This is a new site to me, but it’s been around for four years. Boy, am I late. It’s crazy to see WAPs in your of businesses in your area. It makes one want warn them to make sure their WAPs are locked down.
Archive for the 'Security' Category
Hey why just blame Microsoft for security problems, when you have Intel being exposed for its own short comings. On the very day Wall Street Journal reported that Apple was considering using Intel chips, here comes a warning, almost like god was at work. Colin Pervcial, a researcher and BSD guru of sorts, in his case study has proved that “Hyper-Threading, as currently implemented on Intel Pentium Extreme Edition, Pentium 4, Mobile Pentium 4, and Xeon processors, suffers from a serious security flaw. This flaw permits local information disclosure, including allowing an unprivileged user to steal an RSA private key being used on the same machine. Administrators of multi-user systems are strongly advised to take action to disable Hyper-Threading immediately; single-user systems (i.e., desktop computers) are not affected.â€
[via]
The virus, dubbed W64.Shruggle by Symantec, seems mainly to be an experiment to test the concept of a 64-bit infecter and is not actively spread, said Alfred Huger, senior director of security at Symantec.
“The most interesting thing about this is that virus writers are already developing for the 64-bit platform,” he said.
[via]
If you ask 100 Windows users what they think of Microsoft when it comes to security, you are likely to get a few negative responses. Microsoft has replaced the old internet connection firewall with the new Windows Firewall which is turned on by default. It should be noted that Windows Firewall is not as secure as MS would want you to believe since it does half the job a commercial firewall would do; which is to block both incoming and outgoing traffic. Windows Firewall only blocks or patrols incoming traffic and it can be easily turned off by another application, possibly a worm. We will look at how well Windows Firewall does at blocking incoming traffic by pinning it against several tests which scan for open ports and possible exploits. The tests, provided by PCFlank.com, include a Stealth Test, an Advanced Port Scanner test and an Exploit Test. The tests were run on a system running Windows XP with Service Pack 2.
[via]
On June 24th, a visitor to the SANS Internet Storm Center reported that his company was “…in the middle of a very disturbing … issue regarding the adware/spyware/IE exploit genre…” He requested help analyzing an “encrypted or compressed” file that had been downloaded to a machine at their site. Tom Liston, one of our volunteer handlers, spent the weekend analyzing this issue.
The article mentions a BHO (browser helper object) scanning tool. Spybot Search & Destroy also has a BHO tool built in.
[via]
EPOC.Cabir is a proof-of-concept worm that replicates on Nokia Series 60 phones.
It repeatedly sends itself to the first Bluetooth-enabled device that it can find, regardless of the type of device (i.e. even a Bluetooth-enabled printer will be attacked if it is within range).
[via]
Four-fifths of spam now emanates from computers contaminated with Trojan horse infections, according to a study by network management firm Sandvine out this week. Trojans and worms with backdoor components such as Migmaf and SoBig have turned infected Windows PCs into drones in vast networks of compromised zombie PCs.
[via]
