| |
| |
|
|
|
| |
|
Security Central - Infoworld
![]()
| 09/02/2010 12:32 PM |
| Skyrocketing viruses, less danger? |
| In 2008, antivirus firm Sophos processed about 20,000 "new" pieces of malware every day.
|
| |
| 09/01/2010 02:07 PM |
| Global spam hits all-time high |
| Spam hit an all-time high this year, with more unwanted messages pouring in from a smorgasbord of countries, thanks in part to globalization. Such are the findings of a recent and comprehensive report on all things security-related from IBM X-Force.
|
| |
| 09/01/2010 08:13 AM |
| Microsoft still mum on programs prone to DLL hijacking attacks |
| Microsoft on Tuesday again abstained from naming which of its Windows programs, if any, contain bugs that could lead to widespread "DLL load hijacking" attacks. Also on Tuesday, the company published an automated tool to make it easier for users to block attacks exploiting vulnerabilities in a host of Windows applications.
|
| |
| 09/01/2010 06:00 AM |
| Eight great virtual appliances for VMware, free for the downloading |
| Virtual appliances are great for the same reasons physical appliances took the IT world by storm: They make deployment a snap -- even instantaneous -- while at the same time reducing costs. It's a formula that made hardware-based appliances immensely popular for network security, backup, storage networking, file services, email, and many other single-focus solutions.
|
| |
| 08/31/2010 12:08 PM |
| What it takes to shut down a botnet |
| A botnet shutdown makes for a great story.
|
| |
| 08/31/2010 09:20 AM |
| Google disputes bug patching report |
| Google on Monday said that a recent report claiming it failed to patch a third of the serious bugs in its software had the facts wrong. IBM's X-Force security company, which released the report last week, acknowledged the error and issued a revised chart that shows Google patched all the vulnerabilities rated "critical" or "high" in its online services.
|
| |
| 08/31/2010 08:31 AM |
| Scammers prey on required Twitter update |
| Scammers are trying to take advantage of the fact that many users will soon have to update their version of the TweetDeck Twitter software. On Monday, TweetDeck warned that some Twitter messages were advising people to upload an untrustworthy executable file, called tweetdeck-08302010-update.exe.
|
| |
| 08/31/2010 06:00 AM |
| Mobile security: Your smartphone is safer than your PC, for now |
| In security circles, the talk on mobile centers around mobile management, protecting access to and use of corporate information by smartphone users. This summer's iOS 4 has been a game-changer for most IT organizations, giving the Apple iPhone, iPad, and iPod Touch security capabilities equivalent to those of Windows Mobile and meeting the needs of most BlackBerry users, ending the main objection at many companies for allowing iOS devices in.
|
| |
| 08/31/2010 06:00 AM |
| Escape from Windows DLL security hell |
| The Windows DLL library loading vulnerability is gaining hacker attention. Although no one can accurately predict the next "big one," malicious cyber fiends are likely to use this exploit method against innocent computer users.
|
| |
| 08/30/2010 06:40 PM |
| Cisco patches bug that caused partial Internet blackout |
| Cisco has fixed a bug in its IOS (Internetwork Operating System) router software that contributed to a brief Internet blackout last week, thought to have affected about 1 percent of the Internet.
|
| |
| 08/27/2010 07:07 PM |
| No good can come of a malware convention |
| Anyone who was ever concerned by the concept of hacking conventions such as Black Hat -- which has evolved into a reputable venue for security defenders -- should
|
| |
| 08/27/2010 11:10 AM |
| How to thwart the new DLL hijacks |
| Earlier this week I wrote in Tech Watch about a whole new class of Windows zero-day vulnerabilities, warning that a wave of attacks would arrive soon.
|
| |
| 08/27/2010 07:51 AM |
| Updated 'blue screen of death' rootkit now targeting 64-bit Windows |
| A new version of the malware that crippled Windows PCs last February sidesteps safeguards designed to block rootkits from hijacking machines running 64-bit editions of Windows, researchers said Thursday. "A new era has officially dawned; the era of x64 rootkits," said Prevx researcher Marco Giuliani in a post to the company's blog yesterday.
|
| |
| 08/27/2010 07:14 AM |
| The Pentagon plays security catch-up |
| Individual hackers can hurt national computer systems. Attackers have the advantage over defenders. Attributing attacks to specific groups is difficult.
|
| |
| 08/26/2010 05:03 PM |
| Microsoft boosts access to secure development guidelines |
| Looking to broaden access to its security practices for software development, Microsoft plans to shift the licensing for its Security Development Lifecycle (SDL) documentation to the more accessible Creative Commons License, the company said on Thursday. SDL is Microsoft's blueprint for incorporating security into applications. It has been available under an exclusive Microsoft license.
|
| |
| 08/26/2010 11:58 AM |
| Sun, Microsoft, and Mozilla leave the most vulnerabilities unpatched |
| Sun is the king of unpatched software vulnerabilities followed closely by Microsoft and Mozilla, according to the mid-year security report by IBM's X-Force.
|
| |
| 08/26/2010 08:25 AM |
| Windows DLL exploits boom |
| Some of the world's most popular Windows programs are vulnerable to a major bug in how they load critical code libraries, according to sites tracking attack code. Among the Windows applications that can be exploited using a systemic bug that many have dubbed "DLL load hijacking," are the Firefox, Chrome, Safari and Opera browsers; Microsoft's Word 2007; Adobe's Photoshop; Skype; and the uTorrent BitTorrent client.
|
| |
| 08/26/2010 06:00 AM |
| Zero-day exploits spur uptick in Adobe updates |
| Gripe Line reader Scott recently sent out a challenge to find out what's going on with all those pesky Adobe Reader updates. "The frequency of these updates is getting quite ridiculous," he laments. "This is worse than Microsoft ever was before they started their monthly updates. Can someone please find out why they are sending out so many updates lately?"
|
| |
| 08/25/2010 07:53 PM |
| Google defends Android Market license server, despite reported hack |
| Acknowledging a reported hacking of its new Android Market licensing server, Google maintained this week that the licensing service represents a "significant step forward in terms of protection."
|
| |
| 08/25/2010 11:18 AM |
| Pac-Man for president: Hack highlights e-voting flaws |
| In a continuing effort to highlight the vulnerability of paperless touchscreen -- or direct recording electronic (DRE) -- voting systems, Alex Halderman of the University of Michigan and Ariel Feldman of Princeton University reprogrammed one such system, the Sequoia AVC Edge, to pl
|
| |
|
|
 |
|
Nsauditor
Network Security Auditor Nsauditor
Network Security Auditor is a network
security scanner that allows
to
audit and monitor network computers for
possible vulnerabilities,
checks your network for all potential methods that a
hacker might use to attack it. Nsauditor is a complete
networking utilities package that includes a wide range
of tools for network auditing, scanning, monitoring
and more. You can discover network services and check
them for vulnerabilities, list all TCP and UDP endpoints
with their associated process, discover NetBios names,
audit MS SQL servers, scan for common Adware traces
and more. The program also includes real-time network
packet filtering and analyzing, web proxy scanning,
password auditing, IP address lookup
and more than 45 network
tools for scanning, sniffing, enumerating and gaining
access to machines, DNS and
WHOIS lookups, e-mail validation, HTTP traffic generator
and intrusion detection based on security events log.
Reports can be generated in HTML and XML format. Overall,
this is a very complete package for a surprisingly low
price.
Download
Here |
| |
|
 |
SpotAuditor
- Internet Explorer, Outlook and MSN messenger password
recovery
SpotAuditorreveals
passwords saved in Internet Explorer, recovers ICQ,
Trillian, Miranda IM, VNC, Far ftp client, SecureFX
ftp client, FileZilla, WebDrive Ftp, FTP Voyager, AutoFTP,
32bit FTP, FTP Navigator, Dial-up, RAS, VPN, Outlook,
MSN messenger, Windows Live Messenger 8 and Windows
Messenger passwords, IE Auto Complete Fields and recovers
passwords stored behind the asterisks in password text-boxes.
It is a program for viewing and cleaning the secret
data stored by Internet Explorer. SpotAuditor allows
deletion of unwanted entries from the system protected
storage and explores Outlook Accounts, Visited URLs,
Installed Programs and Start Run Programs on a local
machine or remote computers. SpotAuditor allows to clear
Internet Explorer history, delete cookies and temporary
internet files. You can recover and restore any lost
or forgotten password ever entered in Internet Explorer.SpotAuditor
instantly cracks and decrypts passwords stored on your
computer!
Download Here |
| |
|
 |
|
 |
NetShareWatcher
- Monitors Network Shares and Identify Shares which
are
Violating Data Access Policy
It allows network administrators
to monitor
network shares and identify
shares which are violating data
access policy in their organization.
NetShareWatcher is very handy. You
can configure it once and forget about network sharing
problems. You need just select restricted groups or
users and every time when NetShareWatcher
will find network share with access list containing
that restricted groups and will perform an configured
action. It allows you to easily monitor
network shared folders and
permissions. NetShareWatcher alerts anytime an user
sets a share ACL to "Everyone" or some other
global group that violates your data access policy as
well as disable this shared folders automatically if
you have selected appropriate feature in the settings.
NetShareWatcher has user friendly interface and is easy
to use. Being configured once, it will regularly notify
you on network sharing detection with restricted permissions
assigned.
Download
Here |
| |
|
 |
BlueAuditor - detecting and monitoring Bluetooth devices in a wireless network
BlueAuditor
is a wireless
personal area network auditor
and easy-to-use program for detecting
and monitoring Bluetooth devices in
a wireless network. It can discover and track any Bluetooth
device within a distance between 1 and 100 meters and
display key information about each device being detected
as well as the services device provided. With the growing
popularity of the Bluetooth
technology,BlueAuditor
will enable network administrators to effectively
audit their wireless networks against security vulnerabilities
associated with the use of Bluetooth devices. BlueAuditor
enables the user to save the data of the detected Bluetooth
devices in an .xml file and supports the most Microsoft
Bluetooth drivers available on the market. All the mentioned
features are provided with a user friendly graphical
interface
Download
Here |
| |
|
 |
RemShutdown - allows Shutdown or Restart Network Computers Remotely
RemShutdown
allows shutdown
or restart network computers remotely. You
can specify a delay during which a message you specify
can be displayed and applications running on the remote
computer at the time of shutdown can be allowed to close.
In addition, RemShutdown offers the user the option
to cancel the shutdown. The tool is designed with a
user-friendly interface and is easy to use.
Download Here |
| |
Product Key
Explorer |
 |
Product
Key Explorer displays product key for Windows, MS Office,
SQL Server and more than 500 popular software products
installed on your local or remote network computers.
In order to install or reinstall Microsoft Office, Windows,
or other commercial software, you must have access to
a product serial key (CD Key) for that product. Product
Key Explorer retrieves serial keys from network computers
and allows to protect your company from having pirated
software on your network. With this software you will
be able to track the number of software licenses installed
in your business, find and recover a lost or forgotten
product keys, save and keep an up-to-date backup of
all your software license keys in a central location.
Excellent tool for network administrators, or businesses
undergoing a software license compliancy. You can save
product keys as Tab Delimited Txt File (.txt), Excel
Workbook (.xls), CSV Comma Delimited (.csv), Access
Database (.mdb), Web Page (.html) or XML Data (.xml)
file, Print or Copy to Clipboard.
Download Here |
| |
|
 |
NetworkSleuth - Network
File Search Utility
NetworkSleuth
is a fast file search tool, that allows search for files
located on local or network computers and supports searches
for documents, image, MP3, music and video files, allows
to search for files in Local Area Network(LAN) based
on various criteria.
Download Here |
|
| |
|
|
| |
|
|
