Portal Corporativo de Input Ouput Soluciones Informáticas, SL

Noticias del sector
Security News items, Blog posts \| ZDNet
News items, Blog posts relating to Security
iPhone vulnerable to phishing, spamming flaws Security researcher Aviv Raff left has discovered a pair of basic design flaws that could turn your iPhone into easy bait for malicious phishing and spamming attacks. According to an advisory from Raff, the iPhone's Mail and Safari applications are susceptible to a URL Spoofing vulnerability which... Researchers borrow from Google PageRank for network defense service Using a link analysis algorithm similar to Google PageRank, researchers at the SANS Institute and SRI International have created a new Internet network defense service that completely revamps the way network blacklists are formulated and distributed. The service, called Highly Predictive Blacklisting (.pdf), will be unveiled next... Fortify sets off FUD flood The Fortify study did not say enterprises must avoid open source because all open source is a security risk. But that's how lazy reporters played it. by Dana Blankenhorn McAfee debunks recent vulnerabilities in AV software research, n.runs restates its position Several days after blogging about a research conduced by n.runs AG that managed to discover approximately 800 vulnerabilities in antivirus products, McAfee issued a statement basically debunking the number of vulnerabilities found, and providing its own account into the number of vulnerabilities affecting its own products : "A recent... News to know: Yahoo; VMware; Apple; DNS vulnerability Notable headlines: Ryan Naraine: Vulnerability disclosure gone awry: Understanding the DNS debacle RIM ships fix for BlackBerry code execution bug Dancho Danchev: Georgia President's web site under DDoS attack from Russian hackers 75% of online banking sites found vulnerable to security design... 75% of online banking sites found vulnerable to security design flaws In a paper entitled "Analyzing Web sites for user-visible security design flaws" to be published at the Symposium on Usable Privacy and Security meeting at Carnegie Mellon University July 25, Atul Prakash and two of his doctoral students examined 214 financial institutions in 2006, finding that over 75% of all... Georgia President's web site under DDoS attack from Russian hackers From Russia with political love? It appears so according to a deeper analysis of the command and control servers used by the attackers. During the weekend, Georgia President's web site was under a distributed denial of service attack which managed to take it offline for a couple of hours. The... Twitter anti-spam efforts go overboard Twitter's spam-blocking efforts have falsely identified popular company Twitter feeds and individuals as spammers, creating a definite damper in community engagement. by Jennifer Leggio A look at the recent Firefox 3 vulnerability True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3.Â As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed... E-gold owners plead guilty to money laundering Wow, big morning!Â If anyone has seen Nitesh Dhanjani and Billy Rios's talk on phishing and identity theft, which was presented at the last couple Black Hat conferences, and will be on display again at Black Hat Vegas, you know that the identity theft market is a huge problem.Â You...