With just weeks before Windows XP goes gold, it looks like Steve Gibson is trying one final tactic to convince Microsoft to eviscerate the raw socket support in XP. But his latest gadget, SocketToMe, is probably too little too late.
Experts are warning the wireless internet connections on offer at airports may pose a security risk to users. Wireless web networks are already a regular feature in frequent-flier lounges across the US and are being extended to many hotels and coffee shop chains.
In many cases users are unaware the lack of encryption means it may be easy for others to read their business e-mails and monitor their browsing. Digital security specialists Predictive Systems say public access local area networks - known as Wi-Fi in the US - often lack standard data security measures...
If your organization is like most, your users log into your enterprise system with user names and passwords. And they probably log into multiple accounts, with each account requiring its own user name-password pair. Some applications employ authentication, asking for another user name-password set, and now your users are up to their necks in passwords.
The NSFOCUS Security Team reported on August 10th that they had found a heap buffer overflow vulnerability in the xlock shipped in Solaris system when handling some environment variables. Exploitation of it was reported to allow a local attacker to obtain root privilege
An explicit account hijacking exploit against Microsoft's Hotmail was published at Eye on Security, which can be easily adapted for other Web Applications and Web Mail packages, which make use of HTML, JavaScript and Cookie technology.
System vulnerabilities--holes through which intruders may crawl inside your servers--are cropping up at a rate of six or seven per day, a pace that strains the resources of most system administrators, security experts say.
Prentice Hall PTR today announced the publication of Counter Hack: A Step-by-Step Guide to Computer Attacks and Defenses by Ed Skoudis. Unlike other hacker books on the market, Counter Hack is a next-generation hacking book that presents a complete solutions-based approach to computer attacks and defenses for the IT professional protecting network infrastructure and data.
This article details various DoS attack techniques. There have been many papers written about DoS attacks, so you are probably asking yourself why Netflood is writing one. The main reason is because when I discuss DoS attack techniques to people, very few seem to have a grasp of what they are, what they do, and/or why they work Lately, I've also gotten involved in conversations about whether DoS attacks (other than DDoS) even work and what the best methods are for doing DoS attacks. Since people seem to be asking me about it more, DoS must be a "hot topic", so why not cover it?
To undo the effects of an Internet worm that may have burrowed into hundreds of thousands of computers, Microsoft has released a new tool, Code Red Cleanup. Available from the Microsoft Web site, the small utility is designed to "eliminate the obvious effects of the Code Red II worm" from infected Web servers, according to the company.
When it comes to security online, the Internet still has an image problem, with 86 percent of U.S. adults indicating that they are very concerned about the security of online bank and brokerage transactions, according to a study released Tuesday by Gartner Inc.
