computer security attacker
OpenID at risk due to DNS flaw
News Clayton wrote: "The problem that Ben [Laurie] and I have identified is that an attacker can poison a DNS cache so it serves up the wrong IP address for openid.sun.com. Another problem with OpenID was highlighted in a security advisory published... [14 Aug 2008]
Analysis of Distributed Intrusion Detection Systems Using Bayesian Methods
White Paper However, it is not the attack but rather the attacker against which the networks must be defended. In computer and network security, standard approaches to intrusion detection and response attempt to detect and prevent individual attacks. [09 Jul 2008]
Microsoft warns of ActiveX attack targetting Access
News This would provide the attacker with as much access to and rights on the computer as the logged-in user has. An attacker would have to lure a victim, via a link in an email for example, to a specially crafted web page that could exploit the... [08 Jul 2008]
Malicious Data and Computer Security
White Paper This threat arises because apparently benign programs can be made malicious, or subverted, by introduction of an attacker's data--data that is interpreted as instructions by the program to perform activities that the computer's operator would find... [03 Jul 2008]
The Key to Security: On the Internet, Nobody Knows You're a Dog
White Paper An important development has taken place with respect to the expansion of computing attacks and the level of sophistication on the side of the attacker. During the 1980s and early 1990s hacking was almost an academic hobby of some computer geeks... [03 Jul 2008]
Information Security - Intrusion Detection
White Paper Detection mechanisms such as intrusion detection systems (IDS) look for signs of attack, improper activity or policy non-compliance, and reaction mechanisms, such as automated system reconfigurations to deny access to an attacker, or triggering... [03 Jul 2008]
Using Independent Auditors as Intrusion Detection Systems
White Paper Integrity tools to date rely on the operating system to function correctly, so once the operating system is compromised even a novice attacker can easily defeat these tools. A basic method in computer security is to perform integrity checks on the... [30 Jun 2008]
TechNet Webcast: Securing Services and Critical Accounts (Level 300)
White Paper However, these applications often require service accounts to be configured to run with the highest possible privileges, a security risk that can enable an attacker to gain unrestricted access to the computer, domain, or entire forest. [01 May 2008]
Microsoft boosts stability of Office 2008 for Mac
News This update fixes a vulnerability that an attacker can use to overwrite the contents of your computer's memory with malicious code," Microsoft said on its web site, referring to the Microsoft Office 2004 for Mac 11.4.1 update. [12 Mar 2008]
QuickTime flaw could fuel Second Life stealing
News Researchers have shown how exploiting a flaw within QuickTime could allow an attacker could steal from other users in Second Life. What Miller and Zovi realised is that while direct communication between an attacker and a victim within Second Life... [18 Feb 2008]
The Need To Protect Against Insider Attacks
White Paper A brief discussion is included regarding the Insider Threat Study (ITS): Computer System Sabotage in Critical Infrastructure Sectors, where the profile of an “insider attacker” is reviewed as well as best practices for securing within the network... [12 Dec 2007]
Malicious Websites
Until then, most attackers would compromise a computer system by simply attacking it with known vulnerabilities or "bugs" that could allow the attacker to gain some level of control over the system. New attack methods started being seen where the... [29 Nov 2007]
Malicious Websites
White Paper Until then, most attackers would compromise a computer system by simply attacking it with known vulnerabilities or "bugs" that could allow the attacker to gain some level of control over the system. New attack methods started being seen where the... [28 Nov 2007]
Web 2.0 threat looms
Comment Alarmingly, this could allow an attacker to access a user's internet banking account using their security credentials. Essentially, an attacker can use a malicious page to request information from another site using the user's active session cookie. [26 Nov 2007]
Trojan targets companies' top brass
News Once activated, the RTF file starts a chain of downloads which establish a secure connection between the attacker's server and the infected computer. Security from A to Z Security vendor MesssageLabs reported that 1,100 emails containing malware... [26 Sep 2007]
Keep updated for stories matching computer security attacker via RSS
