HNS Newsletter
Issue 234 - 11.10.2004.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It
covers weekly roundups of security events that were in the
news the past week.


----------------------------------------------------------------
Information Management Network Presents The European Cyber 
Security in the Financial Services Sector Executive Summit &
The European Summit on Wireless Technology for Financial 
Institutions November 30 - December 1, 2004 * London
----------------------------------------------------------------
Sessions target systems technology professionals, lawyers, 
business continuity professionals, compliance officers and 
auditors at banks, brokerages, funds, asset managers, building 
societies and insurance companies, as well as their cyber 
security advisors and vendors. For additional information, 
please go to http://www.imn.org/a684/nse
----------------------------------------------------------------


Table of contents:

1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Reviews
6) Software
7) Webcasts
8) Conferences
9) Security World
10) Virus News


[ Security news ]


----------------------------------------------------------------

US CYBERSECURITY CZAR QUITS
US cybersecurity czar Amit Yoran announced his resignation on Friday
after a year in the job.
http://www.net-security.org/news.php?id=6206


SURFCONTROL UNVEILS SECURITY APPLIANCE
Vendor to seek distribution as it enters the hardware arena.
http://www.net-security.org/news.php?id=6207


POLL SHOWS MOST AMERICANS CLUELESS ABOUT VIRUS RISKS
About one in three Americans think it's more likely they'll be
audited by the IRS or win the lottery than fall victim to a virus or
worm.
http://www.net-security.org/news.php?id=6208


MOBILE PHONE VIRUS GOES 'WILD'
First outbreak of Cabir reported in Singapore, says F-Secure.
http://www.net-security.org/news.php?id=6209


CALIFORNIA GOES AFTER SPYWARE
The Golden State passes a law aimed at cracking down on what some
feel is the internet's next scourge -- spyware. But critics say it's
only a partial step toward protecting consumers.
http://www.net-security.org/news.php?id=6210


THINKPAD WITH FINGERPRINT READER IS INTRODUCED
Hoping to drive biometric devices into the mainstream, IBM on Monday
unveiled its first ThinkPad that features an integrated fingerprint
reader that will work in tandem with an embedded security system.
http://www.net-security.org/news.php?id=6211


NET GIANTS ADOPT ANTI-SPAM SYSTEM
The fight against spam is getting more serious as the net's big
players impose conditions on bulk mail senders.
http://www.net-security.org/news.php?id=6212


AND THE SCAMS GO ON...
People continue to fall prey to phishing scams regularly.
http://www.net-security.org/news.php?id=6213


SUPER-CONNECTED USERS COULD AID IM WORMS
Just a few users connected to popular instant messaging networks can
cause the spread of worms, while choking off communications from
"highly connected" users with many IM correspondents can slow the
spread of worms, computer researchers say.
http://www.net-security.org/news.php?id=6214


BIOMETRICS VENDOR TARGETS SECURITY CONSCIOUS ENTERPRISES
This industry is growing very fast, and some analysts say it will be
worth US$2 billion within a couple of years.
http://www.net-security.org/news.php?id=6215


MICROSOFT PREVIEWS WINDOWS XP EMBEDDED WITH SP2
New features to strengthen security, deliver greater manageability
and fuel innovation.
http://www.net-security.org/news.php?id=6216


DECRU UNVEILS STORAGE SECURITY SOFTWARE
Decru announced a software module for its DataFort storage security
product that prevents unauthorized users, IT managers and viruses
from accessing network data.
http://www.net-security.org/news.php?id=6217


CONSUMERS UNCONCERNED ABOUT CYBERTHREATS
A study conducted by the National Cyber Security Alliance as part of
its Cyber Security Awareness Month found that many users grossly
underestimate the danger of cyber attacks. Three out of ten think
they are more likely to be struck by lightning than hit by hackers.
http://www.net-security.org/news.php?id=6218


IIS ROUNDS THE SECURITY CORNER
It used to be exciting to read the new Web server share numbers from
Netcraft every month. For a while there, Apache and Microsoft's IIS
(Internet Information Services) were really duking it out. But these
days, the survey has a look of obsolescence.
http://www.net-security.org/news.php?id=6219


OUTSOURCING FIRMS WARNED OF 'SIGNIFICANT COST OF SECURITY'
International enterprises cannot afford to ignore the potentially
serious IT security implications that arise when they decide to
outsource core business functions to third party providers, industry
analysts have warned.
http://www.net-security.org/news.php?id=6220


GAIM-ENCRYPTION: SIMPLE ENCRYPTION FOR INSTANT MESSAGES
Instant messaging is everywhere nowadays, but people who use it may
be surprised to know how trivial it is to listen in on their private
conversations.
http://www.net-security.org/news.php?id=6221


FUTURE WINDOWS COMPONENT COULD SPUR OLD-SCHOOL VIRUSES
A planned component for Longhorn is causing consternation among
antivirus experts, who say that the new module could give birth to a
whole new generation of viruses and remotely exploitable attacks.
http://www.net-security.org/news.php?id=6222


SECURE E-MAIL AND PKI: TOGETHER AT LAST?
New technology and increased regulatory pressures are breathing new
life into public key-based e-mail security.
http://www.net-security.org/news.php?id=6223


LESSONS LEARNED FROM VIRUS INFECTIONS
This article discusses how a virus outbreak will produce a few unique
opportunities to examine the health of an organization's network --
and learn ways to further harden the network from future automated
attacks.
http://www.net-security.org/news.php?id=6224


PRIVACY WATCHDOG CONDEMNS US VISIT
The United States' new biometric system of border controls violates
civil rights without delivering security, the head of the
London-based civil liberties watchdog Privacy International has
warned.
http://www.net-security.org/news.php?id=6225


NORTH KOREA'S COMPUTER HACKERS TARGET SOUTH AND US?
North Korea has trained as many as 600 computer hackers to be capable
of launching a cyber-war on South Korea, the US or Japan, South
Korea’s defence ministry said on Monday.
http://www.net-security.org/news.php?id=6226


SECURITY UPGRADE AT WIFI LOCATIONS
Starting today, users of wireless broadband should find it safer to
surf the Web from a T-Mobile HotSpot.
http://www.net-security.org/news.php?id=6227


MICROSOFT TAKES AIM AT MALWARE
Gates promises a cure for malicious software.
http://www.net-security.org/news.php?id=6228


SYMANTEC ATTACKS BACKUP WITH LIVE STATE RECOVERY
In an effort to include storage within its empire of security
products, Symantec Corp. announced that it is going after the backup
market with live state recovery software products that do
point-in-time snapshots of entire servers or desktops.
http://www.net-security.org/news.php?id=6229


WHO'S EAVESDROPPING ON YOUR CELL?
If you thought that your little chit chats on your mobile phones are
safe from eavesdropping, think again, as security experts have
revealed that the new generation of mobile phones are highly
vulnerable to hackers.
http://www.net-security.org/news.php?id=6230


SCHNEIER: SECURITY OUTSOURCING WIDESPREAD BY 2010
Bruce Schneier talks about the safety of open source vs. closed
source, the future of security management and spread of blogs.
http://www.net-security.org/news.php?id=6231


SUPPLY-CHAIN SECURITY WILL TAKE MORE THAN RFID
There's no single technology available to solve supply-chain security
problems. There's too much hype around RFID technology.
http://www.net-security.org/news.php?id=6232


HOUSE PASSES BILL IMPOSING HEFTY FINES OVER 'SPYWARE'
Companies and others that secretly install "spyware" programs on
people's computers to quietly monitor their Internet activities would
face hefty federal fines under a bill the House passed Tuesday.
http://www.net-security.org/news.php?id=6233


A HISTORY OF GLOBAL HACKING
Hacking is not a new problem nor is it isolated to one country.
http://www.net-security.org/news.php?id=6234


NEW SECURITY PRODUCTS 'ADAPTING' TO THREATS
Enterprises getting proactive about security.
http://www.net-security.org/news.php?id=6235


KEYS TO A SECRET NETWORK
Seclarity's SiNic combines hardware encryption and granular policy
management to lock down private LANs.
http://www.net-security.org/news.php?id=6236


HACKING BOOKS WITH SAFARI WEB SERVICES
For the past three years, Safari Books Online has been making offline
technical books available on the Web. This article shows you how to
get more out of this resource.
http://www.net-security.org/news.php?id=6237


ADOBE DOES DOCUMENT SECURITY
Electronic document giant Adobe said that it was partnering with
digital certificate company GeoTrust to provide technology that will
allow documents that use Adobe's popular PDF to be digitally
certified.
http://www.net-security.org/news.php?id=6239


MORE MOBILITY, MORE SECURITY ISSUES
New survey by Edge Research indicates top security issues include
regulatory compliance and remote/mobile access.
http://www.net-security.org/news.php?id=6240


CA BUYS NETEGRITY IN WEB SECURITY PLAY
In a deal that could expand its identity and access management (IAM)
portfolio, Computer Associates is buying software security developer
Netegrity for $430 million in cash.
http://www.net-security.org/news.php?id=6241


NEW TROJAN PROGRAM SQUASHES ADWARE
Downloader.Lunii delete files used by common adware programs, but is
not entirely benevolent.
http://www.net-security.org/news.php?id=6242


DRIVE-BY HACKERS GET RESIDENTS' HACKLES UP
The specter of drive-by computer hackers cruising upscale Scottsdale
neighborhoods to cherry-pick wireless Web systems has residents
worried about a new method of privacy intrusionv
http://www.net-security.org/news.php?id=6243


THE FUTURE OF INFOSEC
Because software is potentially infinitely foul-able it can be said
that it is also infinitely insecure.
http://www.net-security.org/news.php?id=6244


SECURITY CONCERNS PUT MSN MESSENGER BETA ON HOLD
Microsoft has suspended the beta testing of the next version of its
MSN Messenger client because of a potential security problem.
http://www.net-security.org/news.php?id=6245


HOWARD SCHMIDT - CSO AT EBAY - RETURNS TO GOVERNMENT
Howard Schmidt, a highly regarded technology executive who was former
special adviser to President Bush for cybersecurity, is returning to
work with the Homeland Security Department on efforts to protect the
nation's computer networks.
http://www.net-security.org/news.php?id=6246


UNDERSTANDING WINDOWS SECURITY TEMPLATES
A security template contains hundreds of possible settings that can
control a single or multiple computers.
http://www.net-security.org/news.php?id=6247


NOOMY.A VIRUS SPREADING VIA CHAT ROOMS
IRC users hoodwinked with promise of software cracks and Kournikova
screensavers.
http://www.net-security.org/news.php?id=6248


CA DELIVERS VIRUS PROTECTION FOR WINDOWS XP EMBEDDED
Computer Associates announced the general availability of eTrust
Antivirus for Microsoft Windows XP Embedded - the industry's first
virus protection solution designed specifically for Microsoft's
componentised version of the Windows XP operating system.
http://www.net-security.org/news.php?id=6249


ISPS NOT FORCED TO SECRETLY COOPERATE WITH THE FBI ANYMORE
A New York judge did the right thing last week when he threw out a
USA-PATRIOT Act provision that forced ISPs to secretly cooperate with
the FBI, and gave them no obvious avenue for appeal.
http://www.net-security.org/news.php?id=6250


IMPROVE SECURITY WITH WIRELESS
Anyone who says wireless networks are insecure just isn't paying
attention.
http://www.net-security.org/news.php?id=6251


WHAT YOU SHOULD KNOW ABOUT FIREWALLS
It's 2 a.m. Do you know what your PC is doing? If not, you're
probably not running a firewall to protect your system from hackers
and malcontents.
http://www.net-security.org/news.php?id=6252


SHIFTING CYBER THREATS MENACE FACTORY FLOORS
A new report says that external attackers have overtaken insiders as
the most likely cyber threat to remote-controlled factory equipment.
http://www.net-security.org/news.php?id=6253


CRYPTO-LOOPS
A loopback device is a very special device that allows you to mount a
normal file as it was a physical device. loopbacks can be encrypted:
this becomes very useful sometimes.
http://www.net-security.org/news.php?id=6254


A SIMPLE GUIDE TO SLIPSTREAMING WINDOWS XP SP 2
Slipstreaming a Service Pack, is the process to integrate the Service
Pack into the installation so that with every new installation the
Operating System and Service Pack are installed at the same time.
http://www.net-security.org/news.php?id=6255


DESKTOP FIREWALLS BRING SECURITY CLOSER TO HOME
Not just for the perimeter anymore, a firewall for your desktop can
help block and control hostile code and intruders from entering
machines on the LAN, in remote offices or on the road. Find out why
you need one.
http://www.net-security.org/news.php?id=6256


HOW TO INSTALL A SIMPLE NETWORK GATEWAY
This HOWTO is aimed at first time Linux users who want to set up a
Linux box as a gateway to the Internet.
http://www.net-security.org/news.php?id=6257


GAPS REMAIN IN WI-FI SECURITY
Sadly the new WPA2 security spec won't make your wireless LAN
invulnerable.
http://www.net-security.org/news.php?id=6258


BILL IMPOSES PRISON TIME OVER 'SPYWARE'
The House on Thursday passed the second bill in three days that would
outlaw "spyware," irritating software that quietly monitors the
activities of Internet users.
http://www.net-security.org/news.php?id=6259


FIGHTING THE ARMY OF BYTE-EATING ZOMBIES
"Over the past six months, Symantec documented more than 4,496 new
Windows (particularly Win32) viruses and worms, over four and a half
times the number as the same period in 2003."
http://www.net-security.org/news.php?id=6260

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/archive_vuln.php


----------------------------------------------------------------

DCP-Portal  Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3758


Flash Messaging 5.2.0g Server Crash Vulnerability
http://www.net-security.org/vuln.php?id=3757


RealNetworks Helix Server Content-Length Denial of Service
Vulnerability
http://www.net-security.org/vuln.php?id=3756


Microsoft Word 2002 Multiple Exception Vulnerabilities
http://www.net-security.org/vuln.php?id=3755


Neoteris IVE changepassword.cgi Authentication Bypass Vulnerability
http://www.net-security.org/vuln.php?id=3754


Wordpress 1.2 HTTP Response Splitting Vulnerability
http://www.net-security.org/vuln.php?id=3753


Tridcomm 1.3 Directory Traversal Vulnerability
http://www.net-security.org/vuln.php?id=3752


Invision Power Board v2.0.0 Cross Site Scripting Vulnerability
http://www.net-security.org/vuln.php?id=3751


BlackBoard 1.5.1 Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3750


MySQL MaxDB Web Agent WebDBM Server Name Denial of Service
Vulnerability
http://www.net-security.org/vuln.php?id=3749


Macromedia ColdFusion MX 6.1 on IIS File Contents Disclosure
Vulnerability
http://www.net-security.org/vuln.php?id=3748


Symantec Norton AntiVirus Reserved Device Name Handling Vulnerability
http://www.net-security.org/vuln.php?id=3747


PHP Links Full Path Disclosure Vulnerability
http://www.net-security.org/vuln.php?id=3746


RealPlayer pnen3260.dll Heap Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3745


Xerces-C++ 2.5.0 Attribute Blowup Denial of Service Vulnerability
http://www.net-security.org/vuln.php?id=3744


Vypress Messenger 3.5.1 Broadcast Buffer Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3743


bBlog 0.7.3 SQL Injection Vulnerability
http://www.net-security.org/vuln.php?id=3742


AJ-Fork Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3741

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

Trustix Secure Linux Security Advisory - cyrus-sasl (#2004-0053)
http://www.net-security.org/advisory.php?id=3833


Fedora Legacy Update Advisory - Updated php packages fix security
issues (FLSA:1868)
http://www.net-security.org/advisory.php?id=3832


Fedora Legacy Update Advisory - Updated cvs resolves security
vulnerabilities (FLSA:1735)
http://www.net-security.org/advisory.php?id=3831


Fedora Legacy Update Advisory - Updated libxml2 resolves security
vulnerability (FLSA:1324)
http://www.net-security.org/advisory.php?id=3830


Mandrakelinux Security Update Advisory - cyrus-sasl (MDKSA-2004:106)
http://www.net-security.org/advisory.php?id=3829


Gentoo Linux Security Advisory - Cyrus-SASL: Buffer overflow and
SASL_PATH vulnerabilities (GLSA 200410-05)
http://www.net-security.org/advisory.php?id=3828


Debian Security Advisory - lesstif1-1 (DSA 560-1)
http://www.net-security.org/advisory.php?id=3827


Debian Security Advisory - samba (DSA 600-1)
http://www.net-security.org/advisory.php?id=3826


Mandrakelinux Security Update Advisory - xine-lib (MDKSA-2004:105)
http://www.net-security.org/advisory.php?id=3825


SGI Security Advisory - SGI Advanced Linux Environment 3 Security
Update #14 (20041002-01-U)
http://www.net-security.org/advisory.php?id=3824


SUSE Security Announcement - mozilla (SUSE-SA:2004:036)
http://www.net-security.org/advisory.php?id=3823


Debian Security Advisory - net-acct (DSA 559-1)
http://www.net-security.org/advisory.php?id=3822


Debian Security Advisory - libapache-mod-dav (DSA 558-1)
http://www.net-security.org/advisory.php?id=3821


Gentoo Linux Security Advisory - PHP: Memory disclosure and arbitrary
location file upload (GLSA 200410-04)
http://www.net-security.org/advisory.php?id=3820


Gentoo Linux Security Advisory - NetKit-telnetd: buffer overflows in
telnet and telnetd (GLSA 200410-03)
http://www.net-security.org/advisory.php?id=3819


SUSE Security Announcement - samba (SUSE-SA:2004:035)
http://www.net-security.org/advisory.php?id=3818


Turbolinux Security Announcement - squid, ImageMagick (05/Oct/2004)
http://www.net-security.org/advisory.php?id=3817


Gentoo Linux Security Advisory - Netpbm: Multiple temporary file
issues (GLSA 200410-02)
http://www.net-security.org/advisory.php?id=3816


Apple Security Update - 2004-09-30 (APPLE-SA-2004-09-30)
http://www.net-security.org/advisory.php?id=3815


FreeBSD Security Advisory - Boundary checking errors in syscons
(FreeBSD-SA-04:15.syscons)
http://www.net-security.org/advisory.php?id=3814


SGI Security Advisory - SGI Advanced Linux Environment 3 Security
Update #13 (20041001-01-U)
http://www.net-security.org/advisory.php?id=3813


Slackware Security Advisory - zlib DoS (SSA:2004-278-0)
http://www.net-security.org/advisory.php?id=3812


Slackware Security Advisory - getmail (SSA:2004-278-01)
http://www.net-security.org/advisory.php?id=3811


Debian Security Advisory - rp-pppoe, pppoe (DSA 557-1)
http://www.net-security.org/advisory.php?id=3810


Debian Security Advisory - netkit-telnet (DSA 556-1)
http://www.net-security.org/advisory.php?id=3809


Mandrakelinux Security Update Advisory - samba (MDKSA-2004:104)
http://www.net-security.org/advisory.php?id=3808


Fedora Legacy Update Advisory - Updated mod_python resolves security
vulnerability (FLSA:1325)
http://www.net-security.org/advisory.php?id=3807


Fedora Legacy Update Advisory - Updated sysstat packages fix security
vulnerabilities (FLSA:1372)
http://www.net-security.org/advisory.php?id=3806


Fedora Legacy Update Advisory - Updated squirrelmail resolves
security vulnerabilities (FLSA:1733)
http://www.net-security.org/advisory.php?id=3805


Trustix Secure Linux Security Advisory - samba (#2004-0051)
http://www.net-security.org/advisory.php?id=3804

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

BASELINING WITH SECURITY TEMPLATES
The solution to creating and implementing security baselines on
computers in your network is to “just do it.” Security baselines
establish the foundation for the overall security of a computer. If a
computer has no foundation, the chances of it being compromised are
very high.
http://www.net-security.org/article.php?id=732

----------------------------------------------------------------




[ Reviews ]


All reviews are located at:
http://www.net-security.org/reviews.php


----------------------------------------------------------------

WINDOWS FORENSICS AND INCIDENT RECOVERY
The purpose of this book is to explain some technical information
about Windows systems with a focus on forensics audits and incident
recovery. The author did a good job and by the end of the book you
will know how to prepare your system to prevent and detect incidents,
how to analyze live forensics data, and more.
http://www.net-security.org/review.php?id=143

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3


----------------------------------------------------------------

HIJACKTHIS 1.98.2 (Windows)
A general homepage hijackers detector and remover.
http://www.net-security.org/software.php?id=565


IPCOP 1.4.0 (Linux)
IPCop Firewall is a Linux firewall distribution geared towards home
and SOHO (Small Office/Home Office) users.
http://www.net-security.org/software.php?id=147


LE PUTTY 0.55-2004-09-24 (Windows)
Le Putty is a ssh suite for Windows based on the very popular Putty
project.
http://www.net-security.org/software.php?id=416


NETSTUMBLER 0.4.0 (Windows)
NetStumbler is a tool for Windows that allows you to detect Wireless
Local Area Networks (WLANs) using 802.11b, 802.11a and 802.11g.
http://www.net-security.org/software.php?id=160


PASSWORD SAFE 2.06 (Windows)
Password Safe is a password database utility.
http://www.net-security.org/software.php?id=172


WEBSCARAB 20041002-2054 (Windows)
WebScarab is a framework for analysing applications that communicate
using the HTTP and HTTPS protocols.
http://www.net-security.org/software.php?id=504


YASSL 0.4.0 (Linux)
yaSSL is an SSL Library for programmers building security
functionality into their applications and devices.
http://www.net-security.org/software.php?id=521

----------------------------------------------------------------




[ Webcasts ]


All webcasts are located at:
http://net-security.org/webcasts.php


----------------------------------------------------------------

Architecting Your 802.1x-Based WLAN Deployment
Organized by Funk Software on 12 October 2004, 1:00 PM
http://www.net-security.org/webcast.php?id=297


Consolidated email protection: An introduction to PureMessage
Organized by Sophos on 13 October 2004, 10:00 AM
http://www.net-security.org/webcast.php?id=303


Penetration Testing with CORE IMPACT
Organized by Core Security Technologies on 14 October 2004, 1:00 PM
http://www.net-security.org/webcast.php?id=304


Understanding Service Pack 2 for Windows XP
Organized by Global Knowledge on 14 October 2004, 4:00 PM
http://www.net-security.org/webcast.php?id=333


Ensuring Security Beyond Patch Management
Organized by Microsoft on 19 October 2004, 11:00 AM
http://www.net-security.org/webcast.php?id=336


Fighting Spam in an Exchange Environment with Microsoft Exchange
Server 2003
Organized by Microsoft on 20 October 2004, 8:00 AM
http://www.net-security.org/webcast.php?id=337


All anti-virus software is not created equal
Organized by Sophos on 20 October 2004, 10:00 AM
http://www.net-security.org/webcast.php?id=286


Custom Authentication and Authorization in ASP.NET
Organized by Microsoft on 20 October 2004, 1:00 PM
http://www.net-security.org/webcast.php?id=338


Microsoft Security Vision-Progress and Commitment
Organized by Microsoft on 26 October 2004, 11:00 AM
http://www.net-security.org/webcast.php?id=339


Introduction to ASP.NET 2.0 Security
Organized by Microsoft on 29 October 2004, 9:00 AM
http://www.net-security.org/webcast.php?id=340


Trust, but Verify: How to Manage Risk in Outsourced Applications
Organized by Foundstone on 18 November 2004, 4:00 PM
http://www.net-security.org/webcast.php?id=334

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

SecurIT Summit
Organized by Marcus Evans - 18 October-20 October 2004
http://www.net-security.org/conference.php?id=98


The 3rd Annual Cyber Security in the  Financial Services Sector
Executive Summit
Organized by Financial Services Sector Executive Summit - 27
October-28 October 2004
http://www.net-security.org/conference.php?id=101


RSA Conference Europe 2004
Organized by RSA Security - 3 November-5 November 2004
http://www.net-security.org/conference.php?id=90


e-Nordic: Business & Technology Integration Summit
Organized by Marcus Evans - 8 November-10 November 2004
http://www.net-security.org/conference.php?id=99


IBM SecureWorld Conference EMEA 2004
Organized by IBM - 23 November-26 November 2004
http://www.net-security.org/conference.php?id=91


The European Cyber Security in the Financial Services Sector
Executive Summit 2004
Organized by Information Management Network - 30 November-1 December
2004
http://www.net-security.org/conference.php?id=100


Middle East IT Security Conference 2004
Organized by MEITSEC - 12 December-14 December 2004
http://www.net-security.org/conference.php?id=97


ECCE E-crime and Computer Evidence 2005
Organized by n-gate ltd. - 29 March-30 March 2005
http://www.net-security.org/conference.php?id=94

----------------------------------------------------------------




[ Security World ]


All press releases are located at:
http://www.net-security.org/press_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

Syngress Publishing Announces Publication of Anticipated Nessus Book
http://www.net-security.org/press.php?id=2538


Spam Volumes Dip Following Onslaught of September Hurricanes
http://www.net-security.org/press.php?id=2537


Centenary College Secures Internal Network with Mirage Networks
http://www.net-security.org/press.php?id=2536


Kaspersky SMTP-Gateway 5.0 for Linux/Unix Now On The Corporate
Information Security Market
http://www.net-security.org/press.php?id=2535


AEP Systems Teams With e92plus To Deliver SSL VPN Solution In The UK
http://www.net-security.org/press.php?id=2534


Blue Coat and Secure Computing Announce On-Proxy Support For Latest
Secure Computing Smartfilter Database
http://www.net-security.org/press.php?id=2533


Vexira Antivirus For Linux Protects Largest ISP And Web-Portal In The
Netherlands
http://www.net-security.org/press.php?id=2532


"Click Here To Remove" Trojan Turns Pcs Into Spammers’ Dream
http://www.net-security.org/press.php?id=2531


Blue Coat Helps Launch Industry Initiative To Establish Common
Architecture For Deploying Web Applications
http://www.net-security.org/press.php?id=2530


SSH Launches Powerful New Security Solution To Protect Business
Applications And System Administration
http://www.net-security.org/press.php?id=2529


Eicon Networks Introduces New Shiva VPN Gateways
http://www.net-security.org/press.php?id=2528


Leading Security Industry Researcher ranks Norman the best of the AV
industry
http://www.net-security.org/press.php?id=2527


NetContinuum Partners With Forum Systems For New Best-Of- Breed
Approach To Integrating Web Services And Web Application Security
http://www.net-security.org/press.php?id=2526


NetContinuum Advances Trend Toward Integrated Security With
Industry's First Comprehensive Web Services And Web Application
Firewall
http://www.net-security.org/press.php?id=2525


Aventail Introduces the Market’s First Smart SSL VPN
http://www.net-security.org/press.php?id=2524


NetContinuum Advances Trend toward Integrated Security with
Industry's First Comprehensive Web Services and Web Application
Firewall
http://www.net-security.org/press.php?id=2523


NetContinuum Partners with Forum Systems for New Best-Of-Breed
Approach to Integrating Web Services and Web Application Security
http://www.net-security.org/press.php?id=2522


Apache Software Foundation Announces the Release of SpamAssassin 3.0
http://www.net-security.org/press.php?id=2521


MessageLabs Group Hits The Sunday Times Microsoft Tech Track 100 For
Fourth Year Running
http://www.net-security.org/press.php?id=2520


Sproqit Announces First Full-Featured Outlook Companion for PDA and
Smart Phone Users
http://www.net-security.org/press.php?id=2519


Eschelbeck’s New Laws of Vulnerabilities Contribute to SANS Top 20
Listing 2004 to be Published Friday, 8 October in London
http://www.net-security.org/press.php?id=2518


State Of Iowa Judicial Branch Selects Sygate's Advanced Endpoint
Security For Windows XP Embedded Thin Clients
http://www.net-security.org/press.php?id=2517


F-Secure's New Home Product Stops Modern Network Worms, Hackers,
Phishing and Spyware
http://www.net-security.org/press.php?id=2516

----------------------------------------------------------------




[ Virus News ]


All virus news are located at:
http://www.net-security.org/viruses.php


----------------------------------------------------------------

Weekly Report on Viruses and Intruders - JPGTrojan.C and
Keylogger-Pro
http://www.net-security.org/virus_news.php?id=468


Kaspersky Labs News Virus Top 20 September 2004
http://www.net-security.org/virus_news.php?id=467


Noomy.A: A Sophisticated Worm That Spreads Through IRC Using Social
Engineering
http://www.net-security.org/virus_news.php?id=466

----------------------------------------------------------------

Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php


----------------------------------------------------------------
Information Management Network Presents The European Cyber 
Security in the Financial Services Sector Executive Summit &
The European Summit on Wireless Technology for Financial 
Institutions November 30 - December 1, 2004 * London
----------------------------------------------------------------
Sessions target systems technology professionals, lawyers, 
business continuity professionals, compliance officers and 
auditors at banks, brokerages, funds, asset managers, building 
societies and insurance companies, as well as their cyber 
security advisors and vendors. For additional information, 
please go to www.imn.org/a684/nse
----------------------------------------------------------------