Friday, September 5, 2008

Friday News Feed 9-5-08

Cisco Security Advisory: Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASA



Cisco Security Response: Cisco Secure ACS Denial Of Service VulnerabilityA specially crafted Remote Authentication Dial In User Service (RADIUS) Extensible Authentication Protocol (EAP) Message Attribute packet sent to the Cisco Secure Access Control Server (ACS) can crash the CSRadius and CSAuth processes of Cisco Secure ACS.The full text is available here



Cisco Security Advisory: Remote Access VPN and SIP Vulnerabilities in Cisco PIX and Cisco ASAMultiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances that may result in a reload of the device or disclosure of confidential information.The full details are available here






Health Care Provider Plugs Potential Data Leak Points - 9/5/2008 1:55:00 PM Meridian Health Hospitals's data leak prevention system helped its users protect personal information







What You Really Need to Know About Data Leak Prevention - 9/5/2008 9:59:00 AM Forrester analyst Thomas Raschke cuts through the hype to answer some of the FAQs about emerging DLP technology







Study: Weak Passwords Still Main Security Defense
New research finds most organizations still use passwords to protect important data. But the study also says they provide little protection against a breach.
Read more






Ouch! Security Pros' Worst Mistakes
We've all done regrettable things on the job, but does any valuable wisdom come of it? Four security pros candidly explain their biggest blunders and what they learned in the process.
Read more






Chicago death toll double that of Iraq
cbs2chicago.com — This summer more people were shot in Chicago than in Iraq. So... why isn't anyone calling for a withdrawal from Illinois?More…







Microsoft Security Blog:
September 2008 Advanced Notification
Posted Thursday, September 04, 2008 9:55 AM by MSRCTEAM
Hello, Bill here.
I wanted to let you know that we just posted our Advance Notification for next week’s bulletin release which will occur on Tuesday, September 9, 2008 around 10 a.m. Pacific Standard Time.
It is important to remember that while the information posted below is intended to help with your planning, because it is preliminary information, it is subject to change.
As part of our regularly scheduled bulletin release, we’re currently planning to release:

· Four Microsoft Security Bulletins rated as Critical. These updates may require a restart and will be detectable using the Microsoft Baseline Security Analyzer.

As we do each month, the Microsoft Windows Malicious Software Removal Tool will be updated.

We are also planning to release high-priority, non-security updates on Windows Update and Windows Server Update Services (WSUS) as well as high-priority, non-security updates on Microsoft Update and Windows Server Update Services (WSUS). For additional information, please see the Other Information section of the Advanced Notification.







Schlage Introduces Web-controlled Door Locks A new line of deadbolt locks can be operated remotely using a Web browser or mobile phone.







Phishing Attacks Get Personal Savvy users who talk back to phishers instead of falling for their traps are getting attacked again.






Google Chrome in Beta, Vulnerabilities Discovered






http://blogs.washingtonpost.com/securityfix/
Posted at 10:44 AM ET, 09/ 5/2008
Scammer-Heavy U.S. ISP Grows More Isolated
Last week, Security Fix published an analysis of Atrivo, a California based Internet service provider, also known as Intercage, that has proven to be a virtual magnet for cyber-criminal operations. Since that time, Atrivo's biggest network backbone provider decided it could no longer support the company, and stopped offering it direct connectivity.







Security of Google's browser gets mixed marks Robert Lemos, 2008-09-04
The search giant uses process isolation, least privilege rules, and sandboxing as the security foundation for its Chrome browser, but security experts say more is needed.






NebuAd, Phorm delay ad trialsNews Brief, 2008-09-05
The two companies, whose controversial ad technology uses data on consumers gathered from ISPs, delay their plans following privacy outcry.







The Sims goes to the boardroom
Video games have come to the classroom—even to the venerable Harvard Business School. Instead of case studies, students are entering business simulations—with mixed results for the real world.
September 05, 2008 - 11:40AM CT - by Laura Vanderkam, Portfolio.com







Microsoft's Apple "Get a Mac" Killer Is Live







The darksides domains
Inspired by Igor’s post (and whilst Terry is dancing in doorways) I’ve taken some time out from my current project and beaten a path through the tangled web of service providers, registrars, resellers and registrants of the domain name system supporting the darker side of the web.

This investigation originally started when Garth from Knujon pointed out that Directi have some shill registrars on their books (Whilst I was enjoying the Kaiser Chiefs @ Rock en Seine in Paris no less). I then read Brian Krebs post about Atrivo being one of the best known dangerous networks around… He finished with a teaser note about ESTDomains. So guessing whats coming next I’m going to jump the inter-networking gymnastics that binds EST with Atrivo/Intercage/(cernelinhoster)/Etc, privacy services and others and start at the far end of the story and expose a secret about a not-so-little Indian company called Directi and shine a light on the almost invisible but vital service that powers the domain registration core of the largest group(s) of bad-actors on the web today.









Phishing drops as Rock Phish invests in technology updgrade
Dan Kaplan September 05, 2008
A highly organized gang of phishers took some time off to rebuild its botnet infrastructure -- but experts expect the scams to return with a vengeance.







Unauthorized web servers connected to IRS network
Sue Marquette Poremba September 05, 2008
The Internal Revenue Service found 1,811 unauthorized web servers connected to its network.







Experts call for united global action against cyber attacks AFP - Thu Sep 4, 12:39 PM ET
TALLINN (AFP) - The world has to unite against the growing menace of cyber terrorism, IT experts said Thursday, evoking a recent "cyber war" against Georgia as the latest example of the threat.







Researchers build malicious Facebook application
A team of researchers have built a malicious Facebook program an experiment to demonstrate the...







AT&T security guru talks DoS attacks, tomorrow’s hackers
AT&T CSO Edward Amoroso lists his biggest security challenges: protecting sensitive information and...

No comments: