SecurityRatty: tag: warnings

State Department workers ignored data access warnings

2008-03-22 00:00:00 by HASH0x8473904 in Network World on Security

The contract workers at the U.S. Department of State who viewed the passport records of U.S. Sen. Barack Obama ignored privacy warnings built into the agency's systems that the information could only be accessed on a "need-to-know" basis

Tags: department, contract workers, barack obama, passport records, privacy warnings, information, need-to-know, systems, basis

Impersonating StopBadware.org to Serve Fake Security Warnings

2008-07-21 03:30:51 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...warnings that ultimately lead to fake security software stopbadware2008 .com (58.65.238.171) is one of these examples, where stopbadware2008 .com/antivirus.php redirects to infectionscanner .com and attempts to trick the user into installing download.infectionscanner.com /AntvrsInstall.exe . The message used Reported Insecure Browsing:...

Tags: fake security, fake security software, insecure internet activity, internet activity, insecure internet, insecure, lead, fake video codecs, portfolio

Thwarting a large-scale phishing attack

2007-06-11 11:35:00 by Niels Provos in Google Online Security Blog

...warnings on these phishing pages, suggesting that even an explicit warning was not enough to protect many users. The effectiveness of the attack and the increasing sophistication of the phishing pages, some of which were hosted on botnets and were near perfect duplications of MySpace's login page, meant that we needed to switch tactics to...

Tags: myspace, myspace profiles, real myspace content, myspace account, attack, dummy myspace account, phishers move, phishers, lower-value sites

Help us fill in the gaps!

2007-11-29 14:28:00 by Niels Provos in Google Online Security Blog

...warnings in search results when a site is known to be malicious, which can help you avoid drive-by downloads and other computer compromises. We are already distributing this data through the Safe Browsing API , and we are working on bringing this protection to more users by integrating with more Google products. While these are great steps,...

Tags: malware, distribute malware, malware sites, safe, avoid drive-by downloads, internet safe, site, google products, display warnings

US-CERT issues warnings on Flash, RealPlayer

2008-01-04 08:00:00 by Editor in IT Compliance

RealPlayer is vulnerable to exploit code, and Flash is vulnerable to cross-scripting attacks

Tags: realplayer, exploit code, vulnerable, flash, attacks

What can CISOs learn from the Societe Generale debacle

2008-02-19 09:17:17 by Khalid Kark in Security & Risk Management

...warnings and not understanding that they may have pointed to a much larger risk were clearly mistakes It could happen to the best of us. Societe Generale was a leader in derivatives and was considered by some to be one of the best risk managers in the world. The company seemed to understand a lot of elements of risk management really well,...

Tags: security, formal security strategy, societe generale, security technology, external security challenges, implement security, access, security products, access users

"Crawling" Toward SDL

2008-03-06 22:13:00 by sdl in The Security Development Lifecycle

...warnings For all Languages Strengthen your compiler defenses Use the latest compiler, linker and libraries because defenses are added by the tools and code o If using C#, use C# v2.0 or later and if using VB.Net use 8.0 or later Use .NET Framework 2.0 or later Do not use weak crypto in new code o Use only AES, RSA and SHA-256 (or better...

Tags: sdl, security, perform security analysis, application security, application, applications security, security issues, issues, non-microsoft sdl engagements

State Department workers ignored passport data access warnings

2008-03-21 13:00:00 by Editor in Computerworld Security News

The federal contract workers who viewed the passport records of the three leading presidential candidates didn't break through any technical controls. But they did breach the internal trust that balances security and access to data

Tags: federal contract workers, internal trust, passport records, access, data, balances security, technical controls, presidential, breach

Microsoft sounds bug alarm, confirms Windows-Word attacks

2008-03-22 13:00:00 by Editor in Computerworld Security News

After several weeks' worth of discoveries and warnings from third-party researchers, Microsoft on Friday acknowledged a critical vulnerability affecting users of Word running on Windows 2000, XP and Server 2003 SP1

Tags: windows, microsoft, word, third-party researchers, critical vulnerability, warnings, sp1, friday, worth

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo