30-10-04

hack a gmail

So you’ve got a Gmail mail account? Or maybe you’ve just received an invitation? Well, we have some bad news for you: Your mail box is exposed. A major security hole in Google's mail service, allows full access to user accounts, without the need of a password.
http://net.nana.co.il/Article/?ArticleID=155025&sid=10
 
easier than hotmail, just get his cookie and everything you always wanted to know about somebodies gmail but never wanted to ask is there
 
The iDefense paper "The Evolution of Cross-Site Scripting Attacks" provides an excellent overview of XSS-related issues. You can access it at the following URL; the site requires (free) registration:
http://idefense.com/application/poi/researchreports/displ...
 
Did somebody in your organisation say that you didn't need any webapplication defense or secure coding and testing ? That there are firewalls and so on.....

00:43 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

major update securityportal

Today a major upgrade of the securityportal with tens of new links and some new sections
www.securingit.tk freeware - free antivirus - free information

00:42 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

29-10-04

other attacks going on

icmp attacks, sql attacks, ftp attacks,...... do you think it is Halloween today ?
 
we did the simple thing, everybody is on holiday and we pulled the plug. Scary simple.

19:29 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

baggles coming your way

go to www.securingit.tk for free antivirus software
go to http://virusalerts.skynetblogs.be  for more info
 
it is a wholescale attack and like baggle before a long holiday and if it is like last year, many variants could follow in the days to come
 
for networkadministrators
- ask your people to shut off their pc's or stop the internet service while nobody is there
- set up a procedure with your mailadministrators and inform others who should know who to contact if mail or virusstorms happen from or to your mailserver
- block all attachments .cpl and .exe in mails for the time being
 
DO NOT COUNT ON YOUR ANTIVIRUS. The updateservers are overcharged, not all antivirus detects this kind of new virusus
 
DO NOT OPEN MAIL THAT YOU DIDN't ASK FOR. PERIOD.

14:05 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

28-10-04

VOIP much hype, no security info

Implementing VOIP isn't that simple and isn't without risks for your security of your network. This white paper from KPMG explains the risks at the moment the salesperson who wants to install VOIP don't tell you. The white paper is here http://www.silicon.com/research/specialreports/ip/0,39025...
The article about it here http://www.silicon.com/research/specialreports/ip/0,39025...
 
In Belgium it is implemented by the Ministry of Finance (sic).
 
Maybe they should run this free software to test their security. http://www.vopsecurity.org/

22:42 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

27-10-04

hacking attacks in the news

200 brazilian governmental sites here, dutch governmental sites there, Bush's site, English big sites and so on
were they finding viruses too boring

23:39 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |

26-10-04

safe encrypted instant messenging

An announcement from Redmond on Tuesday indicated that its Live Communications Server 2005 software will let companies encrypt their instant-messaging communications internally and link IM systems between companies so that suppliers and other business partners can share secure IM connections.
http://news.zdnet.co.uk/internet/security/0,39020375,3917...

23:40 Gepost door technology changes fast not a lot | Permalink | Commentaren (0) |  Facebook |