HNS MAIN FEED
Thursday, 22:37 EDT
- Top ten e-threats for June 2009
- New ENISA Quarterly Review available for download
- 14th European Symposium on Research in Computer Security
- New cryptanalytic attack on AES
- Ixquick - the search engine that protects your privacy
- Month of Twitter Bugs: bit.ly multple vulnerabilities
- Michael Jackson themed mass-mailing worm
- SecureAuth 5.0.6 strong authentication for Cisco VPN and cloud applications
- The state of today’s firewall management challenges
- Webroot upgrades its Web and Email Security SaaS solutions
- Kaspersky Lab vs Zango: Kaspersky wins
- A closer look at Little Snitch 2.1.4
____________________________________________________
Download GFI security software
____________________________________________________
Get award winning network security with GFI LANguard. Freeware
5-IP version now available. Download today!
http://www.net-security.org/gfiscanner
Stop all spam at email server level with GFI MailEssetials.
Download free trial now!
http://www.net-security.org/gfimail
Easily backup & restore data for FREE with GFI Backup. Download
freeware today.
http://www.net-security.org/gfibackup
____________________________________________________
HNS Newsletter
Issue 471 - 25.05.2009
Web - http://www.net-security.org
Twitter - https://twitter.com/helpnetsecurity
RSS - http://feeds2.feedburner.com/HelpNetSecurity
Table of contents:
1) Security World
2) Articles
3) Software
4) Upcoming events
5) Malware center
6) Advisories
[ Security World ]
All security world articles are located at:
http://www.net-security.org/secworld_main.php
Send your press releases to press@net-security.org
----------------------------------------------------------------
VIDEO: THE DEFCON EXPERIENCE
http://www.net-security.org/secworld.php?id=7538
ANTI-PIRACY SOLUTION MAPS ROUTE TO UNLICENSED SOFTWARE
http://www.net-security.org/secworld.php?id=7537
AMAZON NOW OFFERS PHYSICAL DATA TRANSFER
http://www.net-security.org/secworld.php?id=7536
STATE OF WEB 2.0 USE, POLICIES AND SECURITY WORLDWIDE
http://www.net-security.org/secworld.php?id=7535
BITDEFENDER UNVEILS FREE EDITIONS OF SEVERAL TOOLS
http://www.net-security.org/secworld.php?id=7534
ADOBE READER AND ACROBAT SECURITY INITIATIVE
http://www.net-security.org/secworld.php?id=7533
WEB FILM SERIES ON CYBERCRIME: "H*COMMERCE: THE BUSINESS OF HACKING
YOU"
http://www.net-security.org/secworld.php?id=7532
CA AUTOMATES ESSENTIAL MAINFRAME SECURITY OPERATION
http://www.net-security.org/secworld.php?id=7531
ENTERPRISE CLASS LOG MANAGEMENT AND FORENSICS FROM TENABLE
http://www.net-security.org/secworld.php?id=7530
CONSENSUS METRICS FOR INFORMATION SECURITY
http://www.net-security.org/secworld.php?id=7529
F-SECURE LAUNCHES MAC PROTECTION TECHNOLOGY PREVIEW PROGRAM
http://www.net-security.org/secworld.php?id=7528
ACUNETIX WEB VULNERABILITY SCANNER 6.5 NOW AVAILABLE
http://www.net-security.org/secworld.php?id=7527
CRITICAL MAC OS X JAVA VULNERABILITY
http://www.net-security.org/secworld.php?id=7526
MICROSOFT ACKNOWLEDGES IIS VULNERABILITY
http://www.net-security.org/secworld.php?id=7525
CYBERSECURITY GROUPS LAUNCH "CHAIN OF TRUST" INITIATIVE TO COMBAT
MALWARE
http://www.net-security.org/secworld.php?id=7524
LUMETA ADOPTS OPEN STANDARD TO PUBLISH REAL-TIME ALERTS
http://www.net-security.org/secworld.php?id=7522
ENTERPRISE CLASS, TIERED STORAGE MANAGEMENT FOR MAC OS X
http://www.net-security.org/secworld.php?id=7521
FIREFOX 3.0.10 FIXES SECURITY ISSUE
http://www.net-security.org/secworld.php?id=7523
SCREENSHOTS: KLINGON ANTI-VIRUS FROM SOPHOS
http://www.net-security.org/secworld.php?id=7520
LITTLE SNITCH 2.1.3 IS NOW AVAILABLE
http://www.net-security.org/secworld.php?id=7519
SSH INTRODUCES SOLUTION FOR REAL-TIME INSPECTION AND AUDIT OF
ENCRYPTED TRAFFIC
http://www.net-security.org/secworld.php?id=7518
RMI UNLEASHES A HIGH PERFORMING MULTI-CORE PROCESSOR FAMILY
http://www.net-security.org/secworld.php?id=7517
ARBOR NETWORKS UPDATES NETWORK-WIDE INFRASTRUCTURE SECURITY AND
TRAFFIC-MONITORING PLATFORM
http://www.net-security.org/secworld.php?id=7516
KNOWING IS HALF THE BATTLE TO IMPROVE SCHOOL SAFETY
http://www.net-security.org/secworld.php?id=7515
SAFELY DELETE ANY APPLICATION ON YOUR MAC WITH APPDELETE
http://www.net-security.org/secworld.php?id=7514
WI-FI KIT FOR DISASTER RESPONSE AND TEMPORARY EVENTS
http://www.net-security.org/secworld.php?id=7513
PGP LAUNCHES ENDPOINT APPLICATION CONTROL
http://www.net-security.org/secworld.php?id=7512
NEW IOMEGA EGO PORTABLE HARD DRIVES WITH SECURITY SOFTWARE
http://www.net-security.org/secworld.php?id=7511
RED HAT ENTERPRISE LINUX 4.8 IS OUT
http://www.net-security.org/secworld.php?id=7510
CISCO OUTLINES STRATEGY FOR HIGHLY SECURE SMART GRID INFRASTRUCTURE
http://www.net-security.org/secworld.php?id=7509
FORD DEBUNKS £10,000 FUSION HYBRID EMAIL HOAX
http://www.net-security.org/secworld.php?id=7508
MICROSOFT RELEASES SURFACE SP1
http://www.net-security.org/secworld.php?id=7507
WEB PENETRATION TESTING LIVE CD
http://www.net-security.org/secworld.php?id=7506
----------------------------------------------------------------
[ Articles ]
All articles are located at:
http://www.net-security.org/articles_main.php
Articles can be contributed to articles@net-security.org
----------------------------------------------------------------
BUSINESS MODEL FOR INFORMATION SECURITY
Ron Hale, Director of Information Security Practices at ISACA
discusses Business Model for Information Security. The model takes a
business-oriented approach to managing information security and
utilizes systems thinking to clarify complex relationships within the
enterprise, and thus to more effectively manage security.
http://www.net-security.org/article.php?id=1238
Q&A: SECURITY THREATS TO FINANCIAL ORGANIZATIONS
Ori Eisen is the founder and Chief Innovation Officer of 41st
Parameter. In this interview he discusses the security threats to
financial organizations and their customers, the problem of fraud as
well as an evolution of such problems.
http://www.net-security.org/article.php?id=1237
SSH SOLUTIONS WITH CEO GEORGE ADAMS
George Adams, the President and CEO of SSH Communications Security,
discusses their solutions for securing and managing data in enterprise
networks. This includes the new SSH Tectia Guardian product.
http://www.net-security.org/article.php?id=1236
A CLOSER LOOK AT AVIRA ANTIVIR PERSONAL FREE ANTIVIRUS 9
Avira AntiVir Personal Free Antivirus is a comprehensive, easy to use
antivirus program for home-users only.
http://www.net-security.org/article.php?id=1235
WAGING WAR ON CYBER THREATS
While no one typically dies from such actions, compromised
information networks can put an organization's very life in jeopardy.
What’s more, the threats are as varied and as numerous as any
terrorist operation. Swift action is required, and here are three ways
firms can take the lead of recent U.S. government actions.
http://www.net-security.org/article.php?id=1234
----------------------------------------------------------------
[ Software ]
Windows software is located at:
http://net-security.org/software_main.php?cat=1
Linux software is located at:
http://net-security.org/software_main.php?cat=2
Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3
Mac OS X software is located at:
http://net-security.org/software_main.php?cat=5
----------------------------------------------------------------
BESTCRYPT 8.06.1 (Windows)
BestCrypt data encryption systems bring military strength encryption
to the ordinary computer user without the complexities normally
associated with strong data encryption.
http://www.net-security.org/software.php?id=173
CRYPTOEXPERT 2008 PROFESSIONAL 7.9.3 (Windows)
CryptoExpert creates encrypted virtual disks and these disks are
visible as usual disks with drive letters.
http://www.net-security.org/software.php?id=305
DATA GUARDIAN 1.6.5 (Windows)
Data Guardian is a secure, Universal Binary, database application for
storing passwords, credit card numbers, adressses, notes, customer
databases, and more.
http://www.net-security.org/software.php?id=663
DATA GUARDIAN 1.6.5 (Mac OS X)
Data Guardian is a secure, Universal Binary, database application for
storing passwords, credit card numbers, adressses, notes, customer
databases, and more.
http://www.net-security.org/software.php?id=662
EAST-TEC ERASER 2009 9.4.1.100 (Windows)
East-Tec Eraser 2008 is designed to completely eliminate sensitive
data from your computer
http://www.net-security.org/software.php?id=715
FILE ENCRYPTION XP 1.5 Build 138 (Windows)
With File Encryption XP, you can encrypt files of any type, including
Microsoft Word, Excel and PowerPoint documents
http://www.net-security.org/software.php?id=728
LITTLE SNITCH 2.1.3 (Mac OS X)
Little Snitch alerts you on outgoing network connections.
http://www.net-security.org/software.php?id=626
NTOP 3.3.10 (Linux)
ntop is a network traffic probe that shows the network usage, similar
to what the popular top Unix command does.
http://www.net-security.org/software.php?id=36
PASSWORD MANAGER XP 2.3.465 (Windows)
Password Manager XP is a program that will help you systematize
secret information.
http://www.net-security.org/software.php?id=70
RISING PC DOCTOR 6.0.0.25 (Windows)
Rising PC Doctor application was designed to be a professional and
smart security tool for protection against malware.
http://www.net-security.org/software.php?id=743
TROJAN KILLER 2.0.2.5 (Windows)
Trojan Killer application is a malicious computer software (malware)
removal tool.
http://www.net-security.org/software.php?id=749
----------------------------------------------------------------
[ Upcoming events ]
All conferences are located at:
http://net-security.org/conferences.php
----------------------------------------------------------------
EUSecWest 2009
Organized by dragostech.com inc. - 27 May-28 May 2009
http://www.net-security.org/conference.php?id=311
6th Annual CISO Executive Summit & Roundtable 2009
Organized by MIS Training Institute - 10 June-12 June 2009
http://www.net-security.org/conference.php?id=301
2009 USENIX Annual Technical Conference (USENIX '09)
Organized by http://www.usenix.org/events/usenix09/ - 14 June-19 June
2009
http://www.net-security.org/conference.php?id=300
Sharkfest Wireshark Developer and User Conference
Organized by CACE Technologies - 15 June-18 June 2009
http://www.net-security.org/conference.php?id=313
Conference on Cyber Warfare
Organized by The Cooperative Cyber Defence Centre of Excellence - 17
June-19 June 2009
http://www.net-security.org/conference.php?id=303
4th Annual Tri Lateral Security Conference
Organized by SPIE, ASIS, HTCIA - 18 June-19 June 2009
http://www.net-security.org/conference.php?id=299
PrivacyCampDC 2009
Organized by PrivacyCampDC - 20 June-20 June 2009
http://www.net-security.org/conference.php?id=314
21st Annual FIRST Conference
Organized by FIRST - 28 June-3 July 2009
http://www.net-security.org/conference.php?id=284
Gartner Information Security Summit 2009
Organized by Gartner - 28 June-1 July 2009
http://www.net-security.org/conference.php?id=309
Mastering Computer Forensics
Organized by Macht Vantage - 22 July-23 July 2009
http://www.net-security.org/conference.php?id=312
The 9th Privacy Enhancing Technologies Symposium (PETS 2009)
Organized by PET - 5 August-7 August 2009
http://www.net-security.org/conference.php?id=275
18th USENIX Security Symposium (USENIX Security '09)
Organized by USENIX Association - 12 August-14 August 2009
http://www.net-security.org/conference.php?id=304
HAR 2009
Organized by HAR - 13 August-16 August 2009
http://www.net-security.org/conference.php?id=291
SANS WhatWorks in Virtualization Security Summit 2009
Organized by SANS - 17 August-18 August 2009
http://www.net-security.org/conference.php?id=287
Brucon 2009
Organized by Brucon - 18 September-19 September 2009
http://www.net-security.org/conference.php?id=296
----------------------------------------------------------------
[ Malware center ]
All virus news are located at:
http://www.net-security.org/viruses.php
----------------------------------------------------------------
Comments on 30,000 YouTube videos link to a malicious Web page
http://www.net-security.org/virus_news.php?id=1062
Anti-Malware Testing Standards Organization to analyze anti-malware
reviews
http://www.net-security.org/virus_news.php?id=1061
----------------------------------------------------------------
[ Advisories ]
All advisories are located at:
http://www.net-security.org/archive_advi.php
----------------------------------------------------------------
Debian Security Advisory - New cscope packages fix arbitrary code
execution (DSA-1806-1)
http://www.net-security.org/advisory.php?id=10199
Gentoo Linux Security Advisory - acpid: Denial of Service (GLSA
200905-06)
http://www.net-security.org/advisory.php?id=10198
Gentoo Linux Security Advisory - Cscope: User-assisted execution of
arbitrary code (GLSA 200905-02)
http://www.net-security.org/advisory.php?id=10197
Gentoo Linux Security Advisory - FreeType: Multiple vulnerabilities
(GLSA 200905-05)
http://www.net-security.org/advisory.php?id=10196
Gentoo Linux Security Advisory - GnuTLS: Multiple vulnerabilities
(GLSA 200905-04)
http://www.net-security.org/advisory.php?id=10195
Gentoo Linux Security Advisory - IPSec Tools: Denial of Service (GLSA
200905-03)
http://www.net-security.org/advisory.php?id=10194
Mandriva Linux Security Update Advisory - squirrelmail
(MDVSA-2009:122)
http://www.net-security.org/advisory.php?id=10193
Debian Security Advisory - New pidgin packages fix several
vulnerabilities (DSA-1805-1)
http://www.net-security.org/advisory.php?id=10192
Mandriva Linux Security Update Advisory - lcms (MDVSA-2009:121)
http://www.net-security.org/advisory.php?id=10191
Debian Security Advisory - New squirrelmail packages correct
incomplete fix (DSA-1802-2)
http://www.net-security.org/advisory.php?id=10190
Mandriva Linux Security Update Advisory - openssl (MDVSA-2009:120)
http://www.net-security.org/advisory.php?id=10189
Mandriva Linux Security Update Advisory - drakguard (MDVA-2009:079)
http://www.net-security.org/advisory.php?id=10188
SUSE Security Announcement - kernel (SUSE-SA:2009:028)
http://www.net-security.org/advisory.php?id=10187
SUSE Security Announcement - acroread (SUSE-SA:2009:027)
http://www.net-security.org/advisory.php?id=10186
Cisco Security Advisory - CiscoWorks TFTP Directory Traversal
Vulnerability (cisco-sa-20090520-cw)
http://www.net-security.org/advisory.php?id=10185
Debian Security Advisory - New nsd packages fix denial of service
(DSA-1803-1)
http://www.net-security.org/advisory.php?id=10184
Debian Security Advisory - New ipsec-tools packages fix denial of
service (DSA-1804-1)
http://www.net-security.org/advisory.php?id=10183
Mandriva Linux Security Update Advisory - rpmdrake (MDVA-2009:078)
http://www.net-security.org/advisory.php?id=10182
Ubuntu Security Notice - ntp vulnerabilities (USN-777-1)
http://www.net-security.org/advisory.php?id=10181
Debian Security Advisory - New squirrelmail packages fix several
vulnerabilities (DSA-1802-1)
http://www.net-security.org/advisory.php?id=10180
Debian Security Advisory - New ntp packages fix several
vulnerabilities (DSA-1801-1)
http://www.net-security.org/advisory.php?id=10179
Mandriva Linux Security Update Advisory - shared-mime-info
(MDVA-2009:072)
http://www.net-security.org/advisory.php?id=10178
Mandriva Linux Security Update Advisory - podsleuth (MDVA-2009:071)
http://www.net-security.org/advisory.php?id=10177
Mandriva Linux Security Update Advisory - amarok (MDVA-2009:073)
http://www.net-security.org/advisory.php?id=10176
Mandriva Linux Security Update Advisory - x11-server (MDVA-2009:074)
http://www.net-security.org/advisory.php?id=10175
Mandriva Linux Security Update Advisory - pidgin (MDVA-2009:075)
http://www.net-security.org/advisory.php?id=10174
Mandriva Linux Security Update Advisory - ntp (MDVSA-2009:117)
http://www.net-security.org/advisory.php?id=10173
Mandriva Linux Security Update Advisory - kdelibs (MDVA-2009:076)
http://www.net-security.org/advisory.php?id=10172
Mandriva Linux Security Update Advisory - kdevelop (MDVA-2009:077)
http://www.net-security.org/advisory.php?id=10171
Mandriva Linux Security Update Advisory - kernel (MDVSA-2009:118)
http://www.net-security.org/advisory.php?id=10170
Mandriva Linux Security Update Advisory - kernel (MDVSA-2009:119)
http://www.net-security.org/advisory.php?id=10169
Mandriva Linux Security Update Advisory - x11-driver-video-ati
(MDVA-2009:070)
http://www.net-security.org/advisory.php?id=10168
Mandriva Linux Security Update Advisory - x11-server (MDVA-2009:069)
http://www.net-security.org/advisory.php?id=10167
Mandriva Linux Security Update Advisory - x11-driver-video-sisimedia
(MDVA-2009:068)
http://www.net-security.org/advisory.php?id=10166
Mandriva Linux Security Update Advisory - gnutls (MDVSA-2009:116)
http://www.net-security.org/advisory.php?id=10165
Mandriva Linux Security Update Advisory - phpMyAdmin (MDVSA-2009:115)
http://www.net-security.org/advisory.php?id=10164
Mandriva Linux Security Update Advisory - drakxtools (MDVA-2009:067)
http://www.net-security.org/advisory.php?id=10163
Mandriva Linux Security Update Advisory - perl-URPM (MDVA-2009:066)
http://www.net-security.org/advisory.php?id=10162
Mandriva Linux Security Update Advisory - ipsec-tools
(MDVSA-2009:114)
http://www.net-security.org/advisory.php?id=10161
Mandriva Linux Security Update Advisory - cyrus-sasl (MDVSA-2009:113)
http://www.net-security.org/advisory.php?id=10160
----------------------------------------------------------------
For questions, contributions, comments or ideas go to:
http://www.net-security.org/aboutus.php
----------------------
Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php
The archive of the newsletter in TXT and PDF format is available
http://www.net-security.org/newsletter_archive.php