by: Djai Tanji

McAfee and Yahoo announced their partnership on Web’s security wherein Yahoo’s search engine is making available to users the warnings about unnecessary and malicious code on Web sites that will be detected through McAfee’s security technology. McAfee calls the technology, SiteAdvisor and this has been integrated into Yahoo’s search engine mechanism making a user, after performing a search, obtain the flagged sites after clicking “searchscan.” However, no Yahoo advertisers will be picked up and flagged in the SiteAdvisor. The yahoo security warning system does not block users from accessing the page but will recommend to avoid the flagged content. With all this preclusion of users from visiting malicious websites, yahoo will lessen the channels obtainable for spam, adware, malware and phishing to spread.

Posted in Information No Comments »

by: Djai Tanji

The substantial SQL injection attacks that struck Microsoft-based websites claimed as one of its victims Autoweb which is a U.K. based advertising and marketing site. The continuous attack that hits Autoweb exploited susceptibility in a single line of code in the web application to cut through the company’s Microsoft SQL database and knock the site offline. Autoweb’s IT staff then realized that database tables which stores content provided by car dealers had been overwritten with a 30-character script and that gave them a window of opportunity. Autoweb blocked the attacks by looking at log files which originated from IP addresses in China. Autoweb did an everyday backing up and asked assistance from Secerno, a U.K. based firm to build a database security appliance.

Posted in Information No Comments »

A man is convicted to serve five years in jail after being convicted of being the creator of a botnet that had in it’s peak infected almost half a million computers, spreading spam and adware. The man, Jeanson James Ancheta at a young age of 21 is set to serve a total of 57 months in prison, which is considered to be one of the the longest ever sentence for computer crimes. He drew the curiosity of government cyber-security people when he tried to infiltrate computers owned by the US Naval Warfare Center and the Defense Information Systems Agency, both of which were being constantly attacked by hackers and botnets. Please tell me more! »

Posted in Information, Network Security No Comments »

The software giant announced that it will be releasing their own Windows embedded anti-virus that raises some eyebrows in the IT industry. Why, well the company has been known to be the most attacked PC platform on earth compared to other operating systems due to their ways of old. This hatred of the company stems back from the days when Microsoft was involved in what can be called “steal then deal”, when they were involved in getting nifty software form the many start up firms who produced respectable programs they embedded within their OS releases. This is sure to result in lawsuits which the company then opted to settle out of court, buying out the rights and even the company in a hostile take-over. Please tell me more! »

Posted in Information, Network Security, Threats No Comments »

Meanwhile, the cure the anti-virus programmers are not always perfect, so it can be considered a first response which may not fully contain the situation. This is where people make the biggest mistake in their security platform, that the programs they have installed are there to protect and prevent whilst the truth cannot be farther from the truth for the infection has already been active, way before it was detected. The follow-up security updates to security software makes the necessary adjustments enough to cope with the spread, halting it in it’s track, hopefully. The false security we feel works only if the threat is known which is true for variants of already known threats. New viruses are only known as much as the programmers who race to find a cure for it can work. Please tell me more! »

Posted in Information No Comments »

The world of cyber-crime has grown so much in these past few years due to the explosion of growth with respect to the number of internet users the world over. It has not only expanded on the side of normal people but on the side of cyber-criminals who now operate on their own networks, spanning the globe and ready to spread their products, malicious code that first scans the globe for weak points in the security net that we all put up to somewhat give us a sense of security from the ever-growing threat which is actually futile to some extent. Please tell me more! »

Posted in Hacks, Information, Network Security, Threats No Comments »

The much known Conficker worm has been in the sights of the many web security experts since it was discovered a few years back. It has evolved and changed the way it works and is assured to be once again in the hot-list this coming April Fools which is the hard-coded zero day for the said malware. What it’s going to do, nobody knows for there has been no solid proof of the intent of the makers of the famed worm. Many people on the internet have been trying to reverse engineer the program but that’s as far as they get, the location and name of it’s master not included in the code. Please tell me more! »

Posted in Information, Threats No Comments »

Image Source: identity20.com

To protect yourself from phishers, there is an easy way that offers reliable phishing scams detection. Netcraft is one. It focuses on tracking down online technology. It is a toolbar available in Internet Explorer and Firefox. And it has a great community for user support. It protects you from phishing attacks. Another tool bar that offers phishing protection is the Yahoo Toolbar. You can rest assured your Paypal and eBay accounts are safe. And the number one way of prevention of phishing attacks is by doing away with greed. Greed for money or to make lot of them makes our senses lose its focus and we tend to separate ourselves from the reality. The phishers use this fault to get past our common sense. Check you emails and read them carefully. Analyze the content. If its too good to be true then don not at any time entertain or respond to it. It is best to check on the main website of an account or bank rather than clicking on the links provided in the email, if you get important advisories from your accounts. There is no gold at the end of the rainbow and certainly, you will not win a lottery if you did not buy a ticket in the first place. So beware and never put your greed in the front.

Posted in Information No Comments »

Image source:www.youtubeic.com
Remember what your computer teachers or anyone good enough, told you not to tell your “secret words” (Meaning, not just your passwords) to anyone? Well, some hackers send malicious softwares or malwares to capture your keystrokes, copy your precious data, or even control your computer to hack another person. Okay, maybe you know about that too, and even the “hackers use websites for these purposes” thing. But! Did you know that Youtube is not that different from these sites? That’s right. Youtube has these links, and you might just open these things since these links looks trust worthy, and your “friend” sent this link. In short, Youtube is not different from Myspace now. Well, to save yourself from these hackers, just use the search engine in Youtube, or if the link is not in youtube, copy the link and paste it to yahoo or google, and their protection might show the true face of that page. But if you think that its such a hassle, then just don’t open it.

Posted in Hacks, Info, Information, Network Security, Prevention No Comments »

by: Djai Tanji

Google is now adding Web security for net surfing and remote workers to its Google Apps set of office tools. Google Web Security for Enterprise comprising real time malware protection and URL filtering with policy implementation and reporting and this was made possible by Postini, which was last year’s acquisition of security vendor. There is an additional feature that extends the same protections to users who works remotely on laptops in cafes, hotels, restaurants and guest networks. This allows companies to protect their networks from Web-based malware , implement internet use policies at the user, company level and workgroup, and Google Web security will receive comprehensible reporting on all web activities.

Posted in Information No Comments »