SecurityFocus News

FTC persuades court to shutter rogue ISP Obama launches cybersecurity initiative Browsers bashed first in hacking contest

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 Experts: U.S. needs to defend its "cyber turf" Researcher aims to tweet Month of Bugs Mozilla adds more privacy in Firefox 3.5

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 Juniper pulls talk on ATM vulnerabilities Jackson searches resemble attack to Google iPhone crashing bug could lead to serious exploit

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 OpenSSH chink bares encrypted data packets Kaspersky exposes sensitive database, says hacker RFID passports cloned wholesale

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 Enterprise Intrusion Analysis, Part One Responding to a Brute Force SSH Attack Data Recovery on Linux and <i>ext3</i>

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 WiMax: Just Another Security Challenge? Hacker-Tool Law Still Does Little A Botnet by Any Other Name

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909 Projecting Borders into Cyberspace Celebrity Viruses Improve Security News, Infocus, Columns, Vulnerabilities, Bugtraq ...

Nmap Hackers (nmap-hackers) Mailing List

Posted by Fyodor on Jun 26

Hi Folks. I'm pleased to announce some exciting Nmap news:

[=================Nmap 4.90RC1==================]

It has been nearly 10 months (and 11 dev releases) since 4.76, the
last stable Nmap release. And we've made many dramatic changes, so it
is time for a new stable version! I've...

Posted by Fyodor on Mar 31

Hi Folks! In case you missed all the news reports yesterday, a couple
great researchers from the Honeynet Project (Tillmann Werner and Felix
Leder) and Dan Kaminsky came up with a way to remotely detect the
Conficker worm which has infected millions of machines worldwide.
Some say 15,000,000...

Posted by Fyodor on Dec 9

Nmap Hackers:

After promising you a book on Nmap for years, I'm delighted to finally
announce the release of Nmap Network Scanning! It contains everything
I've learned about network scanning from more than a decade of Nmap
development, plus some bad jokes and (over Time Warner's written
...

Posted by Fyodor on Sep 23

Hi everyone. I'm happy to report that the Nmap 4.75 release (with
port frequencies, Zenmap topology, etc.) was a big success. But such
large exposure inevitably leads to bug discovery, so we've
released version 4.76 with about a dozen small fixes and stability
improvements. If 4.75 is...

Posted by Fyodor on Sep 8

Hi Everyone. I'm delighted to report the release of Nmap 4.75, which
has almost 100 significant improvements since 4.68. Some which I'm
most excited about are:

o While Nmap stands for "Network Mapper", it hasn't been able to
  actually draw you a map of the...

Posted by Fyodor on Jul 31

Hi All. I'm happy to report that there have been several stable Nmap
releases since I mailed you about Nmap 4.60 in March. The latest
version is 4.68, and I think you'll like it (unless you still use
Win2K, which can be problematic due to IPv6 issues that we hope to
resolve in the next...

Posted by Fyodor on Jul 31

Hi All. I feel derelict for failing to post any Nmap news to this
nmap-hackers list in the last four months, but you can rest assured
that we've been busy on the project! For example, there have been
1,181 posts on the nmap-dev list (not all from me) since my March
nmap-hackers...

Posted by Fyodor on Mar 24

It may have taken me four months to send this year's first
nmap-hackers mail, but the second only took me four hours. I want to
let you all know that Nmap has been accepted for the fourth year
running to participate in the Google Summer of Code program. This
generous and innovative program...

Computerworld Security News

Samples of documents used in carefully prepared targeted attacks make clear that while a suspicious eye is a great security tool, some especially dangerous attacks might slide right by you. Cloud-based services are being rolled out without enough attention being paid to securing these services and the information they handle. That was the finding of a recent study commissioned by RSA Security. Apple may be working to fix an iPhone vulnerability that could possibly allow an attacker to remotely install and run unsigned software code with root access to the phone. One of the reasons security is fun and interesting is that it requires a constant upgrade of your skills and knowledge. A federal court has ordered members of an alleged international spam ring to give up $3.7 million that they made while sending out illegal e-mail messages pitching bogus weight-loss products and human growth hormone pills. Mozilla will patch the just-released Firefox 3.5 later this month to stamp out several bugs that went unfixed in the final version of the browser, the company said. View more Security news and analysis from Computerworld.com

Yahoo! News: Security News

InfoWorld - You win some; you lose some. This week China decided its Web censorship filtering software was not quite ready for prime time, while U.S. courts sentenced phone hackers and file swappers to some crime time. PC Magazine - The public beta-test editions of Norton Internet Security 2010 and Norton AntiVirus 2010 will focus on reputation-based malware detection—a technology that can detect zero-day malware that's never been seen before. PC World - Conficker may not dominate the headlines any longer, but it's still going strong, according to Trend Micro's Malware Blog and stats from the Conficker Working Group. PC World - A U.S. district court has ordered members of an alleged international spam ring to give up US$3.7 million that they made while sending out illegal e-mail messages pitching bogus weight-loss products and human growth hormone pills. NewsFactor - With recent celebrity deaths, spammers are shifting strategies in hopes of cashing in on the misfortunes of others. Although several celebrities have passed away in the last few weeks, pop star Michael Jackson's death is driving the greatest spam volume.

AFP - Computer security firm Sophos issued a warning about an Internet virus transmitted from a mass email claiming to contain secret songs and photos of Michael Jackson.

PC World - A Chinese company that has created a massive database of malware found on Chinese Web sites opened up the information to other security organizations on Thursday. PC World - Spammers are pumping out an increasing number of garbage messages as they regain their capacity to send spam through hacked PCs, according to the latest statistics released by Google on Wednesday. PC World - The latest changes to Twitter are simple and unnoticeable at first, but they can make a world of difference for some users. PC World - A blind Boston-area teenager was sentenced to more than 11 years in prison Friday for hacking into the telephone network and harassing the Verizon investigator who was building a case against him. AP - Minutes after any big celebrity dies, Internet swindlers get to work. They pump out specially created spam e-mails and throw up malicious Web sites to infect victims' computers, hoping to capitalize on the sudden high demand for information. PC World - A computer security expert is calling for action against two Chinese companies that he and other analysts allege are facilitating spam and cybercrime on the Internet.

AFP - Less than two weeks before President Barack Obama's visit to Moscow, the United States and Russia cannot agree how to counter the growing threat of cyberwar attacks that could wreak havoc on computer systems and the Internet, according to The New York Times.

PC World - Less than 24 hours after Michael Jackson's death, fraudsters are exploiting public interest with their attempts to spread spam and malware. Security researchers say they've observed hundreds of cases of malicious messages masquerading as information about Jackson's death. Some of them, they say, popped up within minutes of the news. PC World - If you happen to see a too-good-to-be-true offer to watch the latest Harry Potter movie online for free, watch out. PC Magazine - The Federal Trade Commission has reached a $1.9 million settlement with two defendants who allegedly operated a deceptive advertising scheme to dupe consumers into buying computer security products. PC World - CIOs think of Symantec as a company that buys its way into new markets. Over the past decade the Cupertino, California, vendor has snatched up about 30 companies as it's evolved from an antivirus and tools seller to an aspiring enterprise infrastructure vendor. PC World - People often turn to me for advice regarding what anti-virus package to get. Usually I recommend McAfee or AVG, but Security Essentials will be my go-to anti-malware package once it’s released from beta. For small-business and home users, the price, performance, and ease-of-use of MSE can’t be beat. PC World - Guy Kawasaki -- a Silicon Valley venture capitalist who was partially responsible for marketing the Macintosh in 1984 -- has almost 140,000 Twitter followers.

AP - Britain is hiring former computer hackers to join a new security unit aimed at protecting cyberspace from foreign spies, thieves and terrorists, the country's terrorism minister said.

SecurityFocus Vulnerabilities

phpMyAdmin SQL bookmark HTML Injection Vulnerability Pidgin OSCAR Protocol Web Message Denial of Service Vulnerability Drupal Cross-Site Scripting, Code Injection and Information Disclosure Vulnerabilities LibTIFF 'tif_lzw.c' Remote Buffer Underflow Vulnerability Re: Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome [SECURITY] [DSA 1825-1] New nagios2/nagios3 packages fix arbitrary code execution [oCERT-2009-007] FCKeditor input sanitization errors One Click Ownage [White Paper and Scripts] News, Infocus, Columns, Vulnerabilities, Bugtraq ...