|
[2003-03-24] Microsoft ordered to pull 'misleading' security ad
The company's claims that its software is more secure than a bank vault have not impressed South Africa's advertising standards authority. Microsoft claimed in an advertisement that its software is so secure, it will make hackers extinct. As it turned out, it was the ad which bit the dust.
[2003-03-21] Army Denies Hacking Incident
The U.S. Army is denying that its systems were compromised by a recently discovered buffer overflow vulnerability in a component of Microsoft Windows 2000 used to manage the Web Distributed Authoring and Versioning protocol. However, Pentagon sources acknowledged that an investigation into the compromise of a "military server" is now under way.
[2003-03-21] Website Hackings rise as war rages in Iraq
As bombs continue to fall in Iraq, protesters and patriotic hackers alike have stepped up their war of words on the Internet, defacing hundreds of U.S. and U.K. corporate and government Web sites, a security expert said Friday.
[2003-03-21] Windows Flaw More Serious Than First Thought
An analysis by security vulnerability research company NGS Software demonstrates that earlier reports and Microsoft's Security Bulletin on what was apparently a vulnerability in IIS understated the depth of the problem.
[2003-03-21] Microsoft Asks Colleges to Teach Hacking
Students will learn how to hack into software and fix its bugs. Microsoft is working with a number of universities in several countries to set up courses that teach students how to write secure code, the company said Friday. The University of Leeds in England is the first to announce such a course.
[2003-03-21] E-mail worm pretends to have spy satellite images
A new e-mail worm has surfaced that purports to show screensavers of U.S. spy satellite pictures of Iraq or animations that are either patriotic or that mock President Bush, a computer security company warned Thursday. The worm, dubbed Ganda-A, spreads by sending itself to e-mail addresses on an infected machine and tries to disable anti-virus and other security software and infect certain files on the hard disk, according to Sophos.
[2003-03-20] How to Get Rid of Denial-of-Service Attacks
On August 10th I had the opportunity to talk about (Distributed)
Denial of Service (DDoS) at the Megabit 2002 event. I wanted to
show a new way to use standard routers and protocols to combat denial
of service. Unfortunately there wasn't enough time to really prepare
the test setup. I was unable to show conclusively that it works. I was
able to explain how it is supposed to work. I'm going to repeat that
part here and then talk about the Cisco router configurations that
make it all happen.
[2003-03-20] Security Firms Warn of New Code Red Variant
Cluley said so few servers are vulnerable that a widespread attack is unlikely, but even a contained infection could cause Internet slowdowns and other problems.
[2003-03-20] Microsoft warns of firewall vulnerability
Microsoft Corp. warned customers of another security vulnerability on Wednesday, this one affecting its Internet Security and Acceleration (ISA) Server 2000 firewall and Web cache product.
[2003-03-03] Armoring Solaris
Firewalls are one of the fastest growing technical tools in the field of information security. However, a firewall is only as secure as the operating system it resides upon. This article is a continuation of the original Armoring Solaris article, focusing on building a minimized Solaris 8 64-bit for CheckPoint FW-1 NG firewall. This article does not include an updated script for the automated securing of the new installation, as there was in Armoring Solaris. Instead, we will be using Solaris Security Toolkit (JASS). This is a new tool developed and released by Sun for the secure deployment of the Solaris platform. In otherwords, I'm not going to develop a tool to automate the secure build since that tool is already out there.
|
|
