Techworld.com Security

How to avoid joining a botnet

Fri, 20 Nov 2009 10:59:00 GMT

3 easy steps to web security

Banging the drum for security awareness never gets old. As much as CSOs try to get folks to bone up on safe practices (both online and in the office), there are always going to be some who need reminding.

Microsoft denies building security 'backdoor' in Windows 7

Fri, 20 Nov 2009 05:48:00 GMT

Privacy organisations shouldn't read too much into NSA involvement it says

Microsoft has denied building a backdoor into Windows 7, responding to concerns from privacy organisations after it was revealed that the National Security Agency (NSA) had worked on the operating system.

Pentagon expands exclusive deal with McAfee

Thu, 19 Nov 2009 10:57:00 GMT

Department of Defense uses McAfee products

The US Defense Department is expanding its exclusive arrangement with McAfee, whose security software is at the heart of the military's cybersecurity efforts.

Police arrest pair over global banking web scam

Thu, 19 Nov 2009 09:15:00 GMT

Man and woman arrested in Manchester for using notorious Zeus Trojan

British police said they've made the first arrests in Europe of two people for using Zeus, a sophisticated malicious software program that can scoop up any sensitive information on a PC.

Security star Fortinet sets price for IPO

Wed, 18 Nov 2009 12:02:00 GMT

Investors still have taste for tech.

Security star-in-the-making Fortinet has announced more details of its initial public offering (IPO), which was able to set a price of $12.50 (£7.40) per share.

Firefox web browser locks down rogue addons

Wed, 18 Nov 2009 10:41:00 GMT

Mozilla adds security feature to 3.6 release

Mozilla will add a new lockdown feature to Firefox 3.6 that will prevent developers from sneaking addons into the program, the company said.

T-Mobile employees accused of stealing customer data

Tue, 17 Nov 2009 20:17:00 GMT

'Many thousands' of accounts compromised said information commissioner

Workers at T-Mobile UK have been selling customer data to brokers who work for the competition, T-Mobile and the Information Commissioner's Office said.

IBM researcher hacks Twitter using SSL flaw

Tue, 17 Nov 2009 09:27:00 GMT

Zero day flaw in SSL/TLS protocol puts websites at risk

An IBM researcher has shown how to hack Twitter using a previously disclosed bug in SSL.

Hackers skip Windows 7 activation controls

Tue, 17 Nov 2009 06:50:00 GMT

Microsoft stepping up efforts to prevent OS being cracked.

Hackers are sidestepping Windows 7's activation process, winning their battle with Microsoft, which has blocked such tactics in the past. However, the company said that it knew about the hacks and was looking into ways to block them. "We're aware of this workaround and are already working to address it," said a company spokeswoman.

New security products underperform, says ICSA

Mon, 16 Nov 2009 17:16:00 GMT

Intrusion prevention a particular 'dead' spot.

Many security products simply do not work as advertised, or at least need a lot of tinkering to make them work, a report from the respected ICSA Lab has found.

Microsoft confirms first Windows 7 zero-day bug

Mon, 16 Nov 2009 14:22:00 GMT

Urges users to block ports, but workaround cripples browsers

Microsoft confirmed that an unpatched vulnerability exists in Windows 7, but downplayed the problem, saying most users would be protected from attack by blocking two ports at the firewall.

Cyber-Ark launches Windows, Unix management tool

Mon, 16 Nov 2009 12:00:00 GMT

Unified management of privileged accounts

Cyber-Ark Software has released an enhanced version of its Privileged Identity Management Suite, with new features designed to give IT officials a single tool for managing privileged accounts across both Windows and Unix environments.

Yahoo jobs site in SQL attack worry

Mon, 16 Nov 2009 11:37:00 GMT

Unusually, closes hole on same day.

Yahoo raced last Thursday to close a potentially serious vulnerability that could have exposed customer data from its online jobs website, a security company has revealed.

DNS hole leads to more DDoS attacks

Mon, 16 Nov 2009 06:14:00 GMT

Badly configured cable modems cause headaches for security experts.

Security experts say that misconfigured DSL and cable modems are worsening a well-known DNS problem making it easier for hackers to launch distributed denial-of-service (DDoS) attacks against their victims.

How to protect yourself from Windows 7 hacks

Sun, 15 Nov 2009 12:40:00 GMT

Get the best security for Microsoft's new OS

It was a notable accomplishment when Windows 7 was not impacted in any way by the vulnerabilities addressed in the six Security Bulletins released by Microsoft for the November Patch Tuesday. It would be even more impressive if Windows 7 proved invulnerable to the zero day exploit that hit the next day.

Apple Safari gets security fix in update

Fri, 13 Nov 2009 11:10:00 GMT

Windows users get patch that Leopard users received more than two months ago

Apple has issued its second security update in three days, patching seven vulnerabilities in Safari, including one in the Windows version that the company fixed two months ago for most Mac users.

Fortinet detects increase in malware levels

Fri, 13 Nov 2009 10:58:00 GMT

Four-fold increase since September

Fortinet, a network security provider and unified threat management (UTM) solutions specialist has observed the highest level of total malware detected in more than a year.

Flash flaw affects nearly every web user say researchers

Fri, 13 Nov 2009 06:11:00 GMT

Adobe vulnerability a major risk

Hackers can exploit a flaw in Adobe's Flash to compromise nearly every interactive website, according to security researchers.

Most enterprise websites contain vulnerabilities

Fri, 13 Nov 2009 05:49:00 GMT

Holes ripe to be exploited by criminals says researcher

Most websites have at least one major security issue that could be exploited by cyber-criminals, according to a new survey.

Microsoft probing Windows 7 zero day bug

Thu, 12 Nov 2009 11:36:00 GMT

Unpatched SMB bug locks up Windows 7 and Server 2008 R2 systems

A day after Microsoft plugged more than a dozen holes in its software, a security researcher unveiled a new unpatched bug in Windows 7 and Server 2008 R2 that, when exploited, locks up the system, requiring a total shutdown to regain control.

Hackers to exploit Windows bug say researchers

Thu, 12 Nov 2009 06:24:00 GMT

Attacks expected sooner rather than later

Hackers are going to exploit the Window kernel bug, patched by Microsoft this week, sooner rather than later said security researchers.

Mega-D spam botnet targeted by security firm

Wed, 11 Nov 2009 10:40:00 GMT

FireEye contacted ISPs and registrars to help shut down botnet

A computer security company known for battling botnets moved last week to try to shut down a persistent spam player.

Security team hacks hundreds of Facebook groups

Wed, 11 Nov 2009 10:34:00 GMT

'Control Your Info' caution users to be wary

An anonymous group calling itself "Control Your Info" has taken over hundreds of Facebook groups to highlight what it claims is a major security weakness on the social networking site.

Microsoft fixes Windows kernel hole in Patch Tuesday release

Wed, 11 Nov 2009 07:17:00 GMT

Calm after last month's bumper haul but 15 vulnerabilities fixed.

Microsoft has patched 15 vulnerabilities in Windows, Windows Server, Excel and Word, including one that will probably be exploited quickly by hackers. None affect Windows 7, the company's newest operating system.

Panda launches free 'cloud' antivirus scanner

Tue, 10 Nov 2009 15:01:00 GMT

While SMBs get managed service.

After seven months in beta, Panda Security has released the first version of its cloud-based antivirus product, which will be free to consumers with a paid-for managed service for SMBs.