Mar 31
Saturday, March 31st, 2007
The rapid evolution of banker Trojans is largely due to the use of additional security measures by financial institutions, such as the virtual keyboards now used to prevent traditional keyloggers recording users’ keystrokes. Banker Trojans designed to steal financial information are evolving rapidly. One recent example, the StealAll.A Trojan, injects a DLL in the Internet browser to steal data users enter in online forms.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
Cisco has patched its Unified CallManager and Presence Server software to fix vulnerabilities that could allow DoS attacks. In an advisory released Wednesday, the networking giant said CallManager versions 3.3, 4.1, 4.2 and 5.0, in addition to Presence Server version 1.0, are affected by the flaws. The most severe of the five vulnerabilities was rated 4.7 out of 10 by Cisco’s vulnerability scoring system.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
Keyloggers pose more risk to business and home PC users than any other method used for committing cyber crimes, according to a report by security vendor Kaspersky Lab. The company has witnessed more than a 500 per cent increase between January 2003 and July 2006. The Kaspersky Lab database currently contains records for more than 300 families of keyloggers – and this number does not include keyloggers that are just one component of compound threats, in which the spy component provides additional functionality.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
The term ‘keylogger’ itself is neutral, and the word describes the program’s function. Most sources define a keylogger as a software program designed to secretly monitor and log all keystrokes. This definition is not altogether correct, since a keylogger doesn’t have to be software – it can also be a device. Keylogging devices are much rarer than keylogging software, but it is important to keep their existence in mind when thinking about information security. Legitimate programs may have a keylogging function which can be used to call certain program functions using “hotkeys,” or to toggle between keyboard layouts (e.g. Keyboard Ninja). There is a lot of legitimate software which is designed to allow administrators to track what employees do throughout the day, or to allow users to track the activity of third parties on their computers. However, the ethical boundary between justified monitoring and espionage is a fine line. […]
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
Just in time for tax day, government auditors have issued a new report that raps the Internal Revenue Service on a number of security vulnerabilities in its computer systems. The findings run the gamut: failure to audit who has accessed what on its various systems, inconsistent encryption of data, and lack of physical security controls–such as surveillance cameras, security guards and locks - for starters. Click the following URL to view the report : www.gao.gov/new.items/d07364.pdf
Read more…
Posted in News | No Comments »
