Networking

A leading IT security expert says one of the greatest terrorist threats to Britain lies in attacks on key computer systems.

The public should be on red alert for hackers seeking to cause havoc in IT systems.

Andrew Steet says more needs to be done to protect the computer systems of government, transport and public utilities.

The US Congress of Science has already met to discuss the dangerous implications, says Mr Steet, a partner at leading City consultants KPMG.

Nimda virus was Sircam's worst
enemy, says Sophos Anti-Virus
Sophos, a world leader in
corporate anti-virus protection,
today responded to warnings in
the media that the infamous
Sircam worm could wipe data from
millions of computers on
Tuesday.

Web server attacks have doubled over the course of the last year, despite increased spending on security. That's the main conclusion of a survey of more than 2,500 organisations, sponsored by security firms TruSecure and Predictive Systems.

The Internet has been used tactically to help after cataclysmic events, but its best future preventive use may be as an educational tool. Given the many Internet security breaches that have occurred this past year, from Code Red to the Nimda virus, many are wondering whether -- and how -- the Internet can help in thwarting future incidents or aiding in rescue and recovery efforts.

I send you this article in order to give you advice: SirCam, the annoying e-mail worm that simply won't go away, will turn feral Oct. 16.

According to analysis of SirCam's code, every year on Oct. 16 the worm will delete all the files and folders contained on the hard drives of randomly selected SirCam-infected computers.

Those who have clicked on a file attached to an e-mail that reads, in part, "I send you this file in order to have your advice," have a few days to make sure the worm is not lurking in their computers.

Multiple vulnerabilities exist in Microsoft Internet Explorer (IE). The first vulnerability results from IE's improper handling of dotless IP addresses. For example, if an attacker enters an address of http://3473223093 instead of http://207.5.45.181 and formats the request in a particular way, IE uses the intranet zone to open the site rather than the correct Internet zone. This vulnerability doesn't affect IE 6.0.

The heavily publicized YIHAT web site has fallen to the hands ( paws ) of
the infamous Fluffy Bunny

Microsoft and some analysts argue that IIS's bad security record isn't a problem with the
program itself. Instead, the real problem is the crackers who like to attack IIS because of the Microsoft
name and its market share. Though the crackers are the real problem, that argument doesn't hold as much
water as Microsoft would like....So why not switch? Especially given that the estimated damages from
Code Red and Nimda ran into the billions? Easy--you probably can't afford to make a change."

Product reviews, analysis, and NIDS testing and results. Good set of links for those
interested in Linux and other solutions. "The future of intrusion detection is hybrids of
network- and server-based products, faster speeds and improved event correlation and
analysis. But prices won't fall."

Continue reading this article over at NWFusion.com.

Q. I'm feeling insecure about my online stock purchase. If the brokerage firm I use goes out of business, how could I prove that I actually own the stock in my account? Is the statement I get each month enough proof that my shares exist? Should I get stock certificates? -- Bonnie

A. Everyone feels a little insecure these days, and it's good to ask questions about the security of your assets. But as long as you take a few reasonable precautions, there is no reason to worry.