In this third and final part of our article series about risk factors, we will examine Human attack factors and Physical factors.
The previous article discussed different procedures and systems that could be invoked in order to mitigate risk. In subsequent parts we will examine areas at risk, starting with Electronic factors.
The aim of this type of initial risk analysis is to identify potentially vulnerable points that may be exploited if they are not sufficiently secured.
The special feature that THC-SSL-DOS offers, is that a DoS attack against a secure web server can be performed from one computer or just a few computers.
The ease involved in creating QR codes that links to web pages implies that this will be a popular way to facilitate the propagation of malware for mobile devices.
A successful attack is not particularly easy to carry out, as it depends on several prerequisites.
Computers do what they are told. This may result in consequences that are funny as well as dangerous.
You should exercise extreme caution if you are allowing access to your social network account from any application.
It seems obvious that the current certificate security model needs to be replaced by something that is less vulnerable for attacks from dedicated persons, organizations or governments.
Malware authors continue to pursue delivery mechanisms that can confuse different malware detection systems.
The target should be the illegal act itself, rather than the communication mediums that may be used in planning undesired activities.
Coordinated efforts between experts/authorities against cybercriminals seem like the most efficient method for combating cybercriminals. Different experts and authorities are then able to focus on the part of the criminal chain that corresponds to their ability and expertise.
Computer systems are becoming increasingly sophisticated and complex with components that are individually computerized. This increases the attack surface for cybercriminals, and represents a challenge for users and the security industry.
The steps that private users and organizations can take to protect themselves, are quite similar in character to protection of traditional computers.
Since the cybercriminals seem to shift from randomly directed mass attacks to more focused attacks, the total volume of spam will decrease.
It is almost impossible to protect completely against a targeted cyberattack against an organization.
We shall in this article focus on the PPI ecosystem and how this is used for malware distribution.
Even organizations, which presumably are more security conscious than most, have vulnerabilities that may be exploited by an attacker who has sufficient resources and determination at her disposal.
The web site (usually an infected site) that displays the message checks the browser visiting the site, and displays a warning message similar to the browser's real warning.
A default restrictive approach to public sharing of personal information will result in less information shared.
Recent weeks have shown that images are used as a malware spreading technique; particularly images that appear after performing a Google image search.
Users of the operating system Mac OS X have so far been quite safe from malware infections compared to those who have chosen Windows as the operating system platform.
As one of the largest companies in the software industry, Microsoft's policy will influence the way vulnerabilities are handled.
Blocked access to important information - particularly if adequate backup routines are not in place - may be disastrous for the person who becomes the victim of ransomware.
Anonymous characterizes itself as a hive and a nest. One potential issue with such free structures is the potential for different actions that may conflict with each other.
Whenever malware authors find new vehicles to spread their malware, the probability for success increases immensely.
Bots and botnets comprise one of the biggest threats to the Internet and its users. However, recent news report of a success story: beheading the spam botnet Rustock.
In previous security articles, we discussed the fact that cybercriminals use big events to spread malware. Not surprisingly - nevertheless disgusting - the recent events in Japan have inspired shameless exploitations by cybercriminals.
The RSA Conferences are among the most important annual security conferences. This year's US conference was held in San Francisco 14 - 18 February.
Dumpster diving is known as examining trash to find interesting items that have been discarded. This security article's title refers to examining digital trash, which for certain purposes may turn out to be useful.
In our security article last week, we discussed cybercriminals who targeted financial institutions in an indirect way. However, the major bulk of malware aimed at the finance sector puts the finance sector's customers at peril. One obvious reason is that the average end user's system presumably is less secure than the systems used by the financial sector.
During the last weekend, The Wall Street Journal published information that intruders had penetrated computer systems controlled by the company that runs the U.S. Nasdaq Stock Market. Nasdaq handles around 19% if all stock trading in the U.S. The trading system itself should not have been compromised.
Advertisements (ads) on the web have become part of a multi-billion industry. These days it is almost impossible to read news on the web without being overwhelmed by a plethora of ads for everything from cars to diapers. However, it is presumably not optimal to display the car ads to children. Nor are most teenagers particularly interested in diapers.
A new report, “Reducing Systemic Cybersecurity Risk”, has received quite a lot of attention. The report is part of the Organisation for Economic Co-operation and Development (OECD) Project on “Future Global Shocks”, and addresses the question: "How far could cyber-related hazards be as devastating as events like large-scale pandemics and the 2007-10 banking crisis?"
Several organizations, which monitor the email spam situation around the world, have reported that the amount of spam decined significantly during the end of 2010. This led to some speculation regarding whether email spam as a technique was being abandoned, and newer ways of tricking users were upcoming and preferred.
Sony's PlayStation 3 (PS3) has been viewed as one of the most secure gaming devices. Applications and games from other sources than Sony could not be installed and run on PS3, and a firmware update early in 2010 disallowed using other operating systems than the one set up by Sony. All this is now changed.
December is the month to look back on the year that is coming to an end. We will attempt to sum up the situation seen from a security company's point of view. The most significant data security incidents to mention from the year are the sophisticated malware Stuxnet and incidents in the wake of WikiLeaks publication of U.S. embassy cables late November.
Major events, happenings and in general all kind of things that create much notice, also leave in their wake a stream of malicious software.
Some years ago it was an established "fact" that a computer could not be infected by malicious software by visiting a web page. But technology evolves quickly and some facts may change when new technology emerges. These days web pages are perhaps the most used propagation vector for malware.
According to a posting 15 November on the blog belonging to the UK based organization Get Safe Online, one in four UK web users have been targeted by so-called cold calls.
In recent months there have been lots of rumors about the upcoming email system closely integrated with Facebook. More detaileds about this have recently been disclosed by Facebook, and we will examine some aspects of the new offerings.
This is the third article in a series about privacy and security in social networks.
This is the second article in a series about privacy and security in social networks.
This is the first article in a series, which will focus on security and privacy issues involved in participating in social networks.
We have previously advocated the view that endpoint security is just one of several tools needed to accomplish secure environments. This article will examine one particular threat against the Internet community and discuss how it may be overcome.
In a press release 25 October the Dutch High Tech Crime Team (THTC) of the National Crime Squad announced a successful takedown of a major botnet. 143 malicious computer servers were taken down from the internet resulting from collaboration with a Dutch hosting provider, the Dutch Forensic Institute (NFI), the internet security company Fox IT and GOVCERT.NL and the Dutch computer emergency response team.
The product testing organization NSS Labs has recently published its test report for the 3rd quarter 2010 - test results for 11 antimalware products for consumers. The most interesting finding from this report is that the security products' performance have deteriorated compared to last year. In this security article we shall examine the implications of this.
A message similar to the one in this article's title may seem like a nightmare for most of us, as we have become increasingly dependent - some even addicted - to using resources available on the Internet for necessary as well as trivial tasks.
Computer software evolves, and popular interpretation is to introduce new generations whenever fundamental changes arrive. If one looks at malware in the same manner, one may also classify different types into various generations.
Last week in our article "Ways to use botnets", we discussed among other issues, botnets for hire. One example we mentioned in our article was the company Aiplex Software, which was hired to try stop illegal distribution of copyrighted material.
This article will not go in depth with regard to how the different botnets function technically. We shall rather examine some of the ways botnets may be used, study one successful method used for fighting this threat, and finally discuss the idea of botnets used for benign purposes.
In August IBM Security X-Force published its Mid-Year Trend and Risk Report. The X-Force reports are always interesting reading, and this latest addition maintains the high standards. Lots of topics are discussed in the report. In our security article, we shall however focus on one particular finding.
Introduction Last week it was announced that the Dutch company NXP was selected to produce the new identification (ID) card for Germany. Starting from the beginning of ...
In later years dangerous malicious software for mobile phones and other handheld devices has been predicted and expected by several analysts. Norman, however has traditionally been among those more reluctant in predicting that the explosion of if malicious software for mobile devices is imminent. In retrospective it seems safe to say that our view has proven correct (so far).
An interesting news item has appeared in several UK-based media lately. Several end users have received phone calls from someone who present themselves as security personnel. The caller informs that the computer is infected by malware and offers to help. Varying social engineering techniques are used to persuade the recipient to allow the use of remote access software in order to "fix the problem".
In this Norman report on security issues during the first half of 2010, we will go through some incidents and tendencies. We will focus on those that Norman perceives as most important in these past six months.
A few days ago the Australian House of Representatives' Standing Committee on Communications published its report on cyber crime and security. This document has the ambitious title "Hackers, Fraudsters and Botnets: Tackling the Problem of Cyber Crime", and is an impressive, almost 300 pages reading with statistics, examples, and of course suggestions on how to solve the cyber crime problem.
Last week a researcher from Google, Tavis Ormandy, posted information about and exploit code for a new vulnerability in Microsoft's help and Support center.
We should have been expecting it - some did. Late May this year a researcher in the U.K. claims to be the first person in the world infected by a computer virus.
Over the years new ingenious words for security issues have come up. We have seen the neologisms pharming, vishing, clickjacking and slurping, just to mention some. This week a new one was born - tabnabbing. Which turns out to be more scary than most.
Was die zukünftige Entwicklung angeht, gehen wir davon aus, dass bald neue Systeme auf der Beliebtheitsskala von Angreifern nach oben klettern werden.
In letzter Zeit sind einige interessante Informationen zu Facebook und Facebook-Benutzern im Internet aufgetaucht. Wir werden diese als Grundlage für eine allgemeine Diskussion zu Facebook und einigen der Probleme nutzen, die auftreten können, wenn man Facebook nutzt/sich darauf verlässt.
Earlier this month we wrote about a vulnerability in the PDF specification that could be utilized to run malicious programs embedded in a PDF file. Proof-of-concept code was published, and it was expected that real-life malware that used this technique might appear soon.
Malicious programs do increasingly rely on social engineering techniques to be able to propagate and successfully execute. Gone are the days when a tempting file name in an email sufficed. In this security article we shall examine variants of one of the more successful social engineering schemes.
The title may imply that this article is about subscription services for email checking, like Norman Online Protection. Rather not! This time we shall examine yet another way that criminal activity imitates legitimate business.
Domain names are a crucial part of the Internet's infrastructure. However, as we have shown in previous security articles, registration of special domain names may be used as an attack vector for spreading malware.
In our regular security articles, we have several times pointed out that security vulnerabilities and exploits are not restricted to "traditional" computers. We have predicted that several of the devices that our daily lives are filled with, may be exploited in the (near) future.
We have earlier discussed the fact that cyber criminals are getting increasingly sophisticated in their attempts to succeed in obtaining illegitimate gain. We will now look into an example of how illegitimate businesses imitate legitimate.
The Internet Crime Complaint Center's (IC3) report for 2009 has just been published, and is interesting reading. Not the least when comparing the actual submitted complaints to what is focused upon in the media.
Im Dezember wird traditionell auf das Jahr zurückgeblickt, das bald zu Ende geht – Zeit für eine Analyse der aktuellen Situation aus der Sicht eines Datensicherheitsunternehmens. In diesem Jahr ist uns besonders aufgefallen, dass vor allem soziale Netzwerke ein Hauptangriffsziel der Autoren von Malware waren.
Große Ereignisse und Veranstaltungen und ganz allgemein alle Anlässe, die viel Aufmerksamkeit verursachen, ziehen oftmals eine wahre Flut von bösartiger Software nach sich.
Introduction Various aspects, which have to do with social networks like Facebook, Twitter, LinkedIn and MySpace, have been discussed in different security articles this year. This time we ...
Wir haben bereits in zahlreichen Sicherheitsartikeln die Tatsache besprochen, dass neue Medien und Kommunikationsgeräte erfolgreich als Instrumente für die Verbreitung von Malware eingesetzt werden. Dieses Mal untersuchen wir einen Anwendungstyp, der bisher noch keine Beachtung fand, und zwar (vermutlich) weder von Malware-Autoren noch von Kommentatoren.
Der Begriff „Identitätsdiebstahl“ ist seit ein paar Jahren in aller Munde. Weniger bekannt war bis vor Kurzem noch die Identitätsvortäuschung in böswilliger Absicht. Mit einer neuen Version von Koobface geschieht genau das – und zwar automatisch.
Der Titel dieses Sicherheitsartikels ist vielleicht etwas aufsehenerregender als sein Inhalt.
Aber nur etwas. Wie wir sehen werden, gehen namhafte Organisationen davon aus, dass die Schweinegrippe das Internet erheblich beinträchtigen wird.
Die Verbreitung von Werbeinhalten auf Websites ist eine expandierende Branche. Zahlreiche Websites, die wir tagtäglich aus privaten oder beruflichen Gründen aufrufen, beinhalten Werbung und stellen eine wichtige Einkommensquelle für den Inhaber der Website dar. Ganz zu schweigen von Online-Zeitungen und anderen Online-Magazinen, Suchmaschinen, anderweitigen Informationsquellen und vieles mehr. Leider hat aber die Werbung auf Websites auch einen erheblichen Anteil an der Verbreitung von Malware.
Open Source als Ansatz für die Entwicklung und Verteilung von Software ermöglicht äußerst praktisch den Zugang zum Quellcode der Programme. Gern werden die Vorteile angeführt, die Open Source im Vergleich zur konventionellen, eher restriktiven Software-Entwicklung haben soll.
Das Thema des Sicherheitsartikels diese Woche ist die Verwendung eines bestimmten Computertyps – und zwar dedizierter Server – als Teil eines Botnets.
Diese Woche wurde ein neuer Bericht über Sicherheitsrisiken veröffentlicht. Der Bericht „The Top Cyber Security Risks“ (Die größten Sicherheitsrisiken im Cyberspace) wurde von den Sicherheitsorganisationen TippingPoint, Qualys und SANS gemeinsam erstellt. Im Sicherheitsartikel dieser Woche möchten wir einen bestimmten Punkt in diesem Bericht besprechen: Patches für Software.
Vor Kurzem hat in unserem Sicherheitsblog Snorre Fagerland, Senior Virus Analyst bei Norman, über die Malware W32/Induc.A geschrieben. Es handelt sich dabei um einen Virus, der die Programmiersprache Delphi infiziert. Anwendungen, die in einer infizierten Delphi-Umgebung erstellt wurden, sind folglich auch selbst infiziert. Dies hat, wie wir sehen werden, interessante Auswirkungen.
Letzte Woche wurde in allen Medien von einem Angriff auf die Websites sozialer Netzwerke wie Twitter, LiveJournal und Facebook berichtet, der angeblich in der Absicht gestartet wurde, einen einzelnen georgischen Blogger aufzuhalten.
Die erste Hälfte des Jahres 2009 liegt nun schon hinter uns – Zeit für einen Rückblick und eine Analyse der aktuellen Situation aus der Sicht von Norman als Datensicherheitsunternehmen.
Die Kurz-URL-Funktion hat ganz offensichtlich ihre Vorteile. Jedoch gibt es Schwächen und Sicherheitsprobleme, die das System an sich unsicherer machen als gewünscht.
Auch kostenlose Software zum Einrichten von Computern als Internetressource gibt es schon seit langem. Bisher gestaltete sich dies jedoch so komplex, dass viele Anwender den Schritt vom Computer zur Internetressource mangels spezifischer Fachkenntnisse gar nicht erst wagten. Das könnte sich jetzt jedoch ändern.
Der Titel dieses Artikels mag wie ein Märchen klingen, das ein Ganove seinem Kind erzählt. Durch eine Art von schädlicher Software (Malware), die in diesem Jahr aufgetaucht ist, scheint dieser Traum aller Kriminellen wahr zu werden.
Seit Jahren warnen verschiedene Sicherheitsorganisationen vor den Risiken und Gefahren, die sich für Privatpersonen, Unternehmen und den öffentlichen Sektor aus der Nutzung des Internet ergeben. Leider wurden diese Warnungen oftmals nicht im notwendigen Maße ernst genommen. Die Rede von Präsident Obama ist daher eine willkommene Anerkennung aus den höchsten politischen Kreisen.
Viele sind der Meinung, dass E-Mail die erste Killeranwendung im Internet war. Unglücklicherweise wird E-Mail als sichere und zuverlässige Kommunikationsmethode in der letzten Zeit bedroht von ... E-Mail!
Seitdem konnten wir eine weitere immer häufiger genutzte Malware-Verbreitungsmethode beobachten, bei der ebenfalls Webserver eingesetzt werden. Bei dieser Methode werden beliebte Begriffe genutzt, um Benutzer auf Websites zu locken, deren Inhalte bösartiger Natur sind.
The social network Twitter has become extremely popular in quite a short time. This time we will discuss this technological phenomenon from a sociological perspective, and use the most talked-about incident these days as a kind of case study - the swine flu.
"My house is ready for burglars", is not what you would typically shout in public or write as an advertisement in the local newspaper. Nevertheless this is exactly what lots and lots of computer users do on a regular basis, without reflecting upon what they really do.
Zu Beginn dieser Woche erregte ein Bericht des Information Warfare Monitor (Kanada) vom 29. März mit dem Titel Tracking GhostNet: Investigating a Cyber Espionage Network (GhostNet: Auf den Spuren eines Cyper-Spionagenetzes) großes Medieninteresse.
A new type of malicious software has recently been getting some media attention. The most interesting part of this is the fact that the malware's targets are not traditional computers. Rather does this malware attack different types of devices, namely routers and modems.
ATLAS betrachtet Angriffe auf Computer aus einem globalen Blickwinkel und trägt dazu bei, neue Netzwerkangriffe vorherzusagen. Dazu werden Daten aus verschiedenen Quellen analysiert.
Die Nutzung von Ressourcen, die sich außerhalb des Unternehmens selbst befinden, hat einige offensichtliche Vorteile. Es gibt jedoch auch einige Nachteile – von denen manche weniger deutlich zu erkennen sind. Im Sicherheitsinformationsartikel dieser Woche werden sowohl die Vor- als auch die Nachteile unter die Lupe genommen.
Sicherheitsexperten stehen im ständigen Kampf mit Programmierern von Malware und versuchen, die Benutzer vor Gefahren aus dem Internet zu schützen. Wie bereits mehrfach von uns angesprochen, wächst die Anzahl von Malware-Bedrohungen exponentiell, und neue Techniken für die Verbreitung von Malware schießen wie Pilze aus dem Boden. Das macht die Aufgabe von Sicherheitsexperten natürlich zusehends schwieriger.
Der Titel bezieht sich nicht, wie vielleicht zu vermuten wäre, auf das frühere PC-Betriebssystem DOS. Es handelt sich vielmehr um einen dieser Neologismen, die heutzutage immer häufiger anzutreffen sind. Kaum ein anderer Bereich bringt so viele Wortneuschöpfungen hervor wie die IT-Sicherheit.
So far there has been no really dangerous malicious software targeting mobile phones. The New Year 2009 started with a new, interesting threat to mobile phones, which may change this picture.
In diesem Artikel sollen zusammenfassend die Trends betrachtet werden, die 2008 im Bereich IT-Sicherheit zu beobachten waren. Außerdem werfen wir für das kommende Jahr einen Blick in die Glaskugel.
Große Ereignisse und Veranstaltungen und ganz allgemein alle Anlässe, die viel Aufmerksamkeit verursachen, ziehen oftmals eine wahre Flut von bösartiger Software nach sich.
Bisher wurde Geld bei Online-Games nur zur Zahlung der Zugriffsgebühr verwendet, um das Spiel an sich zu erwerben (sofern es nicht kostenlos verfügbar ist). In diesem Artikel werden wir jedoch zeigen, dass dies nicht mehr zutrifft.
Vor kurzem haben wir bemerkt, dass einige der Großen auf der "dunklen Seite" der Internet-Community aus dem Internet entfernt wurden. Aktivitäten mit böswilligen Absichten gingen sofort überraschend stark zurück.
There are some issues with security patches that in fact may render certain users more vulnerable. This apparent contradiction will be examined in this article.
Soeben wurde der Jahresbericht des IC3 für 2007 veröffentlicht – eine äußerst interessante Lektüre.
Experten – selbsternannte und andere – stellen häufig die Behauptung auf, bösartige Software (Malware) sei das ultimative Mittel zum Zweck für terroristische Vereinigungen.
Compared to the relatively innocent scheme of malware in the early age, it has changed into an activity for "geeks" that caused major problems for individuals and organizations, and further into an industry dominated by criminals.
Das Internet Crime Complaint Center (IC3) in den USA ist eine Kooperation des National White Collar Crime Center (NW3C) und des FBI zur Bekämpfung der Cyberkriminalität.
Die Zahl der Sicherheitsverletzungen steigt rasant. Eine aktuelle Studie belegt, dass im Jahr 2005 neun von zehn Unternehmen von Angriffen auf ihr IT-System betroffen waren.
Bei bösartigen Internetaktivitäten im Allgemeinen und bei Malware im Besonderen ist in den letzten beiden Jahren eine deutliche Veränderung zu verzeichnen.
Der Norman-Artikel " Big Brother is HEARING you " vom letzten Jahr endete mit:
Also viel Spaß mit VoIP, aber ... Vorsicht, man kann nie wissen, wer zuhört!
Führende Finanzunternehmen sehen sich immer häufiger Hacker-Angriffen, Betrugsversuchen, Malicious Code-Attacken und Betrugsversuchen ausgesetzt. Laut einer kürzlich durchgeführten Studie nahm die Zahl der angegriffenen Unternehmen im letzten Jahr um 78 % zu.
Das Wort "Vishing" setzt sich aus den beiden Begriffen "Voice over IP" und "Phishing" zusammen und bezeichnet die Kombination aus neuer Technologie und bekannter betrügerischer Tätigkeit: Unter Ausnutzung der zunehmenden Verbreitung von Voice over IP wird versucht, Personen zur Preisgabe persönlicher Daten zu animieren, die dann für betrügerische Handlungen genutzt werden.
Hackers that encrypt your files and demand money in order decrypt them are an increasing threat in the world of IT criminality.
One of the most prevalent and fastest increasing threats against IT security is the rise of zombie computers and botnets. Not only do they spread extremely fast, they are also able to do immense damage that can easily lead to large costs.
Researchers of the University of Amsterdam in The Netherlands have succeeded to successfully infect a RFID-chip (Radio Frequency Identification Device) with a computer virus.
E-Commerce und Onlinehandel sind bereits seit etlichen Jahren aus dem Leben des modernen Menschen nicht mehr wegzudenken. Die Anzahl der Onlinetransaktionen nimmt ständig zu. In eben diesem Maße nimmt aber auch die Anzahl der Betrugsversuche und Sicherheitsbedrohungen im Internet zu. Welche Folgen hat dies für die Zukunft des E-Commerce?
Bisher zielten Phisher oder ID-Diebe mit ihren Angriffen traditionell auf Einrichtungen und Organisationen im Bereich Finanzwesen. Neuerdings scheinen sie sich jedoch auch andere Zielgruppen zu suchen. Inzwischen sind alle möglichen Organisationen zum Angriffsziel von Phishern geworden. Dabei bleibt selbst das Gesundheitswesen nicht verschont. Der Krieg zwischen Phishern und Anti-Phishing-Vereinigungen spitzt sich zu. Und Sie könnten dabei das potenzielle Opfer sein.
The Internet is no longer a limited source of information or communication. Without the Internet you will have severe problems conducting several every-day tasks in today’s western society.
There are several securities issues involved in using the Internet for conducting corporate business, as well as issues involved in protecting individuals for misuse of their personal information. This article will discuss some of those
Threat is maybe not the first word that comes into your mind when talking about spam.
The first worm that spreads through handheld devices, like mobile phones, is observed. This is a "proof of concept" program without malicious code.
It is hardly controversial to claim that the end of February and beginning of March 2004 was the worst period ever regarding the sheer number of new mailicious programs threatening the Internet community. New variants of Bagle, MyDoom and Netsky were spread daily - sometimes even more than once per day.
In September 2003 Internet users and organizations experienced the most severe attack on the Internet infrastructure since the "Morris worm" in November 1988. The outbreak of W32/Sobig.F caused major problems because of the huge amount of emails flooding the infrastructure.
Security Information Week 8, 1999Several viruses have recently been created which utilize Internet protocols and applications in their behaviour.One such familiy is the W97M/Caligula viruses ...
Security Information Week 37, 1999 Introduction There has been some speculation in the media about lots of new viruses with payload 1 January 2000. Apparently this has ...
Security Information Week 49, 1999 As this year (and the millennium) approaches its end, time has come to look back on what we have experienced in ...
Security Information Week 9, 1999The IT department in an organization often uses vast resources to be updated on security risks associated with hardware and software ...
Security Information Week 25, 1999 This year we have seen three instances of malicious programs which caused severe damage all over the world: ...
Security Information Week 32, 2003
Security Information Week 40, 2002IntroductionOne of the ongoing discussions regarding security is about informing the public about new security risks. The two extremes are on ...
Has a person's ability to protect his private life from intrusion of any kind been diminished during the years that has passed since 11 September 2001?
Security Information Week 34, 2002 In August this year some news items appeared, which claimed that the year so far had been a quiet one for ...
Security Information Week 41, 2001 Introduction If the computer security community looks back upon the third quarter this year, this is probably not with happiness and joy. ...
Security Information Week 14, 2001 Introduction It is often claimed that security companies, security consultants and the antivirus vendors, are too eager to warn about different kinds ...
Security Information Week 6, 2001 Since computer viruses appeared for the first time the middle of the 80s, there has been a rapid development of these ...
Security Information Week 1, 1999 The computer magazines as well as other papers have recently published articles about a "new" kind of viruses - the so-called ...
Security Information Week 26, 2000SANS Institute's web site is one of the most useful resources to visit/use for those interested in computer security issues.One of ...
Security Information Week 1, 2000 It seems appropriate to use the Security Information for the first week in the new year to look back on what ...
In April 1999 a lot of people and organizations were paid a visit by the computer virus Melissa. This virus propagated so quickly and extensively that many compared it to the legendary "Morris worm."
