Your search for random returned 138 results.

When we think about IT saboteurs, most of us picture a professional cyber-criminal or hacker bent on stealing confidential information or wreaking havoc. In both cases, the perpetrator is an outside party who breaches the data network of a company, institution, or government entity with malicious intent. A new tool that uses the Google search engine to scan websites for vulnerabilities -- released last week by the flamboyant Texas-based hacking consortium known as Cult of the Dead Cow (cDc) -- is not likely to enable a wave of new attacks from hackers, experts say. Spam originating from popular webmail services are spiking now that spammers have found ways to evade the challenge-response requirements for opening an account, a new study from email security firm MessageLabs reveals. Pirated microchips based on stolen blueprints could soon be a thing of the past thanks to computer engineers at Rice University and the University of Michigan. IronPort's charismatic CEO puts his success down to having tasted failure in the past. He talks to Paul Fisher SC Magazine's UK editor about living with Cisco. In what could presage a rash of tax-time spam emails purportedly from government agencies, security researchers at MX Logic have uncovered an influx of keylogger-laden emails spoofing the U.S. Department of Justice (DOJ). Notorious hacker group Cult of the Dead Cow (cDc) has released a web auditing tool which uses Google to find vulnerabilities on sites.. Mega-D, set off a firestorm of speculation, recently. What family of malware was behind this previously unknown botnet? How had it emerged to challenge Storm with hardly a mention in any research articles or press? You have probably heard by now that the root cause of most security vulnerabilities is in the software we run, and that these vulnerabilities are introduced into the software during the development process. That much has been well understood for several years. What hasn't been well understood is the solution to the problem. The notorious Storm worm botnet, which has mounted phishing attacks on major banks and spawned several waves of holiday-themed messages in recent weeks, is generating spam that directs recipients to bogus medical sites, Websense has warned. Mozilla today pushed out a fix for a Firefox vulnerability that could be exploited to steal cookies and session history. Mozilla officials are investigating a new vulnerability in Firefox that could be exploited by attackers to steal files from a victim's machine. Encryption is pointless if not applied to an entire session. It only gives users a false sense of security. End-users should brace themselves for a new wave of phishing emails that reference the recipient's holiday credit card spending pattern during the Christmas season. According to anti-virus vendor Secure Computing a botnet virus, dubbed Nugache, is set to unseat Storm as the nastiest botnet on the planet. Warning that botnets are a "dynamic, evolving threat," researchers from the Georgia Institute of Technology have proposed the classification of botnet structures to provide an effective response framework for attacks and general remediation. Microsoft has released a detailed list of more than 300 hotfixes and security patches included in the upcoming initial service pack (SP1) for its Windows Vista operating system. More than a third (41 percent) of Facebook users reveal sensitive personal data to a stranger heightening the chances of becoming a victim of identity theft, new research shows. With the looming threats of publicly exposed personal data breaches, mishandled confidential partner information and lost intellectual property assets, an increasing number of enterprises are investigating options for securing data stored on both tape- and disk-based media. To properly discuss security issues related to multi-function peripheral (MFPs) - devices that copy, print, scan and fax - it's helpful to first have some background on the underlying technology in the machines that have raised so much concern as a possible data security risk.