In the UK, the Home Office has warned about a spate of attacks in recent
months involving e-mail Trojans. "We have never seen anything like this in
terms of the industrial scale of this series of attacks," said Roger Cumming
(pictured), director of NISCC, the organisation charged with protecting the
UK's critical infrastructure from electronic threats.
"This is not a few hackers sitting in their bedrooms trying to steal bank
account details from individuals. This is aimed at organisations, targeted at
gaining information and is extremely well organised and well structured,"
It's the first time the NISCC has ever made such an announcement. The attacks
have been ongoing for several months, and derive mostly from Asia, Cumming
said. Hundreds of UK government departments have been especially subjected to
attack, he added.
"The general threat from electroni... (more)
Web Security Journal: There's been a flurry of discussion this week among
Internet and Web standards heavy-hitters around WebSocket, the new
communications protocol supported in Chrome 4 and Safari 5. What was the main
issue? Is there some kind of fundamental security vulnerability with the
WebSocket (WS) protocol?
John Fallows: When surfing the Web, our browsers may communicate with Web
servers via HTTP proxies that deliver many benefits, such as providing
previously cached Web content more efficiently than repeatedly contacting the
target server. These proxies may be either ex... (more)
Montvale, NJ, October 9, 2002 - SYS-CON Media, headquartered in Montvale, New
Jersey, has been named as an entrepreneurial growth leader by Inc magazine,
which today released its 2002 Inc 500 ranking of the nation's fastest-growing
private companies. The ranking will appear in the magazine's special Inc 500
issue, which hits newsstands October 15.
SYS-CON Media achieved a record 752% growth in the past five years. Founded
in 1994 by Fuat Kircaali with an initial loan of just $1,200 borrowed on his
personal credit cards, SYS-CON is today the world's leading magazine
publisher serv... (more)
On April 22 Microsoft became aware of code available on the Internet that
seeks to exploit vulnerabilities already addressed as part of its April 13
security updates, code that attempts to use the IIS PCT/SSL vulnerability on
servers running Internet Information Services with the Secure Socket Layer
authentication enabled. The vulnerability was addressed by bulletin
MS04-011 (www.windowsupdate.com) and Microsoft urged all customers to
immediately install the MS4-011 update as well as the other critical updates
provided on April 13.
In addition, Microsoft published a knowledge b... (more)
"With the proliferation of viruses and other broad threats on business and
consumer desktops, I can think of no higher priority than trying to ensure
the security of personal computers," said Rob Enderle, principal analyst for
the Enderle Group, yesterday as Microsoft released Windows XP Service Pack 2.
"Whether the customer is a large enterprise, a small business or an
individual," Enderle continued, "Windows XP Service Pack 2 is critical
because it addresses today's exposures in a comprehensive fashion. For anyone
currently using Windows XP, my advice is to apply it at your earli... (more)