The insecurity paradox
2011-08-29
The formula here attempts to explain a paradox in security analysis:
If it is true that security is only as strong as its weakest link, why are not those who use insecur...
más >>
más >>
Seguridad proactiva para IT
- SandBox Information Center
- Malware Analysis Search
- Artículos sobre seguridad
- Blog de seguridad [EN]
- Nivel de amenaza [EN]
- Amenazas de virus actuales
- Tipos de malware [EN]
- Descripciones de virus[EN]
- Estadísticas de correo electrónico [EN]
- Libros, documentación técnica general, etc.
- Nuestra tecnología
Centro de seguridad
Lea las últimas novedades sobre seguridad de nuestros expertos
Temas de seguridad
Exploit analysis (7)
Debate sobre el malware (133)
Tecnologías móviles y wireless (30)
Problemas de confidencialidad (51)
Proyectos de protección (59)
Términos de seguridad (38)
Ingeniería social (65)
Asesoramiento de software (207)
Spam (11)
Mecanismos de propagación (109)
Tendencias y previsiones (151)
Ultimos artículos - Proyectos de protección
An approach to an organization's risk factors (part 3)
In this third and final part of our article series about risk factors, we will examine Human attack factors and Physical factors.
An approach to an organization's risk factors (part 2)
The previous article discussed different procedures and systems that could be invoked in order to mitigate risk. In subsequent parts we will examine areas at risk, starting with Electronic factors.
An approach to an organization's risk factors (part 1)
The aim of this type of initial risk analysis is to identify potentially vulnerable points that may be exploited if they are not sufficiently secured.
Secure browsing turns insecure (again)
It seems obvious that the current certificate security model needs to be replaced by something that is less vulnerable for attacks from dedicated persons, organizations or governments.
Circumventing malware detection
Malware authors continue to pursue delivery mechanisms that can confuse different malware detection systems.
Combating fake antimalware
Coordinated efforts between experts/authorities against cybercriminals seem like the most efficient method for combating cybercriminals. Different experts and authorities are then able to focus on the part of the criminal chain that corresponds to their ability and expertise.
Targeted attacks: More "Bang for the Buck"
Since the cybercriminals seem to shift from randomly directed mass attacks to more focused attacks, the total volume of spam will decrease.
Plug mouse into the computer - be compromised
It is almost impossible to protect completely against a targeted cyberattack against an organization.
Secure tokens turn insecure
Even organizations, which presumably are more security conscious than most, have vulnerabilities that may be exploited by an attacker who has sufficient resources and determination at her disposal.
Microsoft's Coordinated Vulnerability Disclosure policy
As one of the largest companies in the software industry, Microsoft's policy will influence the way vulnerabilities are handled.
Spam botnet Rustock beheaded
Bots and botnets comprise one of the biggest threats to the Internet and its users. However, recent news report of a success story: beheading the spam botnet Rustock.
Collective defense against Internet threats
The RSA Conferences are among the most important annual security conferences. This year's US conference was held in San Francisco 14 - 18 February.
Personalized web advertisements - good or bad?
Advertisements (ads) on the web have become part of a multi-billion industry. These days it is almost impossible to read news on the web without being overwhelmed by a plethora of ads for everything from cars to diapers. However, it is presumably not optimal to display the car ads to children. Nor are most teenagers particularly interested in diapers.
The next war will NOT be a pure cyberwar
A new report, “Reducing Systemic Cybersecurity Risk”, has received quite a lot of attention. The report is part of the Organisation for Economic Co-operation and Development (OECD) Project on “Future Global Shocks”, and addresses the question: "How far could cyber-related hazards be as devastating as events like large-scale pandemics and the 2007-10 banking crisis?"
Safe crime
We have previously advocated the view that endpoint security is just one of several tools needed to accomplish secure environments. This article will examine one particular threat against the Internet community and discuss how it may be overcome.
Hey, your computer is infected!
In a press release 25 October the Dutch High Tech Crime Team (THTC) of the National Crime Squad announced a successful takedown of a major botnet. 143 malicious computer servers were taken down from the internet resulting from collaboration with a Dutch hosting provider, the Dutch Forensic Institute (NFI), the internet security company Fox IT and GOVCERT.NL and the Dutch computer emergency response team.
Your computer has been quarantined and cannot access the Internet
A message similar to the one in this article's title may seem like a nightmare for most of us, as we have become increasingly dependent - some even addicted - to using resources available on the Internet for necessary as well as trivial tasks.
DDoS war
Last week in our article "Ways to use botnets", we discussed among other issues, botnets for hire. One example we mentioned in our article was the company Aiplex Software, which was hired to try stop illegal distribution of copyrighted material.
Ways to use botnets
This article will not go in depth with regard to how the different botnets function technically. We shall rather examine some of the ways botnets may be used, study one successful method used for fighting this threat, and finally discuss the idea of botnets used for benign purposes.
Tackling the Problem of Cyber Crime
A few days ago the Australian House of Representatives' Standing Committee on Communications published its report on cyber crime and security. This document has the ambitious title "Hackers, Fraudsters and Botnets: Tackling the Problem of Cyber Crime", and is an impressive, almost 300 pages reading with statistics, examples, and of course suggestions on how to solve the cyber crime problem.
Domain name registrants - who? where?
Domain names are a crucial part of the Internet's infrastructure. However, as we have shown in previous security articles, registration of special domain names may be used as an attack vector for spreading malware.
Handling an infected computer as an infected human being
The RSA Conferences are among of the most important annual security conferences. This year's US conference was held in San Francisco 1 - 5 March. One of the speakers was Microsoft's Scott Charney, Corporate Vice President Trustworthy Computing. His speech covered several interesting topics, of which we will discuss one: the ability, usefulness and implications of treating infected computers in a similar manner as infected human beings.
Software más susceptible a ataques exitosos
Esta semana se ha publicado un nuevo informe sobre riesgos para la seguridad. Esta publicación, "The Top Cyber Security Risks" (Los principales ciberriesgos para la seguridad), es una iniciativa conjunta de las organizaciones de seguridad TippingPoint, Qualys y SANS. En el artículo de seguridad de esta semana abordaremos un tema específico de dicho informe: la aplicación de parches de software.
¿Herramienta pirata? ¿Aplicación de seguridad? ¿O ambos?
Nmap (Network Mapper) es quizá la herramienta de pirateo más famosa y utilizada que existe. Desde su debú en el otoño de 1997, esta herramienta programada por el seudónimo Fyodor (nombre real, Gordon Lyon), ha ayudado a numerosos piratas informáticos a recopilar valiosa información acerca de sus objetivos. Durante este verano se publicó la versión 5 de Nmap. Según Insecure.org, se trata de "la versión más importante de Nmap desde 1997".
Reconocimiento de los retos de Internet al máximo nivel
Hace años que distintas organizaciones dedicadas a la seguridad han advertido sobre los peligros que conlleva el uso de Internet, que afecta a los usuarios, a las empresas y al sector público. Lamentablemente no siempre se ha prestado a estas advertencias la atención que merecen. El discurso del presidente Barak Obama es, por lo tanto, un oportuno reconocimiento al máximo nivel político.
Información sobre las amenazas "más habituales": ATLAS
ATLAS considera los ataques a los ordenadores desde una perspectiva global y ayuda a los usuarios a prever futuros ataques a la red. Para hacerlo, analiza datos recopilados por una serie de sensores.
Fighting global crime on a global scale
We have previously discussed the fact that national police may not be sufficiently equipped to fight ecrime in its various forms. One of the problems with fighting today's ecrime by national means is that ecrime is not bound by national borders.
Lucha contra el malware en dos frentes
Recientemente hemos visto que algunos de los principales responsables del “lado oscuro” de la red han sido eliminados de Internet. La actividad de los virus maliciosos se redujo de inmediato, y en una cantidad sorprendentemente significativa.
El software malicioso, ¿el mejor sueño de un terrorista?
Los expertos - los autoproclamados y algunos otros - afirman a menudo que el software malicioso (malware) es la herramienta definitiva para los grupos terroristas.
Proyecto "Honey Pot": una técnica interesante para combatir el correo no deseado
En términos generales, un "honeypot" puede definirse como un dispositivo diseñado para engañar a alguien, o algo, para que lo utilice y de ese modo realice una acción concreta en él y no en un entorno real. En el ámbito de la seguridad informática, se utilizan mucho los "honeypot" de distintos tipos como dispositivo de protección.
La solución final: un disco duro con una nueva función. ¿Supondrá este nuevo disco el final de Norman como empresa (de nuevo…)?
Si tenemos que creer a Jasim Saleh Al-Azzawi, su último invento supondrá el cierre de todas las empresas dedicadas al desarrollo de tecnologías antivirus. Jasim ha “inventado" un disco duro con funciones adicionales que consiguen que los virus pasados, presentes y futuros sean totalmente inofensivos.
Welcome to the Carnival: Ride the SpyCar
How does the user know that their security application, say their antivirus product, works and that the appropriate actions are taken by the antivirus product? An ‘easy’ but less secure and non-advisable way is to send yourself a virus by email or to launch it on your corporate network.
Ventajas de informar sobre los ataques de denegación de servicio
Información de seguridad, semana 19, 2006
SecureBlue: brought to you by BigBlue
On 10 April, IBM announced that it will bring mainframe inspired security to the world of consumer products, medical devices, defense systems and digital media. The technology, named "SecureBlue" can be applied to a variety of imaginable equipment that contains valuable confidential or private information as mobile phones, PDA’s, PC’s, notebooks, etc.
Public Beta Software Enables Intel-based Macs to Run Windows XP
On 5 April 2006, Apple has released a beta version called “Boot Camp" that enables the Intel-based Macintosh machines to install Windows XP.
Minister of Justice wants Spyware
Investigating teams mayoperate and act much faster if they are allowed to put technical aids in the computer of suspects.
Reinicio constante: ¿problema de hardware, virus o… rootkit?
Información de seguridad, semana 12, 2006
Su sitio web es víctima de un ataque de piratería informática, ¿qué se puede hacer?
En los días siguientes a la publicación de las viñetas sobre el profeta Mahoma, los ataques a sitios web se han convertido en una práctica frecuente. Algunas personas y empresas parecen creer que se trata de una herramienta adecuada para exponer sus puntos de vista.
Corporate and private worries by using the Internet
There are several securities issues involved in using the Internet for conducting corporate business, as well as issues involved in protecting individuals for misuse of their personal information. This article will discuss some of those
Sinners in the sun
Summer, sun and sweet sins are something that most people associate with happiness and innocent fun. But the thieves do not go on vacation! And there are plenty of sinners under the sun.
Spies in the sun
Industrial espionage is just as frequent during summertime as it is in other parts of the year. It can be done by unfaithful workers, former employees or external persons who want to steal or destroy information. It is not always easy to be protected from these intruders and regular tools like firewall, antivirus programs and ad-aware are not always sufficient.
La seguridad en las redes inalámbricas
Cada vez son más los usuarios particulares y las empresas que utilizan redes inalámbricas (WLAN). La mayoría de los usuarios conoce las ventajas que presentan las redes inalámbricas, pero no todo el mundo es consciente de los peligros que entraña su uso si no se toman las medidas de seguridad oportunas.
Information about the Sasser worms
Here are some general information about the Sasser worm - Frequently Asked Questions, and their answers.
Ten "commandments" to secure your home office
Today, most organizations will claim that their data is adequately secured. Normally they will have implemented systems to detect illegal access to their networks, as well as antivirus solutions, back-up routines and firewalls.
The rebirth of an impressive security site
Security Information Week 38, 1999 Our weekly security information for week 12 points to different places where security information is available. One kind of such places ...
The need for a specified security policy
Security Information Week 14, 1999Many organizations, especially smaller ones do not have a specified security policy. This may cause several different problems, among those that ...
How to prevent crackers to break into your system
Security Information Week 6, 1999All the time reports are published about famous and not-so-famous organizations which have had their networks and computers compromized by crackers. ...
Risk assessment with Mass Mailers
Security Information Week 50, 1999IntroductionDuring the latest months viruses have been using e-mail clients to spread themselves. The most famous one is of course W97M/Melissa.A ...
Internet Explorer 5 and Active Scripting
Security Information Week 43, 1999During the last weeks different security issues which involves Internet Explorer version 5 has been discovered. These have to do with ...
When to apply hotfixes to Windows NT
Security Information Week 18, 1999Some time ago the long-awaited Service pack 4 to Windows NT version 4.0 was released. Last week Microsoft surprisingly released another ...
Using encryption as a tool to secure information
Security Information Week 22, 1999 The need to secure information is for many organizations and persons extremely important. This includes of course business secrets, which could ...
Where to get security information
Security Information Week 12, 1999 On the Internet there are several sites which offer very good security information. The different sites are of two kinds: Security sites ...
What a hacker may know about your systems
Security Information Week 10, 1999A person who is interested in breaking in to an organization's computers wants to know as much about these computers as ...
The dilemmas of publishing information about vulnerabilities in software
Security Information Week 40, 2002IntroductionOne of the ongoing discussions regarding security is about informing the public about new security risks. The two extremes are on ...
The ten most critical Internet security threats
Security Information Week 26, 2000SANS Institute's web site is one of the most useful resources to visit/use for those interested in computer security issues.One of ...
Several high-profile web sites taken down
Security Information Week 6, 2000During the first days of this week several high-profile web sites fell victim of what seems to be Denial of Service ...
The pros and cons of updating virus detection files on availability
Security Information Week 4, 2000The high frequency of updates to antivirus packages - weekly or even more often - has come about partly as a ...
Ultimas entradas del blog [EN]
The 10 most insecure passcodes
2011-06-16
Earlier this week I read an extremely interesting and impressing blog item by Daniel Amitay: Most Common iPhone Passcodes.
Amitay has analyzed more than 200 000 passcodes used in an app with a similar...
más >>
más >>
Purchasing and downloading outdated software
2011-05-23
Last week in the "JoshMeister On Security" blog, the topic was about Apple's Mac App Store, and the fact that software available from this store may not be the latest version.
The blog's aut...
más >>
más >>