So you’ve got a Gmail mail account? Or maybe you’ve just received an invitation? Well, we have some bad news for you: Your mail box is exposed. A major security hole in Google's mail service, allows full access to user accounts, without the need of a password.
easier than hotmail, just get his cookie and everything you always wanted to know about somebodies gmail but never wanted to ask is there
The iDefense paper "The Evolution of Cross-Site Scripting Attacks" provides an excellent overview of XSS-related issues. You can access it at the following URL; the site requires (free) registration:
Did somebody in your organisation say that you didn't need any webapplication defense or secure coding and testing ? That there are firewalls and so on.....
Today a major upgrade of the securityportal with tens of new links and some new sections
www.securingit.tk freeware - free antivirus - free information
icmp attacks, sql attacks, ftp attacks,...... do you think it is Halloween today ?
we did the simple thing, everybody is on holiday and we pulled the plug. Scary simple.
go to www.securingit.tk for free antivirus software
go to http://virusalerts.skynetblogs.be for more info
it is a wholescale attack and like baggle before a long holiday and if it is like last year, many variants could follow in the days to come
- ask your people to shut off their pc's or stop the internet service while nobody is there
- set up a procedure with your mailadministrators and inform others who should know who to contact if mail or virusstorms happen from or to your mailserver
- block all attachments .cpl and .exe in mails for the time being
DO NOT COUNT ON YOUR ANTIVIRUS. The updateservers are overcharged, not all antivirus detects this kind of new virusus
DO NOT OPEN MAIL THAT YOU DIDN't ASK FOR. PERIOD.
Implementing VOIP isn't that simple and isn't without risks for your security of your network. This white paper from KPMG explains the risks at the moment the salesperson who wants to install VOIP don't tell you. The white paper is here http://www.silicon.com/research/specialreports/ip/0,39025...
The article about it here http://www.silicon.com/research/specialreports/ip/0,39025...
In Belgium it is implemented by the Ministry of Finance (sic).
Maybe they should run this free software to test their security. http://www.vopsecurity.org/
200 brazilian governmental sites here, dutch governmental sites there, Bush's site, English big sites and so on
were they finding viruses too boring
An announcement from Redmond on Tuesday indicated that its Live Communications Server 2005 software will let companies encrypt their instant-messaging communications internally and link IM systems between companies so that suppliers and other business partners can share secure IM connections.