HNS Newsletter Issue 100 - 04.03.2002 http://net-security.org http://security-db.com This is a newsletter delivered to you by Help Net Security. It covers weekly roundups of security events that were in the news the past week. Visit Help Net Security for the latest security news - http://www.net-security.org. Subscribe to this weekly digest on: http://www.net-security.org/text/newsletter Archive of the newsletter in TXT and PDF format is available here: http://www.net-security.org/news/archive/newsletter Table of contents: 1) General security news 2) Security issues 3) Security world 4) Featured products 5) Security software ====================================================== Free Webshield e500 Info Kit ====================================================== Configure and forget with McAfee Webshield e500 appliance, scan all potential virus-carrying protocols, even POP3. McAfee's Webshield e500 makes gateway defense instant. ====================================================== Click for more - http://www.net-security.org/ad/nai ====================================================== General security news --------------------- ---------------------------------------------------------------------------- FIREWALLS VS. THE BAD GUYS Personal firewall applications are the computing world's equivalent of car alarms. They're often intrusive and annoying, and sometimes even embarrassing to your neighbors - but they're also indispensable if you have any "always-on" Internet connection. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.washingtonpost.com/wp-dyn/articles/A55851-2002Feb23.html CAFE OWNERS OR PORN POLICE? Cybercafe proprietors in Mumbai are angry over a proposal that would make them responsible for keeping track of websites viewed by customers. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.wired.com/news/politics/0,1283,50615,00.html KEEPING DATA AWAY FROM THE PUBLIC EYE Apart from a hefty increase in federal IT security spending in the coming year, the single most important tool the Bush administration wants to create to promote a safer Internet is a Freedom of Information Act exemption for enterprises willing to share cyber-security data with the government. However, if such a carve-out to the safeguard against undue government secrecy is to pass Congress this session, it will likely have to be defined much more narrowly than the versions of the legislation currently circulating. Link: http://www.eweek.com/article/0,3658,s=712&a=23143,00.asp HIDING SECURITY BUGS Technology firms are wrestling with ways to spread information about security bugs without alerting vandals to their presence before they are fixed. This week the net's engineering thinktank floated a proposal to limit the initial audience for vulnerabilities to security professionals and the company making the at-risk software. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://news.bbc.co.uk/hi/english/sci/tech/newsid_1839000/1839931.stm COMPANIES ANNOUNCE HARDWARE-BASED SECURITY TECHNOLOGY Technology providers are adopting methods of embedding security features into microprocessors and other hardware, with several announcements made at the RSA Conference. Link: http://www.varbusiness.com/sections/news/dailyarchives.asp?ArticleID=33551 THE REVENGE OF TINFOIL HAT SlashDot recently featured a thread about a small Linux distribution, called TinFoil Hat Linux, that can be booted from a single floppy. Its main purpose is to be used as a safe ground for using GNU Privacy Guard (gnupg) on non-secure computers. The rather interesting distribution has also some other "paranoid" options. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.evilmutant.com/stuff/tinfoil/ STEVE GIBSON INVENTS BROKEN SYNCOOKIES He dares to call it "GENESIS" (Gibson's ENcryption-Enhanced Spoofing Immunity System). He dares to call it "Beautiful and Perfect." It's the product of "Three Key Innovations" for which he takes credit and which culminate in an "Encrypted Token," which is another way of saying a "SYNcookie", a quite useful thing developed by Dan Bernstein and Eric Schenk back in 1996. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.theregister.co.uk/content/55/24189.html SECURITY: THE BUSINESS CASE - ALTERNATIVES No organisation of any size can exist without some form of IT security, any more than it can exist without a basic administrative capability or procedures for keeping financial records. Nobody takes seriously the crossed fingers approach to security. Link: http://www.it-director.com/article.php?id=2635 MORE OPTIONS FOR SECURE COLLABORATION CIOs exploring solutions for secure collaboration have many options, and it can often be difficult to narrow the choices. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.zdnet.co.uk/news/specials/2000/10/enterprise/techrepublic/2002/08/article004.html GONG LI SHEDS LIGHT ON SUN'S SECURITY When Bill Gates announced to the world that his company would be taking security "seriously", Scott McNealy, the CEO of Sun Microsystems, wryly commented that he would have been embarrassed if he had had to remind his programmers to think about security. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://industry.java.sun.com/javanews/stories/story2/0,1072,43062,00.html SECURITY IN 2002 WORSE THAN 2001 If you thought computer security was bad in 2001, you're not going to enjoy 2002. That was the message from SecurityFocus co-founder and CEO Arthur Wong in a presentation he gave at the RSA Conference 2002. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.cnn.com/2002/TECH/internet/02/25/2002.security.idg/index.html IT SHOPS BALANCE SECURITY, PRIVACY The threat of terrorist attacks on corporate America has done more than fuel a new market in homeland security technologies. It has also forced companies and vendors to make privacy a priority. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.computerworld.com/storyba/0,4125,NAV47_STO68593,00.html BUFFER OVERFLOW IN MICROSOFT INTERNET EXPLORER Microsoft Internet Explorer contains a buffer overflow vulnerability in its handling of embedded objects in HTML documents. This vulnerability could allow an attacker to execute arbitrary code on the victim's system when the victim visits a web page or views an HTML email message. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.cert.org/advisories/CA-2002-04.html THE NEXT BIG VIRUS: HOW CAN WE PREPARE OURSELVES? As e-mail programs become more secure, virus writers are coming up with new ways to infect your computer. Chances are, the next epidemic will use some of these tricks. So how can you protect yourself? Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.zdnet.com/anchordesk/stories/story/0,10738,2850769,00.html NEW YORK TIMES INTERNAL NETWORK HACKED How open proxies and default passwords led to Adrian Lamo padding his rolodex with information on 3,000 op-ed writers, from William F. Buckley Jr. to Jimmy Carter. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://online.securityfocus.com/news/340 FAITH IN E-GOVERNMENT TEMPERED BY SECURITY CONCERNS Americans say E-government has a positive effect on the way government operates, but they're worried about system vulnerabilities. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.informationweek.com/story/IWK20020226S0007 CORPORATE SECURITY ON THE INTERNET Before you spend thousands of dollars on security software and hardware, take some time to plan your security strategy, how you are going to enforce security within your organization and identify some good practices that can be followed. These will help reduce the number of backdoors into your environment. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.newsviews.info/techbytes02.html USING APACHE TO STOP BAD ROBOTS For just about as long as the commercial Internet has existed, SPAM email has been the bane of users worldwide. The harder and harder we try to fight the spammers and keep our email addresses out of their hands, the smarter they get and the harder they fight back. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://evolt.org/article/Using_Apache_to_stop_bad_robots/18/15126/index.html IT SECURITY COOKBOOK NOW AVAILABLE Over the past five years, Sean Boran has put together what has become the most comprehensive online Internet security resource available. LinuxSecurity recently had an opportunity to chat with the author, talk about its new home at LinuxSecurity.com, and a few words about the resource itself. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.linuxsecurity.com/feature_stories/itcookbook-feature.html SNIFFERS: WHAT THEY ARE AND HOW TO PROTECT YOURSELF This article offers a brief overview of sniffers, including what they do, how they work, why users need to be aware of them, and what users can do to protect themselves against the illegitimate use of sniffers. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://online.securityfocus.com/infocus/1549 SECURITY SUPPLIERS COMPARED TO DODGY CAR MECHANICS Many anxious users are being duped by unscrupulous or clueless suppliers into buying security products they don't need. That's the view of security consultancy MIS Corporate Defence, which reckons almost 30 per cent of current security spend in Europe is misplaced or wasted on ad-hoc purchases. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.theregister.co.uk/content/55/24211.html WEB TUNES SOUND A SECURITY ALARM You could get a worm along with a song played on a number of popular Internet media players, including Windows Media Player or RealPlayer. That's because the players provide the ability to embed Web addresses and scripts - key ingredients in self-propagating, hostile code. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://zdnet.com.com/2100-1104-846051.html DEF CON 10 CALL FOR PAPERS Papers and presentations are now being accepted for DEF CON TEN, the largest "hacking" convention on the planet. Papers and requests to speak will be received and reviewed from now until July 1st. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.defcon.org/html/dc10/defcon-10-cfp.html THE BLACK HAT BRIEFINGS USA CALL FOR PAPERS Papers and presentations are now being accepted for The Black Hat Briefings USA 2002 event in Las Vegas, July 29th - August 1st, 2002. Papers and requests to speak will be received and reviewed from March 1st until May 1st. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.blackhat.com/html/bh-usa-02/bh-usa-02-cfp.html IN A LATHER ABOUT SECURITY This week the XML-Deviant attempts to pick apart the strands of a lengthy XML-DEV debate on web services security. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.xml.com/pub/a/2002/02/27/security-lather.html XMLHTTP CONTROL CAN ALLOW ACCESS TO LOCAL FILES A flaw exists in how the XMLHTTP control applies IE security zone settings to a redirected data stream returned in response to a request for data from a web site. A vulnerability results because an attacker could seek to exploit this flaw and specify a data source that is on the user's local system. The attacker could then use this to return information from the local system to the attacker's web site. Link: http://www.microsoft.com/technet/security/bulletin/MS02-008.asp WHY PASSWORDS WILL ALWAYS BE A PAIN Storing your passwords on a tiny device might sound like a godsend. After all, it's more secure than password-management software or tokens - and it's affordable. But Wayne still isn't satisfied. Here's why. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.zdnet.com/anchordesk/stories/story/0,10738,2851193,00.html SOFTWARE "TIME BOMBER" GOES TO PRISON Timothy Allen Lloyd, 39, was sentenced to prison Wednesday for concocting a computer "time bomb" that deleted programs on his former employer's computer network 20 days after he left high-tech measurement company Omega Engineering. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://news.com.com/2100-1023-846784.html REVIEW OF GLMAIL, A HIGHLY SECURE LINUX E-MAIL SERVER As with any Unix-type software package, GLMail offers considerable advantages in security and stability that set it apart from other mail servers. GLMail runs on many different distributions of Linux; there are even versions of the software for Win32 and Solaris machines. GLMail also supports the majority of standard e-mail and support protocols in existence today. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://serverwatch.internet.com/reviews/mail-glmail.html WOZ BLESSES CAPTAIN CRUNCH'S NEW BOX John Draper is soon to debut the fruits of recent labors: a box designed to thwart hackers. The new CrunchBox is a dedicated Pentium III system, running a tweaked version of the secure OpenBSD operating system, and it fits in a 1U rack shelf. It uses the popular Snort IDS, but with added custom-written heuristics. New exploits can be identified, and authenticated rules sent back to the box within half an hour, Crunch tell us. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.theregister.co.uk/content/55/24239.html HACK A PC, GET LIFE IN JAIL A House panel voted unanimously to make some forms of illegal computer intrusions a crime punishable by life in Club Fed. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.wired.com/news/politics/0,1283,50708,00.html TRAVELERS SUPPORT ID CARDS, SHARING INFO While the government and aviation officials have gone to great lengths to bolster travel security, the U.S. public seems prepared to embrace even more extreme measures to ensure safety, according to a survey. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.idg.net/ic_822402_5055_1-2793.html IP ROUTING 101: INTERIOR GATEWAY PROTOCOLS Because routing protocols determine the path of IP packets, they also dictate whether packet delivery is timely or even successful. As a result, these services also control how well the higher-layer protocols, like TCP and SMTP, perform or if they are instead encumbered by lost packets, slow delivery, duplicate datagrams or any of the other problems that can result from routing troubles. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.networkcomputing.com/1304/1304f4.html GRSECURITY This article will discuss the grsecurity patches available for the Linux kernel. Grsecurity is a suite of patches for the Linux kernel that are an attempt to improve the security of a Linux system. Grsecurity is based on a port of some previous patches for the Linux 2.2 kernel, including Openwall and PaX, which have never been ported to the 2.4 kernel. Grsecurity provides some updates to these patches and has been ported to the Linux 2.4 kernel. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://online.securityfocus.com/infocus/1551 OPENSSH KEY MANAGEMENT, PART 3 In this third article in a series, Daniel Robbins shows you how to take advantage of OpenSSH agent connection forwarding to enhance security. He also shares recent improvements to the keychain shell script. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www-106.ibm.com/developerworks/linux/library/l-keyc3 CORPORATES SIGN UP FOR COMPUTER FORENSICS TRAINING A growing number of businesses are choosing to do their own research into cybercrime rather than go to the police, and are signing up for forensics training to help them uncover employee misdeeds and security breaches, according to Guidance Software. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.idg.net/ic_822829_5055_1-2793.html SECRET DISNEY COMPANY INVESTS IN SECURITY A secret venture capital arm, started by The Walt Disney Company, has made its first investment - $2m in Gilian Technologies, a provider of web content security solutions. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.vnunet.com/News/1129620 ALL QUIET ON THE MALWARE FRONT Incidents of email-borne viruses were markedly down last month but old favourites like SirCam and BadTrans-B are refusing to die a decent death. That's according to monthly statistics from managed services firm MessageLabs, which stopped 135,523 viruses in February, compared to 241,609 in January and almost 480,000 last December. Link: http://www.net-security.org/cgi-bin/news.cgi?url=http://www.theregister.co.uk/content/55/24254.html ---------------------------------------------------------------------------- ======================================================== Sponsored by GFI, the developers of a revolutionary new intrusion detection product - LANguard Security Event Log Monitor. Download your copy! http://www.net-security.org/cgi-bin/ads/ads.pl?banner=gfitxt ======================================================== Security issues --------------- All vulnerabilities are located at: http://net-security.org/text/bugs ---------------------------------------------------------------------------- CNET CATCHUP ARBITRARY CODE EXECUTION The main problem is that the filename need not end in '.html'. It is possible for an attacker to craft an RVP file which will create any file, for example .BAT or .VBS, and deliver it to the user through the web or e-mail. When the scan completes - or straight away, if the RVP specifies no scanning commands - the malicious file will be opened. If a DDE-compliant web browser window is open at the moment it should prompt the user to save or open the file as usual. If, however, no browser is open, Windows will execute the file without further confirmation, allowing the attack to run arbitrary code. Link: http://www.net-security.org/text/bugs/1014649292,7544,.shtml XMB CROSS SCRIPTING VULNERABILITY XMB is a php-based forum. This product contain a Cross Site Scripting vulnerability that allows attackers to insert JavaScript code (and other HTML code) into existing messages, bypassing the internal JavaScript/ HTML code stripper. Link: http://www.net-security.org/text/bugs/1014649312,69873,.shtml ESSENTIA WEB SERVER DOS VULNERABILITY Essentia Web Server is subject to a denial of service. Submitting a request of unusual length to the host will cause the server to crash. A restart is required in order to gain normal functionality. Link: http://www.net-security.org/text/bugs/1014649335,62596,.shtml ESSENTIA WEB SERVER DIRECTORY TRAVERSAL VULNERABILITY Adding the string "/../" to an URL allows an attacker to view and download any file on the server. Link: http://www.net-security.org/text/bugs/1014649356,27014,.shtml DOS ATTACK AGAINST MANY RADIUS SERVERS There was a report recently to the maintainers of FreeRADIUS of a DoS attack against it. For background, FreeRADIUS is a free software RADIUS authentication, authorization, and accounting server. Link: http://www.net-security.org/text/bugs/1014649385,66669,.shtml ANTI VIRUS MAILSCANNERS DENIAL OF SERVICE An antivirus mailscanner should check the filesizes inside a compressed file like .tar.gz, .zip, .bz2, etc, BEFORE open the file for scanning. All the products that doesn't do that checking are vulnerable to a Denial Of Service attack. Link: http://www.net-security.org/text/bugs/1014735007,96117,.shtml SYMANTEC LIVEUPDATE CLEAR TEXT PASSWORD Norton Antivirus Corporate Edition includes LiveUpdate. LiveUpdate stores Username and Password information in cleartext in the registry. Depending on your implementation, you may not need LiveUpdate installed at all on your clients. Link: http://www.net-security.org/text/bugs/1014735046,23690,.shtml SCRIPTEASE:WEBSERVER EDITION VULNERABILITY Any user can read files on server using one of example scripts: comment2.jse. Systems affected: Linux, Novell Netware, Windows 9x/NT/2k. Link: http://www.net-security.org/text/bugs/1014735110,91777,.shtml BADBLUE DIRECTORY TRAVERSAL VULNERABILITY The problem lies in the fact that the BadBlue server filters the "./" combination out of urls to prevent directory traversal attacks. In doing so however, it leaves open a window of exploitation for variations of these characters, which are not correctly removed from input. Link: http://www.net-security.org/text/bugs/1014821504,71232,.shtml SPECIAL DEVICE ACCESS IN THE BAT! The Bat! has special device access bug. If The Bat! is configured to save attachment apart from message bodies and file has a name of special device The Bat! will attempt to open special device. Link: http://www.net-security.org/text/bugs/1014890275,53802,.shtml BPM STUDIO PRO 4.2 DOS DEVICE VULNERABILITY When you perform a simple http request like: http://BPM-HOST/con/con you can crash instantly non-patched Win9x host with a simple Blue Screen! Link: http://www.net-security.org/text/bugs/1014890302,70125,.shtml PHP REMOTE VULNERABILITIES We found several flaws in the way PHP handles multipart/form-data POST requests. Each of the flaws could allow an attacker to execute arbitrary code on the victim's system. Link: http://www.net-security.org/text/bugs/1014890324,52849,.shtml NCIPHER SECURITY ADVISORY - SNMP VULNERABILITIES SNMP agents supplied by nCipher, as well as those required to run other nCipher SNMP aupport software, could be vulnerable to buffer overflow attacks including denial of service and privilege elevation. Link: http://www.net-security.org/text/bugs/1014992269,67176,.shtml NOVELL GROUPWISE WEB ACCESS PATH DISCLOSURE If an attacker submits a web request containing unexpected arguments for script variables, an error message will be displayed containing the path to the webroot directory of the server running the GroupWise Web Access. Link: http://www.net-security.org/text/bugs/1014992339,58123,.shtml DCP-PORTAL SYSTEM INFORMATION AND PATH DISCLOSURE A vulnerability exists in Dcp-Portal, which could allow any remote user to view the full path to the web root. Link: http://www.net-security.org/text/bugs/1014992527,6856,.shtml HP PROCURVE 4000M NMAP DENIAL OF SERVICE nmap portscans cause a DoS on the HP ProCurve 4000M Ethernet switch. Depending on the version of firmware, after portscanning the management IP address of the switch it is no longer possible to use telnet to manage the device. However, the switch continues to process ICMP messages and SNMP PDUs normally, and frames switched by the device also appear unaffected. Link: http://www.net-security.org/text/bugs/1015105370,97710,.shtml ---------------------------------------------------------------------------- ======================================================== HNS Security Database ======================================================== HNS Security Database consists of a large database of security related companies, their products, professional services and solutions. HNS Security Database will provide a valuable asset to anyone interested in implementing security measures and systems to their companies' networks. Visit us at http://www.security-db.com ======================================================== Security world -------------- All press releases are located at: http://net-security.org/text/press ---------------------------------------------------------------------------- FISERV ACHIEVES RENEWED TRUSECURE CERTIFICATION TruSecure Corporation, a leading managed security services provider (MSSP) that improves and maintains enterprise information security health through a comprehensive preventative program, today announced that Fiserv, a leader in technology for the financial industry, has again completed the necessary requirements to achieve TruSecure Corporation's Service Provider Core Infrastructure Certification. This annual certification program validates Fiserv's competence in securing client and customer information. Press release: < http://www.net-security.org/text/press/1014649543,70948,.shtml > ---------------------------------------------------------------------------- NETOCTAVE TO INTEGRATE NSP3200 SECURITY PROCESSOR WITH NEW INTEL IXP2800 AND IXP2400 NETWORK PROCESSORS TO DELIVER SECURE NETWORK TRAFFIC NetOctave, Inc., a leading developer of security processors and security accelerator boards for the SSL, IPsec, and IP Storage markets, announced that it will provide reference designs that integrate NetOctave's NSP3200 Security Processor with the new Intel IXP2800 and IXP2400 Network Processors and enable developers to create protected VPN systems running at Gigabit Ethernet and OC-48 rates. The integration of NetOctave's NSP3200 Security Processor with Intel's IXP2400 Network Processor will enable network and communications equipment OEMs to offer high-speed IPsec-enabled products at a reasonable cost and with minimal integration effort. Press release: < http://www.net-security.org/text/press/1014816588,45995,.shtml > ---------------------------------------------------------------------------- POSITIVE EBIT RESULT IN Q2 BY SALES INCREASE AND COST REDUCTION Despite difficult market conditions, Utimaco Safeware showed successes in the last quarter of the current fiscal year 2001/2002. After a weak first quarter (EUR 5.9 million), sales revenues increased considerably to EUR 10.7 million in the second quarter. Compared to the same quarter in the previous year (EUR 9.8 million), revenues increased by 9%. The revenue for the half year equalled EUR 16.6 million (previous year: EUR 17.8 million). Press release: < http://www.net-security.org/text/press/1014816662,47448,.shtml > ---------------------------------------------------------------------------- GFI UPGRADES LANGUARD NETWORK SCANNER, A SECURITY AUDIT TOOL FOR WINDOWS NETWORKS GFI, a global provider of email and network security tools, announced the release of LANguard Network Scanner 2.0, a commercial and freeware tool for conducting security audits on Windows-based networks. The $99 commercial edition offers an exclusive new feature permitting administrators to compare consecutive scan results for instant identification of new security holes. Both versions also have a variety of other upgrades, including the ability to detect known network vulnerabilities in areas such as HTTP, FTP and SMTP services. Press release: < http://www.net-security.org/text/press/1014816731,27234,.shtml > ---------------------------------------------------------------------------- MCAFEE.COM AGGRESSIVELY EXTENDS CUSTOMER ACQUISITION EFFORTS BY OFFERING WEB SERVICES THROUGH SYSTEM AGGREGATORS McAfee.com, a leading provider of Web security services, announced that it has signed agreements with a number of system aggregators in an effort to offer its services more widely to consumers. Aggregators will sublicense and distribute McAfee.com's products on CD-ROM for use in promotions, affinity offers, bundles and other alternative distribution programs. By providing its Web-based security services on CD-ROM, McAfee.com will now be able to offer its services to tens of thousands of additional customers at one of several major retail outlets when they purchase new PCs. Press release: < http://www.net-security.org/text/press/1014890638,40108,.shtml > ---------------------------------------------------------------------------- MCAFEE.COM TEAMS WITH POLARITY TO EXTEND SECURITY SERVICES OFFERING TO OFFLINE CONSUMERS McAfee.com, a leading provider of Web security services, announced an agreement with Polarity Inc., a specialized promotion and distribution company, to develop bundling, promotions, and alternative software distribution programs for consumers. Programs will be developed to reach consumers through traditional PC industry distribution channels as well as through alternative distribution channels such as grocery, cellular, and travel. This business relationship is a continuation of the company's initiative to further extend McAfee.com services to the over 70 million PC users in the US. Press release: < http://www.net-security.org/text/press/1014890686,62343,.shtml > ---------------------------------------------------------------------------- BRITNEY FEARS: VIRUS COULD DRIVE YOU CRAZY, WARNS SOPHOS Sophos, a world leader in corporate anti-virus protection, is warning users about a new worm that can spread by clicking on an attachment pretending to be photographs of pop princess Britney Spears. Press release: < http://www.net-security.org/text/press/1014992890,90999,.shtml > ---------------------------------------------------------------------------- TOP TEN VIRUSES REPORTED TO SOPHOS IN FEBRUARY 2002 This is the latest in a series of monthly charts counting down the ten most frequently occurring viruses as compiled by Sophos, a world leader in corporate anti-virus protection. Press release: < http://www.net-security.org/text/press/1014993015,42817,.shtml > ---------------------------------------------------------------------------- KASPERSKY LABS - THE VIRUS TOP TWENTY FOR FEBRUARY 2002 The numbers represent the percentage of infections caused by certain malicious programs in the overall number of virus incidents reported to Kaspersky Labs during February 2002. Press release: < http://www.net-security.org/text/press/1014993087,77099,.shtml > ---------------------------------------------------------------------------- HARD DISK ENCRYPTION IMPROVES LAPTOP SECURITY UNDER WINDOWS XP In the run-up to CeBIT 2002, Utimaco Safeware is launching a new version of its SafeGuard Easy encryption solution for the Windows XP platform. Utimaco Safeware's tried and tested flagship product is particularly designed to protect laptops from unauthorised access and manipulation of their configuration or covert reading of their data. Working almost invisible and insuperable, SafeGuard Easy guarantees that mobile Windows XP users are ensured security for their sensitive information. This security is provided by lightning-fast initial encryption and invulnerable algorithms. Press release: < http://www.net-security.org/text/press/1014993362,22642,.shtml > ---------------------------------------------------------------------------- ======================================================== Help Net Security T-Shirt available ======================================================== Thanks to our affiliate Jinx Hackwear we are offering you the opportunity to wear a nifty HNS shirt :) The image speaks for itself so follow the link and get yourself one. Get one here: http://207.21.213.175:8000/ss?click&jinx&3af04db0 ======================================================== Featured products ------------------- The HNS Security Database is located at: http://www.security-db.com Submissions for the database can be sent to: staff@net-security.org ---------------------------------------------------------------------------- KEYTOOLS S/MIME KeyTools S/MIME is a high-level cryptographic library, which allows developers to add full strength security to any messaging application. Written by Baltimore, KeyTools S/MIME provides advanced yet easy to use features to add strong security to applications which involve sensitive data exchange. Its API offers high-level functions to offer confidentiality, integrity, authentication and non-repudiation. KeyTools S/MIME enables security based on the IETF S/MIME standard, the de facto standard for Internet email security. Read more: < http://www.security-db.com/product.php?id=35 > This is a product of Baltimore Technologies, for more information: < http://www.security-db.com/company.php?id=9 > ---------------------------------------------------------------------------- CERTCO RMX CertCo RMX is the world´s first comprehensive risk management exchange, enabling customers of online business-to-business (B2B) exchanges to manage the risks associated with conducting high value transactions over open networks. Despite projected explosive growth - Jupiter Communications anticipates online trade will reach $6 trillion in 2005, and that online exchanges will account for $2.1 trillion of this amount - risk management and security issues remain significant barriers to B2B e-commerce. Read more: < http://www.security-db.com/product.php?id=378 > This is a product of Certco, for more information: < http://www.security-db.com/company.php?id=79 > ---------------------------------------------------------------------------- CIPRO- CLIENT cIPro- client is a full service IPSec encryption package for remote users and telecommuters. It allows traveling business people or employees working from home to communicate securely with their corporate networks using any Windows 95/ 98/ NT communications software. The cIPro- client provides full IPSec encryption capabilities for any TCP/ IP application, over any LAN/WAN media, using standard network interface cards (NICs). Read more: < http://www.security-db.com/product.php?id=704 > This is a product of RADGUARD, for more information: < http://www.security-db.com/company.php?id=155 > ---------------------------------------------------------------------------- Security Software ------------------- All programs are located at: http://net-security.org/various/software ---------------------------------------------------------------------------- WIMP? Wimp? (Where is my password?) is a password manager for Gnome. It uses the OpenSSL encryption library to encrypt passwords with the Blowfish encryption algorithm. It allows you to encrypt your passwords using a single passphrase and save those to disk. Info/Download: < http://www.net-security.org/various/software/1014808423,21464,linux.shtml > ---------------------------------------------------------------------------- SNSCAN V.1.04 SNScan is a Windows based SNMP detection utility that can quickly and accurately identify SNMP enabled devices on a network. This utility can effectively indicate devices that are potentially vulnerable to SNMP related security threats. Info/Download: < http://www.net-security.org/various/software/1014809082,97388,windows.shtml > ---------------------------------------------------------------------------- 4SAFE STRONGDISK 2.9 4Safe StrongDisk 2.9 allows you to encrypt and store your data on protected disks. You can encrypt documents, tables, or databases, and you can access the data directly from the protected disks with a special password and/or key. The content of a protected disk is physically stored in a common file, allowing you to easily make backup copies and send them over the Internet. 4Safe StrongDisk also includes Data Burner (a shredder) and Secure Shutdown (for Windows 9x/ME), both of which are designed to prevent data leakage through multiple holes in Windows security. Info/Download: < http://www.net-security.org/various/software/1014809280,83986,windows.shtml > ---------------------------------------------------------------------------- Questions, contributions, comments or ideas go to: Help Net Security staff staff@net-security.org http://net-security.org http://security-db.com