Companies and home Internet users need to accept that the global computer network is inherently vulnerable to attacks, worms, trojans and anything else miscreants want to unleash on it, and then accept that securing the system is everyone's responsibility. . .
Network security managers in some organizations are starting to work more closely with their counterparts from the world of "physical" security. Since 9/11, for example, the State of New York has launched a "cyber security initiative" involving security specialists of both kinds, as well as other IT employees. Many government officials are now advocating this sort of "collaborative security" as a strategy for private businesses. . .
Wi-Fi Protected Access (WPA) will replace Wired Equivalent Privacy (WEP), which presents security concerns on wireless LANs. Enterprises should install WPA as soon as it becomes available, likely in first quarter 2003. . .
A security firm finds three new flaws in the software on which the Internet's domain name system relies, which means new attacks could be around the corner. All three flaws could lead to denial-of-service attacks on the majority of domain name system (DNS) servers, which act as the address books for the Internet, said Internet Security Systems, which discovered the vulnerabilities. . .
Volatility and immaturity in security technology will continue to make enterprisewide technology architectures impractical through 2003. However, the need for a consistent approach, scalability, agility, and auditability will drive development of adaptive, top-down security architectures encompassing consistent policy frameworks, strong process . . .
An optical antenna that uses a geometrically shaped lens promises to bring greater security to wireless networks for businesses, according to British scientists. The new device, developed by researchers at the University of Warwick's engineering department, uses a combination of . . .
A wireless network is like hundreds of network cables floating in search of a rogue computer. A good attacker can get into most networks by taking advantage of a wireless connection and its Wired Equivalent Privacy security. . .
I recently strolled past federal buildings along Connecticut Avenue in Washington, carrying a beta-test model of a tablet PC equipped with an integrated IEEE 802.11b wireless PC Card. In no time, it auto-detected a wireless network. The tablet asked me if I wanted to connect. I declined, but as I kept walking, the tablet detected signals for three more wireless networks. . .
The Wi-Fi Alliance unveiled new security specifications for 802.11b networks, replacing the easy-to-circumvent Wired Equivalent Privacy (WEP) that's now standard. . .
Several folks complained about my 10 minute firewall article. They tried to run what I'd provided, and it failed. This was because they tried to copy/paste exactly the commands I provided. I intentionally left my code crippled . . .
Most WarDrivers use a laptop loaded with network-sensing applications like NetStumbler, plugged into a small, omni-directional antenna. "On my first drive, I had a single directional antenna, a cheap old Lucent wireless card and a Windows laptop running NetStumbler," c0nv3r9 . . .
Chris Bennetts writes, "This Sniffer package allows a high level programmer to sniff IP packets arriving at, and leaving their computer. A queue of IP packets is sent to the Java or C++ program and the programmer can analyse each packet in sequence. The programmer can optionally filter the queue of IP packets by specifying the IP addresses, protocols and port numbers for which packets are queued.. . .
The problem has been exacerbated by the advent or wireless technology and the implementation of WLANs which have not benefited from the corporate "fortress mentality" that is evident in terms of physical security. The reason for this may be simple ignorance . . .
Don't wait for a hacker to show you where your network's vulnerabilities lie. Be smart, and use a network scanner with intelligence--artificial intelligence (AI), to be precise. . .
Antivirus on the desktop is fairly mature. However, the IT organization must now coordinate a layered defense to prevent viruses from penetrating the core network, particularly via e-mail. In addition, the IT organization must develop a comprehensive configuration, monitoring, and event . . .
The trend is called war chalking. (It derives its name from the now-ancient practice of war dialing, in which hackers would set their modems to dial every telephone number in town, in search of other modem-connected computers.) Nowadays, some ingenious mobile . . .
Of all the emotive topics IT generates, security seems to be the one most frequently and irrationally debated. As a general rule people's attention to security is inversely related to the actual risk, value, or need. Companies pour resources into making . . .
Contrary to popular belief, corporate sabotage is among the least likely causes of computer security breaches. According to an April 2002 survey by the Computer Security Institute, sabotage accounted for just 8 percent of system attacks in 2002. Security breaches . . .
And after suffering through the Love Bugs and Code Reds of e-mail, the growth of mobile wireless raises the question of whether businesses have learned their lessons for this second round. So far, experts say, not really. But the final test may still be a few years away.. . .
A "honeypot" trap consisting of a Wi-Fi-equipped laptop is the latest weapon against drive-by hackers. Set up at the London headquarters of consultants KPMG, the laptop looks to the outside world like a simple wireless access point, but contains monitoring software . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
