuesday morning, according to Roger Thompson, technical director of malicious code at TruSecure.
Source: Wired
A new e-mail worm that appears to be a retooled combination of several other successful worms -- and which an Internet security firm says was first released almost to the exact minute of the one-week anniversary of the World Trade Center attacks -- is spreading rapidly across the Internet.
Worms and viruses often target specific vulnerabilities in common software. But what if the
terms were reversed? Rather than attacking the vulnerability of software for malicious
purposes, what if the worm or virus actually attempted to secure the software by applying a
patch? Like it or not, it is already happening.
Anti-virus firm McAfee.com (NASDAQ:MCAF) Friday says it has received a serious number of
reports in South America and Europe of a virus circulating through e-mail boxes in the last two days.
This virus, named "W32/Magistr.b@mm," is a variant of "Magistr.a" and has been rated "medium risk"
for corporate and home users due to the number of reports coming from the two continents.
