Search Security Asia RSS

Rustock botnet increases spam traffic

jccgutierrez — Mon, 15 Mar 2010 09:44:26 +0800

MessageLabs Intelligence has recorded a recent rice in spam using TLS (Transport Layer Security), a technique for sending email through encrypted channels. The accounted spam rose to 35% from last week's 20%.

WhiteHat Security reveals top 10 Web hacking techniques

jccgutierrez — Mon, 15 Mar 2010 09:37:01 +0800

SAN FRANCISCO -- One of the infosec industry's top Web security gurus said a hash algorithm flaw, discovered more than a year ago, may well be the most dangerous security flaw on the Web.

Zeus botnet temporarily disrupted

jccgutierrez — Mon, 15 Mar 2010 09:13:47 +0800

The Zeus botnet, a Trojan family widely used by cybercriminals to target victims with data-stealing malware, was temporarily disrupted this week after the ISP suspected of hosting its command-and-control servers was brought down.

DNSSEC predictions optimistic

jccgutierrez — Mon, 15 Mar 2010 08:42:47 +0800

It's been a long road for DNSSEC, but experts who are monitoring deployments of the DNS layer authentication technology across public and private top-level domains (TLDs) remain optimistic that it will gain traction later this year.

RSA conference tackles social networking

jccgutierrez — Mon, 15 Mar 2010 08:11:09 +0800

SAN FRANCISCO -- Are the evils of social networking ultimately brought on by users who make bad decisions about when and how to share their information, or by social networks that fail to properly protect their users' data?

Cybercriminals target healthcare records

jccgutierrez — Wed, 10 Mar 2010 12:28:04 +0800

SAN FRANCISCO -- Online criminals know that medical records are a goldmine, and they are using the data to steal drugs or peek into others' medical history, health care security experts said.

Microsoft addresses Windows and Office vulnerabilities

jccgutierrez — Wed, 10 Mar 2010 12:19:16 +0800

As part of its security bulletin advance notification for March, Microsoft revealed Thursday that it will release two bulletins that will address eight vulnerabilities.

The bulletins, each labeled "Important" by Microsoft, will affect Windows and Microsoft Office products.

Virtual patching makes an impact on RSA conference

jccgutierrez — Wed, 10 Mar 2010 12:09:22 +0800

SAN FRANCISCO -- Security pros at RSA Conference 2010 say that virtual patching can be an effective short-term fix for network vulnerabilities, but it shouldn't replace the implementation of proper fixes for systems and applications.

PCI tokenization on the rise

jccgutierrez — Wed, 10 Mar 2010 08:50:32 +0800

SAN FRANCISCO -- Tokenization technology has the potential to protect credit card data while reducing the scope of a PCI DSS assessment, but a lack of standards and some complexity issues are cause for concern, panelists said Wednesday, at RSA Conference 2010.

Federal government may step in to ensure privacy protection

jccgutierrez — Mon, 08 Mar 2010 11:30:01 +0800

Former government officials and experts stressed the need for protecting the privacy and civil liberties of U.S. citizens despite the growing need of the federal government to help thwart attacks against the networks of privately owned critical infrastructures.