News (80)

50 percent of DNS servers vulnerable

Security around DNS servers is still a serious issue for network administrators, even though new servers such as BIND 9 are more secure, according to a new survey released this week. Read more »

Storm worm botnet upgraded, prepared for attack

The owners of the Storm botnet, whose identities are as yet unknown, could be preparing to sell off the "services" of segments of the network, according to Joe Stewart, a researcher from managed security services company SecureWorks. Read more »

Microsoft: Vista UAC designed to 'annoy users'

A Microsoft manager has said one of the security features in Vista was deliberately designed to "annoy users" in order to put pressure on third-party software makers to make their applications more secure. Read more »

Developers take Linux attacks to heart

A handful of recent online attacks on free and open-source software servers has open-source developers looking over their shoulders. Read more »

Web sites threatened by Samy worm

The newly-discovered Samy worm is the first to exploit a cross site scripting vulnerability, prompting security experts to fear the technique could be used to open a new front in the war against malware. Read more »

US Homeland Security e-mail gaffe exposes secrets

A technical contractor may have started a chain of events that led to security professionals divulging classified information Read more »

Salesforce staff speared by phishers

Salesforce.com has revealed few details about a security breach caused by a phishing attack against an employee that surrended internal customer database details. Read more »

Patched Oracle database 'still vulnerable'

The latest update for Oracle 10g Release 2 does not plug a hole that allows published attack code to run, according to a security researcher. Read more »

Oracle defends security record

Oracle has shrugged off criticisms of its recent security record, saying that one of the company's biggest security concerns is that its customers are so used to being secure that they are not used to applying patches. Read more »

Microsoft refutes hypervisor attack claim

Senior Microsoft security strategist Steve Riley has used the vendor's Tech.Ed conference in Sydney this week to rebut claims by a Polish researcher that Microsoft's hypervisor software could be maliciously replaced on PCs without administrators knowing. Read more »

More Administrator, Attack News Results

Features (46)

50 significant moments from internet history

We take you through 50 defining moments of the internet. Read more »

10+ things you should know about rootkits

Malware-based rootkits fuel a multibillion dollar spyware industry by stealing individual or corporate financial information. If that weren't bad enough, rootkit-based botnets generate untold amounts of spam. Here's a look at what rootkits are and what to do about them. Read more »

Learn about Vista's changes to user security

As the long-awaited release of Windows Vista approaches, it's a good idea to get acquainted with some of the security enhancements we can expect in Microsoft's latest operating system. With Vista, Microsoft has made some interesting changes to user security controls. Read more »

HTTP and HTML: The paradox of dominance

The saying, "When all you have is a hammer, every problem looks like a nail," makes me think of the mess that we're in when it comes to the dominance of HTML and HTTP. Read more »

What is cross-site scripting?

Cross-site scripting, also known as "XSS," is a class of security exploit that has gotten a fair bit of attention in the last few years. This article explains what it is and where the dangers lie. Read more »

10 things you should know about virtualisation

Virtualisation has been a major buzzword in the IT world for a few years. Microsoft has promised that the Hyper-V virtualisation component (formerly called Viridian) will follow within 180 days of the Windows Server 2008 release. Read more »

Windows rootkits 101

When administrators and security professionals hear the word rootkit, most think first of a UNIX-based system. Unfortunately, this only leads to a false sense of security for Windows-based systems. The fact is that Windows rootkits do exist, and you need to be able to detect them. Read more »

Six steps to secure sensitive data in MySQL

If you're using MySQL, there are some easy things you can do to secure your systems and significantly reduce the risk of unauthorised access to your sensitive data. Read more »

10 tech skills you should develop during the next five years

If you want a job where you can train in a particular skill set and then never have to learn anything new, IT isn't the field for you. But if you like to be constantly learning new things and developing new skills, you're in the right business. In the late 80s, NetWare and IPX/SPX administration were the skills to have. Today, it's all about TCP/IP and the Internet. Read more »

Protect IIS log files by moving them to a secure location

Internet Information Services (IIS) continues to be a favorite target for hackers. Make their job harder by moving IIS' log files to a secure remote location. Mike Mullins tells you how in this edition of Security Solutions. Read more »

More Administrator, Attack Features Results

Blog (2)

Hack attack week

Staff [blogs:syslog] -- It wasn't a good week to be an Alaskan vice-presidential candidate, an online publication or even a multinational science project -- as all were compromised by hackers this week. Read more »

Sysadmin hijacks San Francisco while Torvalds attacks security circus

Staff [blogs:syslog] -- This edition of the Weekly Roundup looks at how one man has taken over the network of the city of San Francisco, take a glance at a local news start-up and Linus Torvalds calls out the IT security sector. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

What's on?