We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
Having managed to cripple PCs on more than one occasion over the last decade, viruses, worms and trojans are now heading for mobile phones. And while many experts worry they could be as malicious as their PC predecessors, some fear they could be a whole lot worse.
Automated attacks are coming from unexpected quarters--from across the globe, across town, and most creepily, even from across the hall. According to a recent report from anti-virus vendor Symantec, this year's 450 percent increase in the number of attacks on Windows machines is evidence that automation is proving as efficient for 21st-Century hackers as it did for 20th-Century manufacturers.
Visitors to SCO's website this morning were treated to a rare moment of corporate self-awareness after hackers apparently replaced an image linking to the undoubtedly scintillating "Extending Legacy Applications and Databases to the Web and Wireless Devices with SCOx Web Services Substrate" with a graphic bearing the rather more promising "We own all your code - pay us all your money":
The author of the popular freeware hacking tool Nmap warned users this week that FBI agents are increasingly seeking access to information from the server logs of his download site, insecure.org.
With the threat of a sophisticated spyware attack looming, a renowned security researcher says the most popular detection and removal tools "fail miserably" at addressing the growing spyware/malware scourge. . . .
Hackers are continuously finding new ways to break into corporate networks and steal proprietary and sensitive data. Virus writers are elevating their technology prowess, creating new worms and bugs that can sneak onto your desktop or through a network firewall and wreak havoc on your IT infrastructure. . . .
A vulnerability in a Java plug-in from Sun Microsystems used by most web browsers poses a risk for users of IE and alternative browsers alike. Because of the flaw, malicious applets can escape the safe confines of a sandbox and damage vulnerable systems. . . .
The malware file is named "Extended theme.SIS" and claims to be a theme manager for the Nokia 7610 smart phone, written by "Tee-222." The trojan was located on some Symbian shareware download sites. Users would have to intentionally install Skull as an application in order to be affected, company officials said. . . .
A hacked server in Germany fed malicious code to unsuspecting Internet Explorer users at an unknown number of Web sites for several hours over the weekend, a banner ad-serving company acknowledged Monday. . . .
A security bulletin circulated on the Internet late Friday and warned Linux users of a "critical-critical" security hole that could compromise systems and allow root access to a remote attacker. The message and its "patch" were the return of a phishing hoax aimed at Linux users. . . .
A report from British security firm mi2g last week blasted Linux system administrators for their failure to master the operating system's intricacies. It's important, though, to read between the lines before placing the blame solely on IT. As mi2g itself noted, the often chaotic growth of Linux has resulted in a tangle of procedures and a variety of security upgrade policies that make the administrators' job tougher. . . .
Unwary surfers infected by a new Trojan horse may be in for a shock when their browser is unexpectedly redirected to a hard-core porn site, a security firm warned Wednesday. . . .
Internet Explorer is once again at the top of the charts--in a bad way. And according to new research, a growing number of enterprises are thinking about taking their browser strategies in a different direction. . . .
No one has complained of a security breach related to an RFID deployment--yet. Businesses and vendors alike acknowledge that security remains a question mark and that it has taken a backseat to the focus on bottom-line results and returns on investment for RFID-enabling their supply chains, for now.< . . .
New versions of the MyDoom worm that began spreading late Monday afternoon are among the fastest-ever exploits of an unpatched Microsoft vulnerability, security experts said Tuesday. . . .
There's a new generation of hackers on the loose, but unlike previous waves who were content to wreck havoc for bragging rights, these guys are after the gold, not the glory. . . .
US-CERT on Wednesday warned of a fresh hole in Internet Explorer that could allow attackers to take control of a PC via an HTML e-mail message or a malicious Web page. The flaw is all the more serious because exploit code has been published on public mailing lists, according to security researchers. . . .
Microsoft has denied that a spoofing technique available on its Internet Explorer browser is a security vulnerability. The software giant accepted the possibility that spoofing could occur on version six of IE, but rejected claims that this was a security flaw.< . . .
An anonymous group of malicious hackers reopened an online store that sells the stolen source code of prominent software products and is offering the code for Cisco Systems (Profile, Products, Articles) Inc.'s PIX firewall software to interested parties for $24,000, according to messages posted in online discussion groups. . . .
Internet Explorer exploits posed the fastest growing web security threat to enterprises in the last quarter, according to web security services firm ScanSafe. The top exploit (Exploit.HTML.Mht) was used to attack twice as many businesses as any other web security threat in Q2 2004.< . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
