SecurityRatty: tag: on-demand

PC Webcams Might Be Abused Through Clickjacking To Silently Spy On Users

2008-10-07 23:32:08 by CyberInsecure in CyberInsecure.com

An Israeli security researcher has released a demo of a clickjacking attack, using a JavaScript game to turn every browser into a surveillance zombie. The proof-of-concept game uses a PCs video cam and microphone to secretly spy on the player. The release of the demo follows last months partial disclosure of the cross-platform attack/threat,...

Tags: israeli security researcher, javascript game, pcs video cam, months partial disclosure, game, demo, secretly spy, cross-platform attackthreat, surveillance zombie

Finding listening ports on your Windows box using Netstat, Fport, Tcpview, IceSword and Current Ports

2008-10-08 04:41:49 by Editor in Irongeek's Security Site

New Video: Finding listening ports on your Windows box using Netstat, Fport, Tcpview, IceSword and Current Ports Host based firewalls are fine and dandy, but I'd rather turn off services I don't need than to just block them. Host based firewalls are sort of a bandage, and while they can be useful for knowing what is connecting out (see egress...

Tags: windows box, network services, host based firewalls, services, fport, icesword, netstat, video, tcpview

Google's DoubleClick deal brings greater focus on privacy

2007-12-21 00:00:00 by Grant Gross in Network World on Security

Nearly lost in the news about the U.S. Federal Trade Commission's approval on Thursday of Google's acquisition of DoubleClick was another action by the agency: the publication of a proposed set of privacy principles governing online behavioral advertising

Tags: federal trade commission, google, online behavioral, privacy principles, doubleclick, approval, acquisition, action, thursday

Focus on software assurance increases in U.S., U.K. and other markets

2007-11-15 00:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast

I traveled quite a bit during the month of October - which was National Cyber Security Awareness month here in the U.S. - and there was one issue that came up frequently during my various business trips to locations around the U.S. and one to London: software assurance. It's really a continuation of a theme that I have come across during the...

Tags: security, information security, software assurance, government decision makers, product security, issue, systems, nefarious actors, business trips

Study: Biggest businesses rely more on service providers for messaging security

2008-01-02 00:00:00 by Tim Greene in Network World on Security

More and more large businesses are turning to a combination of message-security services and on-site security appliances to guard against malicious behavior carried out via e-mail and other messaging software, a recent IDC study says

Tags: recent idc study, on-site security appliances, businesses, malicious behavior, combination, services, guard, e-mail, software

Sears puts customers' buying histories on the Web

2008-01-04 00:00:00 by Robert McMillan in Network World on Security

Sears Holdings has come under fire from privacy advocates for making the purchase history of its customers publicly available on its Managemyhome.com Web site

Tags: purchase history, sears holdings, web site, customers publicly, fire, privacy, managemyhome

Irongeek on Campus

2007-10-04 10:00:18 by Editor in Irongeek's Security Site

It's come to my attention that some Universities and other educational institutions are using my videos in their InfoSec classes. I think this is great, but I'd like to compile a list of such campuses . If your campus uses my videos, please send me an email with the institutions name and a link to their web site. So far Jackson Community College...

Tags: institutions, jackson community college, educational institutions, infosec classes, web site, videos, campus, list, link

Cracking passwords on a PlayStation

2007-12-03 16:37:00 by Keith Brown in Security Briefs

I remember making a joke not long ago about my kid sister attacking a password database using her Nintendo DS. Looks like the PS3 has an architecture that makes it especially well suited for this type of attack Security researcher Nick Breese used a PS3 to crack supposedly strong eight-character passwords in hours. Typically, previous attempts...

Tags: password, character password, key, password database, keyspace, 256-bit aes key, 40-bit keyspace, passwords, encryption

New York Times Magazine on Electronic Voting Machines

2008-01-07 08:46:15 by Editor in Digg / Security

Can You Count On These Machines

Tags: machines, count

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo