|
|
Dante Alighieri (1265 - 1321); Italian poet.
- Weekly summary -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)
Madrid, November 29, 2003 - Over the last five days, Oxygen3 24h-365d has
dealt with the issues(*) summarized below.
- Police warn about fraudulent use of Wi-Fi networks to download child
pornography (11/24/03).
According to CTV, Toronto police have arrested a man who used a technique
known as 'War Driving' to detect vulnerable wireless networks, connect to
them and anonymously download child pornography from the Internet. War
Driving involves driving around an area trying to locate vulnerable wireless
signals. War drivers usually target areas with office blocks, where they are
more likely to be able to find open Wi-Fi networks to connect to. Their
basic tools are a laptop computer, wireless card, software for detecting
network access points, and usually an antenna to expand the strength of the
signal.
- CERT® Coordination Center summary of the latest attacks (11/25/03).
CERT® Coordination Center has published its summary of the security
incidents that have had the largest impact over the last quarter. These
include the different variants of the Mimail worm, a buffer overflow in
Windows Workstation Service and multiple vulnerabilities in Microsoft
Windows and Exchange.
- Main security breaches in businesses (11/26/03).
PricewaterhouseCoopers has published the results of a recent study resulting
from interviews carried out over the last five years with 420 CEOs of the
fastest-growing companies in the United States. During the last two years,
46 percent of surveyed companies acknowledged having suffered security
breaches, 90 percent of them being infected by viruses and worms.
- Security patch for Opera (11/27/03).
Opera has posted version 7.23 of its browser, which fixes several
vulnerabilities in version 7.22 and earlier of the program for both Linux
and Windows. These flaws stem from the way the browser handles skin files,
which allow the appearance of the program's interface to be modified. When
Opera processes these files a buffer overflow can be caused that could allow
an attacker to insert malicious code in compromised systems.
- Critical flaw in GnuPG (11/28/03).
A critical security flaw has been found in the GnuPG encryption software
which could compromise a user's private key in seconds. This flaw affects
versions 1.0.2 and later of GnuPG which use ElGamal keys for encryption and
signing (type 20). ElGamal keys used for encryption only (type 16) are not
affected by this flaw. To avoid being affected by this vulnerability, it is
advisable not to generate ElGamal keys for encryption and signing (type 20),
revoke the keys that are already in use and take into account that all the
material signed and encrypted with them could have been compromised.
(*) The complete articles corresponding to these summaries are available
from the Oxygen3 24h-365d archives at:
http://www.pandasoftware.com/about/press/oxygen3/oxygen.asp
NOTE: The address above may not show up on your screen as a single line.
This would prevent you from using the link to access the web page. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.
|
|
|
 |
|
No Comments Allowed for Anonymous, please register |
|
| |
|
Login |
|
 |
|
|
|
|
· New User? · Click here to create a registered account.
|
|
|
Article Rating |
|
|
|
|
|
|
Average Score: 0
Votes: 0
|
|
|
