Image Source: identity20.com

To protect yourself from phishers, there is an easy way that offers reliable phishing scams detection. Netcraft is one. It focuses on tracking down online technology. It is a toolbar available in Internet Explorer and Firefox. And it has a great community for user support. It protects you from phishing attacks. Another tool bar that offers phishing protection is the Yahoo Toolbar. You can rest assured your Paypal and eBay accounts are safe. And the number one way of prevention of phishing attacks is by doing away with greed. Greed for money or to make lot of them makes our senses lose its focus and we tend to separate ourselves from the reality. The phishers use this fault to get past our common sense. Check you emails and read them carefully. Analyze the content. If its too good to be true then don not at any time entertain or respond to it. It is best to check on the main website of an account or bank rather than clicking on the links provided in the email, if you get important advisories from your accounts. There is no gold at the end of the rainbow and certainly, you will not win a lottery if you did not buy a ticket in the first place. So beware and never put your greed in the front.

Computer viruses threaten the user everyday. It gets more dangerous each day. One day they can tap into your personal information and steal your identity for criminal activities.
Tehre are free softwares that unleashes spyware, trojans, or worms on your system. So dont go trying them all out because its free. Others install popups which always annoys the users.

Arm your computer and protect yourself against these potential attecks by installing a good antivirus software. Using the firewall greatly reduces the risk of hackers crawling into your system.
Now adays, browsers are equipped with popup blockers, so you can enable this feature to ward of annoying popups while you view a certain page in your favorite site. Changing passwords regularly can be of good use. And dont forget to keep those passwords to yourself. Never indulge it to others, not even to your mother.

These are a few things that might protect you from becoming a victim.
Image Source:geeksontime

Top Ten Reasons why Websites Get Hacked

Experts say most Web applications can be hacked. Here are the top ten vulnerabilities that could put your Web site at risk.

1. Cross site scripting
2. Injection flaws
3. Malicious file execution
4. Insecure direct object reference
5. Cross site request forgery
6. Information leakage and improper error handling
7. Broken authentication and session management
8. Insecure cryptographic storage
9. Insecure communications
10. Failure to restrict URL access

SOURCE: OWASP (the Open Web Application Security Project)

Related Links For added reading : NetworkWorld.com

Probe : Unusual attempts to gain access or discover something about system.

Scan : Many probes done using an automated tool.

Account Compromise : Unauthorized use of a computer account by someone other than the account owner.

Root Compromise : Similar to an account compromise, except that the account that has been compromised has special privileges on the system.

Packet Sniffer : A program that captures data from information packets as they travel over the network.

Denial of Service : The goal of denial-of-service attacks is to prevent legitimate users of a service from using it.

Exploitation of Trust : Computers on networks often have trust relationships with one another. For example, before executing some commands, the computer checks a set of files that specify which other computers on the network are permitted to use those commands. If attackers can forge their identity, appearing to be using the trusted computer, they may be able to gain unauthorized access to other computers.

Malicious Code : Programs like viruses, worms and Trojan horses.

Internet Infrastructure Attacks : Rare attacks on network name servers, network access providers, and large archive sites.

Source

by: Djai Tanji

Google is now adding Web security for net surfing and remote workers to its Google Apps set of office tools. Google Web Security for Enterprise comprising real time malware protection and URL filtering with policy implementation and reporting and this was made possible by Postini, which was last year’s acquisition of security vendor. There is an additional feature that extends the same protections to users who works remotely on laptops in cafes, hotels, restaurants and guest networks. This allows companies to protect their networks from Web-based malware , implement internet use policies at the user, company level and workgroup, and Google Web security will receive comprehensible reporting on all web activities.

by: Djai Tanji

McAfee and Yahoo announced their partnership on Web’s security wherein Yahoo’s search engine is making available to users the warnings about unnecessary and malicious code on Web sites that will be detected through McAfee’s security technology. McAfee calls the technology, SiteAdvisor and this has been integrated into Yahoo’s search engine mechanism making a user, after performing a search, obtain the flagged sites after clicking “searchscan.” However, no Yahoo advertisers will be picked up and flagged in the SiteAdvisor. The yahoo security warning system does not block users from accessing the page but will recommend to avoid the flagged content. With all this preclusion of users from visiting malicious websites, yahoo will lessen the channels obtainable for spam, adware, malware and phishing to spread.

by: Djai Tanji

The substantial SQL injection attacks that struck Microsoft-based websites claimed as one of its victims Autoweb which is a U.K. based advertising and marketing site. The continuous attack that hits Autoweb exploited susceptibility in a single line of code in the web application to cut through the company’s Microsoft SQL database and knock the site offline. Autoweb’s IT staff then realized that database tables which stores content provided by car dealers had been overwritten with a 30-character script and that gave them a window of opportunity. Autoweb blocked the attacks by looking at log files which originated from IP addresses in China. Autoweb did an everyday backing up and asked assistance from Secerno, a U.K. based firm to build a database security appliance.

by: Djai Tanji

ScanSafe offers a “Web Security as a Service” when report presents state of global information security threats. This offer by ScanSafe provides a managed service which means that there is nothing for customers to install or maintain on-premise, routing its clients’ web traffic by secure proxies to scan content in real-time that will secure them from malware and also give a way for them to impose acceptable web usage policies. They were able to scan more than 80 billion web requests and blocked more than 800 million web threats in 2007 on behalf of corporate customers in more than 50 countries. And password stealing malware was the most frequent type of attacks in the blocked events which was about 37% of total attacks.

by: Djai Tanji

When you connect to the internet, IP address will be used to identify your PC which means that your IP address is public. So if you do not use security, your IP address will be used to access your computer from the outside world. Bad news is, if you have a fixed IP address, internet crackers can have a lot of time to search for entrances in your computer and have access to your unprotected private data. But if you are using a modem with a dial-up connection, you will get new IP addresses each time you connect to the net. DSL and internet cables are mere samples of fixed internet connections.