Network Security - Page 13 - Results from #240

Discover Network Security News

OpenDNSSEC service goes live

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A consortium of security and infrastructure management organisations has launched a new project to help secure Domain Name System (DNS) queries. OpenDNSSEC will provide a way for service providers and hosting vendors to encrypt DNS traffic.

Anthony Pell
Feb 10, 2010

How Wi -Fi attackers are poisoning Web browsers

Public Wi-Fi networks such as those in coffee shops and airports present a bigger security threat than ever to computer users because attackers can intercede over wireless to "poison" users' browser caches in order to present fake Web pages or even steal data at a later time.That's according to security researcher Mike Kershaw, developer of the Kismet wireless network detector and intrusion-detection system, who spoke at the Black Hat conference.

Alex
Feb 04, 2010

How To Hack The Sky

Satellites can bring a digital signal to places where the Internet seems like a miracle: off-the-grid desert solar farms, the Arctic or an aircraft carrier at sea. But in beaming data to and from the world's most remote places, satellite Internet may also offer its signal to a less benign recipient: any digital miscreant within thousands of miles.

Anthony Pell
Feb 02, 2010

Twitter resets passwords after phishing attack

Twitter reset passwords for an unknown number of users on Tuesday whose accounts appeared to have been compromised via phishing. "As part of Twitter's ongoing security efforts, we reset passwords for a small number of accounts that we believe may have been compromised offsite," the company said in a statement.

Anthony Pell
Feb 02, 2010

Data breach report reveals need to boost internet security

Research carried out by the University of Bedfordshire in conjunction with 7Safe, the IT forensics specialist, has found that there are a number of areas where organisations are commonly neglecting internet security and being rewarded with a data loss incident.

Anthony Pell
Jan 29, 2010

Searching for the weak link in university network security

Which is more important in a network: the client machines or the system infrastructure? This could be debated until the cows come home and further debated to include the cows. Personally I would say the latter, but as we have seen this week, one single client machines can open up an almighty can of whoop-ass on the entire network.

Alex
Jan 25, 2010

Internet heading for 'perfect storm'

According to Arbor Networks' latest annual Infrastructure Security Report (Volume 5) survey of 132 large IP operators from across the world, 35 percent of respondents put this at the top of their worry list for the next year, ahead even of the traditional anxiety over botnets and DDoS.

Anthony Pell
Jan 19, 2010

Microsoft bots perform denial of service on Perl Testers

The Perl CPAN Testers have been suffering issues accessing their sites, databases and mirrors. According to a posting on the CPAN Testers' blog, the CPAN Testers' server has been being aggressively scanned by "20-30 bots every few seconds" in what they call "a dedicated denial of service attack"; these bots "completely ignore the rules specified in robots.txt".

Anthony Pell
Jan 18, 2010

DDoS attacks are bigger threat than hackers planned

Distributed denial of service (DDoS) attack are certainly nothing new. Companies have suffered the scourge since the beginning of the digital age. But DDoS seems to be finding its way back into headlines in the past six months, in thanks to some high profile targets and, experts say, two important changes in the nature of the attacks.

Benjamin D. Thomas
Jan 14, 2010

'Jester' ex-military hacker takes the distributed out of DDOS attacks

A politically-motivated hacker has apparently developed a multi-thread, thin-client denial of service attack application that effectively allows him to launch a distributed denial of service (DDOS) attack on a website from a single linux server.

Benjamin D. Thomas
Jan 13, 2010

The best VPN for Windows is Linux VPN

The problem with corporate networks is they not only stop the bad guys coming in but also your users who want to work remotely, whether at home, at a client site or on the road. Here is where a VPN product comes in, and the simplest to deploy on Windows is a Linux virtual appliance called OpenVPN.

Anthony Pell
Jan 12, 2010

How to sniff network traffic with Wireshark

The internet is inherently insecure. Whenever you send data across it, there is a chance that that data could be sniffed, and someone could end up with your personal data. Hopefully once you've read this article, you'll have a better understanding of how to prevent this from happening.

Alex
Jan 12, 2010

What is Enterprise Cloud Computing?

What is enterprise cloud computing? Simply stated, it

Alex
Jan 04, 2010

Managed security service packs a lot of protection into one box

As more and more critical applications and services move to the cloud, organizations are increasingly receptive to the idea of using a managed security service to protect their network and information assets. The number and types of external threats to a network are growing uncontrollably, and unless a company has a dedicated and highly specialized team devoted to network security, it's hard to keep up with the rapidly changing threat landscape. After all, the threats of the Internet are the same for every company regardless of its size.

Alex
Jan 04, 2010

Understanding Cloud Taxonomies and Security

OWASP AppSec DC 2009 had a compelling session that defined cloud taxonomies and the security implications associated with the cloud computing. The three taxonomies that have become part of our vernacular are: 1. Infrastructure as a Service (IaaS): Set of virtualized components that can be assembled to build a application. Amazon EC2, Rackspace, Opsource, and GoGrid are examples of IaaS where you can rent "virtual" hardware and software as a "pay-as-you-go" services. If you need 5 Linux servers running MySQL Database for 3 months, you'd subscribe to an IaaS provider and using their REST or Web service-based API (or command line if you're too cool) to provision, de-provision and monitor your instance.

Alex
Dec 30, 2009

26C3: Network design weaknesses

At the 26th Chaos Communication Congress (26C3) in Berlin, security researcher Fabian Yamaguchi demonstrated a number of vulnerabilities that can apparently be found in many average communication networks and affect all levels from the access layer to the application layer. Attackers exploit many minor design flaws which allow "dangerous attacks" when combined, explained the Berlin-based security expert who last year investigated vulnerabilities in the basic TCP internet protocol. Overall, the "bugs" can reportedly be exploited to hijack a proxy server such as Squid and control all of the network traffic that flows through it.

Anthony Pell
Dec 29, 2009

Amazon hit by DDoS attack

Internet users in parts of California were hit by DDoS attack preventing them from reach several sites. including Amazon. The sites' DNS provider, UltraDNS, was targeted by the DDoS attack. Amazon Web Services (AWS) was the first to signal something was amiss and began investigating a problem at 5.43 pm Pacific Time, The problem persisted until 6:38 pm, but in the meantime the S3 service continued to operate, AWS said.

Anthony Pell
Dec 24, 2009

Metasploit 3.3.3 Released

Metasploit provides useful information to people who perform penetration testing, IDS signature development, and exploit research. This project was created to provide information on exploit techniques and to create a useful resource for exploit developers and security professionals. The tools and information on this site are provided for legal security research and testing purposes only. Metasploit is an open source project managed by Rapid7.

Anthony Pell
Dec 23, 2009

Pupils bypassing school internet security

Many young people are using 'proxy servers' to get round their schools' internet security systems. The free services offer instant access to banned websites, including online games and social networking. Figures suggest the use of proxies has risen sharply in recent years. Security experts are warning that pupils who log on put themselves at risk of cyber crime.

Anthony Pell
Dec 22, 2009

UK retail Wi-Fi security still patchy

Wi-Fi security in UK retail environments is improving, but shops remain vulnerable to the sorts of attacks carried out as part of the infamous TJX credit card heist.

Anthony Pell
Dec 21, 2009

Linux Network Security

I2P 2.5.0 Release Brings Improvements in Tunnels, I2PSnark & More

Canonical Makes Network Management Simpler and More Secure with Netplan 1.0

GTPDOOR Linux Malware Threatens Telecoms, Exploits GPRS Roaming Networks