HNS Newsletter
Issue 236 - 25.10.2004.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It
covers weekly roundups of security events that were in the
news the past week.


----------------------------------------------------------------
IBM SecureWorld Technical University, 23-26/11, Berlin
Do you know how to effectively protect your IT infrastructure?
----------------------------------------------------------------
Security has become a very important concern in today's wireless 
and network computing business!  Be on the leading edge with 70 
sessions organised around 5 topics: Security Risk Management, 
Physical & Logical Security Integration and Recovery, Internet & 
Networking Security, Security Architectures & Solutions, Security 
Management and Control.

Benefit from our promo: Get free of charge tivoli certification testing!
And don't forget to visit the Expo! Find out more on 
http://www.ibm.com/services/learning/conf/europe/securew
----------------------------------------------------------------


Table of contents:

1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Software
6) Webcasts
7) Conferences
8) Security World
9) Virus News


[ Security news ]


----------------------------------------------------------------

KEYPADS SECURE FINANCIAL APPLICATIONS
The W.series of fully customisable banking keypads and keyboards, are
guaranteed to meet the demanding security requirements of banks and
other financial institutions.
http://www.net-security.org/news.php?id=6303


PC HACKS FOR LINUX
PC Hacks author Jim Aspinwall handpicks two Linux-specific hacks to
share from his new book.
http://www.net-security.org/news.php?id=6304


ON-CHIP FIREWALL GUARDS PCS
Nvidia chipset includes a hardware firewall to secure desktops.
http://www.net-security.org/news.php?id=6305


WATCH OUT, THERE'S A SCAMMER ABOUT
The British government has unveiled a new website to help punters
"wise up to scams".
http://www.net-security.org/news.php?id=6306


CISCO LOOKS TO COLLABORATION TO EASE SECURITY THREATS
Networking giant Cisco is to team up with other industry heavyweights
to tackle the problem of security, promising to alleviate the burden
of managing the threat for IT departments.
http://www.net-security.org/news.php?id=6307


SECURITY CHIEFS PASS TEST
Certified security professional qualifications are proving popular.
http://www.net-security.org/news.php?id=6308


 HACKERS SOFTWARE HELPING TO AUTOMATE ONLINE THEFT
Ben Kittridge admits that spamming violates traditional hacker
ethics. But with computer programming jobs scarce, the
eighteen-year-old Florida software whiz has joined the spam trade.
http://www.net-security.org/news.php?id=6309


MICROSOFT DELIVERS SP1 FOR WINDOWS SERVER SOON
New Security Configuration Wizard lets users define specific roles
for servers.
http://www.net-security.org/news.php?id=6310


FIGHTING FIRE WITH FIRE: DESIGNING A "GOOD" COMPUTER VIRUS
Cyrus Peikari demonstrates methods to design and test a live,
attenuated computer virus vaccine using real-world simulation.
http://www.net-security.org/news.php?id=6311


BUILD A HIGH-AVAILABILITY LINUX WEB SERVER
Set up a heartbeat failover cluster that lets a good server pick up
where a bad one leaves off, ensuring that your site is never down for
long.
http://www.net-security.org/news.php?id=6312


MICROSOFT, CISCO PARTNER ON NETWORK-ACCESS SECURITY
Microsoft and Cisco Systems will collaborate to make their emerging
products for network security compatible.
http://www.net-security.org/news.php?id=6314


YOUR EMPLOYEES ARE YOUR WORST SECURITY LIABILITIES
Your employees are probably more of a security liability than asset.
And it's your hindquarters on the line. Analyst Rob Enderle provides
tips and web resources on how to maximize your most valuable security
defense: the two-legged kind.
http://www.net-security.org/news.php?id=6315


MORE SECURITY NEEDED FOR BROADBAND BUSINESS TO THRIVE
We need government to give security more attention and resources than
it has so far been willing to allocate.
http://www.net-security.org/news.php?id=6316


DEEPNINES PRESIDENT DAN JACKSON ON NETWORK SECURITY
"We've had a focus on education because we felt if we could
demonstrate to the marketplace that we could sit in the wildest of
environments, it would demonstrate true security functionality," said
DeepNines President Dan Jackson.
http://www.net-security.org/news.php?id=6317


HACKING FOR A GREATER GOOD
Many of us associate the term "hacker" with an anti-social teenager
who uses his computing talent for nefarious ends, terrorising people
with malicious viruses or defacing websites. What we are not aware of
are "white hackers" — do-gooders who attempt to break into systems or
networks to help the owners of these systems discover security flaws.

http://www.net-security.org/news.php?id=6318


MANAGED SECURITY SUITE PROTECTS WI-FI LANS
Wavelink has introduced the industry's first integrated system for
managing the security of wireless LANs.
http://www.net-security.org/news.php?id=6319


LINUX: SECURE COMPUTING API
Andrea Arcangli released an updated version of his secure computing
patch for the 2.6 Linux kernel.
http://www.net-security.org/news.php?id=6320


UK PREPS MAJOR SECURITY AWARENESS CAMPAIGN
A major UK government campaign to help small businesses and consumers
protect themselves from Internet security threats will launch in the
UK next year.
http://www.net-security.org/news.php?id=6321


SECURITY DESIGNS OF SSL VPNS
The audio session stresses out the need of an extensive
pre-deployment audit for the purposes of determing what kind of
access should be made possible for diffent type of users.
http://www.net-security.org/news.php?id=6322


PROTECTING MYSQL SESSIONS WITH SSH TUNNEL (PORT FORWARDING)
This article briefly describes how SSH Tunnel encrypts all traffic
(including passwords) to effectively eliminate eavesdropping,
connection hijacking, and other network-level attacks.
http://www.net-security.org/news.php?id=6323


HACKER HITS CALIFORNIA UNIVERSITY COMPUTER
A computer hacker accessed names and Social Security numbers of about
1.4 million Californians after breaking into a University of
California.
http://www.net-security.org/news.php?id=6324


NEW SECURITY WARES
Information security managers at agencies and businesses have more
options for protecting the organizations from cyberattacks and
insider threats thanks to new wares from several security information
management vendors.
http://www.net-security.org/news.php?id=6325


ENKOO ADDS DEVICE FOR SECURING E-MAIL AND APPLICATIONS
Support for LDAP a key feature.
http://www.net-security.org/news.php?id=6326


TRADITIONAL ANTI-VIRUS CAN'T MEET NEW THREATS
The need to defend networked electronic gear like PDAs and smart
phones will drive anti-virus defenses away from the signature-based
techniques of today and toward next-generation behavioral-based
tactics.
http://www.net-security.org/news.php?id=6327


'SWISS ARMY KNIFE' SOFTWARE TOOLS NOT RIGHT FOR PATCHING SPECIFIC IT
PROBLEMS
Traditional patch management solutions are better at installing
software than they are at patching and upgrading.
http://www.net-security.org/news.php?id=6328


ORACLE'S SECURITY LUCK RUNS OUT
Oracle is so well known for its security that it may have become
complacent. "This is a wake-up call to Oracle to take security more
seriously," said Noel Yuhanna, senior analyst with Forrester
Research.
http://www.net-security.org/news.php?id=6329


SECURING EXCHANGE WITH ISA SERVER 2004
This article will highlight the security issues involved with
providing Outlook Web Access or full Outlook client connections over
the Internet, and then discuss how Microsoft's new ISA Server 2004
can be configured to mitigate these threats.
http://www.net-security.org/news.php?id=6330


EU AGENCY TO PROMOTE INFORMATION SECURITY
Nations must take security seriously to become IT leaders.
http://www.net-security.org/news.php?id=6331


ATMS IN PERIL FROM COMPUTER WORMS?
Some anti-virus firm are trying to carve out a new market for their
technology by trying to persuade that banks Automatic Teller Machines
(ATMs) running Windows need protecting from computer worms.
http://www.net-security.org/news.php?id=6332


EX-STAFF POSE THREAT TO DATA
Twenty-three per cent of companies leave networks exposed.
http://www.net-security.org/news.php?id=6333


PANEL: LET DOMESTIC SECURITY TECHNOLOGY MOVE FORWARD
Effect of civil liberty groups on technological innovation discussed
in panel discussion.
http://www.net-security.org/news.php?id=6334


SECURITY INFORMATION MANAGEMENT SYSTEMS (SIMS)
The computer security industry is guilty of overhyping and
underdelivering. Again and again, it tells customers that they must
buy a certain product to be secure. Again and again, they buy the
products -- and are still insecure.
http://www.net-security.org/news.php?id=6335


AMERICAN PASSPORTS TO GET CHIPPED
The United States plans to issue passports with personal data stored
on radio frequency identification chips. The documents would be
harder to forge, but might leave holders vulnerable to identity
theft.
http://www.net-security.org/news.php?id=6336


TIPS ON SECURING INSTANT MESSAGING
According to one of the latest research studies, 92% of all
commerical and non-commerical organizations are using instant
messaging in the enterprise. Tom Buoniello, VP of Product Management
at Sybari talks to HNS about the current security of instant
messaging deployments and provides insightful tips on what should
enterprises do to make their IM secure.
http://www.net-security.org/news.php?id=6337


IT CHIEFS USE SCARE TACTICS TO TIGHTEN SECURITY
Hacking and virus threat often exaggerated to win management support,
says survey.
http://www.net-security.org/news.php?id=6338


CALIFORNIA DISCLOSES MASSIVE ID THEFT
The compromised information includes names, addresses, telephone
numbers, Social Security numbers and birth dates of about 1.4 million
people.
http://www.net-security.org/news.php?id=6339


LIBERTY ALLIANCE HOLDOUT IBM ENDS RESISTANCE, JOINS
Company now part of Sun-led identity management initiative.
http://www.net-security.org/news.php?id=6340


MICROSOFT CEO: HACKERS GETTING SMARTER
Steve Ballmer believes it's naive to suggest the software giant can
eliminate all security vulnerabilities in its various products even
though engineers are trying hard to do so.
http://www.net-security.org/news.php?id=6341


REPLACE WINDOWS PASSWORDS WITH PASSPHRASES
A Microsoft security manager is advocating the use of multi-word
"passphrases" rather than passwords to secure Windows networks,
arguing that passwords of less than 10 characters are inadequate
against the latest hacking techniques.
http://www.net-security.org/news.php?id=6342


NVIDIA PUTS A FIREWALL ON A MOTHERBOARD
Upcoming chip set will include built-in security features for your
PC.
http://www.net-security.org/news.php?id=6343


53 ARRESTED IN PHISHING CRACKDOWN
53 people arrested in Brazil for online banking fraud.
http://www.net-security.org/news.php?id=6344


DO SERVICE PROVIDERS POSE A SECURITY RISK?
Although IT security standards at some offshore development centers
may seem shoddy, one Canadian outsourcing service provider says that
shouldn't deter North American companies from handing off work to
reputable companies in Canada or overseas -- as long as they do their
homework first.
http://www.net-security.org/news.php?id=6345


IS A CULTURE CLASH RISKING YOUR SECURITY?
A clash of cultures between different security factions within the
same company is putting security efforts at risk, according to a new
study.
http://www.net-security.org/news.php?id=6346


VIRUSES LEAP THROUGH WINDOW OF OPPORTUNITY
Mass mailing viruses could be consigned to the dustbin of history if
only anti-virus vendors were quicker off the mark.
http://www.net-security.org/news.php?id=6347


HP BEEFS UP SECURITY ON PAVILION, PRESARIO LINES
Hewlett-Packard announced it would add third-party security and
anti-virus software to its consumer and small-business Pavilion and
Presario platforms, a move similar to Dell's announcement Wednesday
that it needed to beef up security on its desktops.
http://www.net-security.org/news.php?id=6348


SECURITY, 1994-2004: THEN AND NOW
Comparing the state of security in 1994 versus 2004, has anything
really changed over the course of ten years?
http://www.net-security.org/news.php?id=6349


ANTI-PHISHING APP LOOKS FOR USERS
A Sydney firm has developed software which can help in stopping the
rash of successes enjoyed by the senders of phishing emails - only
this time, the software works at the user's end.
http://www.net-security.org/news.php?id=6350


HARDENING LINUX NETWORKS WITH OPEN SOURCE TOOLS, PART TWO
Network architect Todd Sanders offers a granular look at his work
with POP Mail, Simple Network Management Protocol (SNMP) and F-Prot.

http://www.net-security.org/news.php?id=6351


TOLERANCE 'NO INDEX OF BROWSER SECURITY'
A researcher who used random malformed HTML to test a variety of
browsers, says that the fact that he found Internet Explorer to be
the most tolerant of bad mark-up should not in any way be interpeted
as a reflection on the security of the browser.
http://www.net-security.org/news.php?id=6352


SECURE YOUR WIRELESS WITH IPSEC
This article will show you one method for locking down your wireless
network so that nobody but you can use it.
http://www.net-security.org/news.php?id=6353

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/archive_vuln.php


----------------------------------------------------------------

Novell SuSe Linux LibTIFF Heap Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3788


mpg123 getauthfromurl Buffer Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3787


Age of Sail II 1.04.151 Buffer Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3786


Multiple Internet Browsers Malformed HTML Vulnerabilities
http://www.net-security.org/vuln.php?id=3785


Vypress Tonecast 1.3 Broadcast Crash Vulnerability
http://www.net-security.org/vuln.php?id=3784


cPanel Symlink Chmod Vulnerability
http://www.net-security.org/vuln.php?id=3783


cPanel Hardlink Chown Vulnerability
http://www.net-security.org/vuln.php?id=3782


cPanel Hardlink Backup Vulnerability
http://www.net-security.org/vuln.php?id=3781


Sage Saleslogix Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3780


Multiple Vendor Anti-Virus Software Detection Evasion Vulnerability
http://www.net-security.org/vuln.php?id=3779


CoolPHP 1.0-stable Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3778

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

Gentoo Linux Security Advisory - Gaim: Multiple vulnerabilities (GLSA
200410-23)
http://www.net-security.org/advisory.php?id=3908


Gentoo Linux Security Advisory - MySQL: Multiple vulnerabilities
(GLSA 200410-22)
http://www.net-security.org/advisory.php?id=3907


Fedora Legacy Update Advisory - Updated glibc packages fix flaws
(FLSA:1947)
http://www.net-security.org/advisory.php?id=3906


Fedora Legacy Update Advisory - Updated Tripwire packages fix
security flaw (FLSA:1719)
http://www.net-security.org/advisory.php?id=3905


Slackware Security Advisory - gaim (SSA:2004-296-01)
http://www.net-security.org/advisory.php?id=3904


Conectiva Linux Security Announcement - mozilla (CLA-2004:877)
http://www.net-security.org/advisory.php?id=3903


SUSE Security Announcement - libtiff (SUSE-SA:2004:038)
http://www.net-security.org/advisory.php?id=3902


Mandrakelinux Security Update Advisory - cups (MDKSA-2004:116)
http://www.net-security.org/advisory.php?id=3901


Mandrakelinux Security Update Advisory - kdegraphics (MDKSA-2004:115)
http://www.net-security.org/advisory.php?id=3900


Mandrakelinux Security Update Advisory - gpdf (MDKSA-2004:114)
http://www.net-security.org/advisory.php?id=3899


Mandrakelinux Security Update Advisory - xpdf (MDKSA-2004:113)
http://www.net-security.org/advisory.php?id=3898


Gentoo Linux Security Advisory - Apache 2, mod_ssl: Bypass of
SSLCipherSuite directive (GLSA 200410-21)
http://www.net-security.org/advisory.php?id=3897


Mandrakelinux Security Update Advisory - squid (MDKSA-2004:112)
http://www.net-security.org/advisory.php?id=3896


Mandrakelinux Security Update Advisory - wxGTK2 (MDKSA-2004:111)
http://www.net-security.org/advisory.php?id=3895


Mandrakelinux Security Update Advisory - gaim (MDKSA-2004:110)
http://www.net-security.org/advisory.php?id=3894


Gentoo Linux Security Advisory - Xpdf, CUPS: Multiple integer
overflows (GLSA 200410-20)
http://www.net-security.org/advisory.php?id=3893


Debian Security Advisory - cupsys (DSA 573-1)
http://www.net-security.org/advisory.php?id=3892


Debian Security Advisory - ecartis (DSA 572-1)
http://www.net-security.org/advisory.php?id=3891


SUSE Security Announcement - kernel (SUSE-SA:2004:037)
http://www.net-security.org/advisory.php?id=3890


Gentoo Linux Security Advisory - Ghostscript: Insecure temporary file
use in multiple scripts (GLSA 200410-18)
http://www.net-security.org/advisory.php?id=3889


Gentoo Linux Security Advisory - OpenOffice.org: Temporary files
disclosure (GLSA 200410-17)
http://www.net-security.org/advisory.php?id=3888


SGI Security Advisory - SGI Advanced Linux Environment 3 Security
Update #15 (20041003-01-U)
http://www.net-security.org/advisory.php?id=3887


Debian Security Advisory - libpng3 (DSA 571-1)
http://www.net-security.org/advisory.php?id=3886


Debian Security Advisory - libpng (DSA 570-1)
http://www.net-security.org/advisory.php?id=3885


Mandrakelinux Security Update Advisory - libtiff (MDKSA-2004:109)
http://www.net-security.org/advisory.php?id=3884


Mandrakelinux Security Update Advisory - cvs (MDKSA-2004:108)
http://www.net-security.org/advisory.php?id=3883


US-CERT Technical Cyber Security Alert - Multiple Vulnerabilities in
Microsoft Internet Explorer (TA04-293A)
http://www.net-security.org/advisory.php?id=3882


Mandrakelinux Security Update Advisory - mozilla (MDKSA-2004:107)
http://www.net-security.org/advisory.php?id=3881


Conectiva Linux Security Announcement - gtk+ (CLA-2004:875)
http://www.net-security.org/advisory.php?id=3880


SCO Security Advisory - UnixWare 7.1.4 UnixWare 7.1.3 : The error
handling in the inflate and inflateBack functions in ZLib compression
library allows local users to cause a denial of service
(SCOSA-2004.17)
http://www.net-security.org/advisory.php?id=3879


Gentoo Linux Security Advisory - PostgreSQL: Insecure temporary file
use in make_oidjoins_check (GLSA 200410-16)
http://www.net-security.org/advisory.php?id=3878


Gentoo Linux Security Advisory - Squid: Remote DoS vulnerability
(GLSA 200410-15)
http://www.net-security.org/advisory.php?id=3877


Fedora Legacy Update Advisory - Updated kernel resolves security
vulnerabilities (FLSA:1804c)
http://www.net-security.org/advisory.php?id=3876


Gentoo Linux Security Advisory - phpMyAdmin: Vulnerability in
MIME-based transformation system (200410-14)
http://www.net-security.org/advisory.php?id=3875


Debian Security Advisory - netkit-telnet-ssl (DSA 569-1)
http://www.net-security.org/advisory.php?id=3874

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

TIPS ON SECURING INSTANT MESSAGING
According to one of the latest research studies, 92% of all
commerical and non-commerical organizations are using instant
messaging in the enterprise. Tom Buoniello, VP of Product Management
at Sybari talks to HNS about the current security of instant
messaging deployments and provides insightful tips on what should
enterprises do to make their IM secure.
http://www.net-security.org/article.php?id=736


SECURITY DESIGNS OF SSL VPNS
During the Infosecurity Europe 2004 Conference, we caught up with
William Orme, Senior Technical Consultant at Whale Communications,
and talked to him about SSL VPNs. In this audio session, Mr. Orme
discusses the security designs when configuring and setting up SSL
VPNs.
http://www.net-security.org/article.php?id=735

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3


----------------------------------------------------------------

ALOAHA 3.0.45 (Windows)
Aloaha is a server based Anti-spam solution.
http://www.net-security.org/software.php?id=566


ANTIEXPLOIT 1.3 Beta 5 (Linux)
AntiExploit is the first ON-ACCESS exploit-scanner for Linux and
FreeBSD.
http://www.net-security.org/software.php?id=581


BASTILLE LINUX 2.1.4 (Linux)
The Bastille Hardening System attempts to "harden" or "tighten" the
Linux operating system.
http://www.net-security.org/software.php?id=217


BOTAN 1.4.1 (Linux)
Botan aims to be a portable, easy to use, and efficient C++ crypto
library.
http://www.net-security.org/software.php?id=94


DEVICELOCK 5.62 (Windows)
DeviceLock gives network administrators control over which users can
access what devices on a local computer.
http://www.net-security.org/software.php?id=121


DSPAM 3.2 (Linux)
DSPAM is an extremely scalable, open-source statistical anti-spam
filter.
http://www.net-security.org/software.php?id=582


ETHEREAL 0.10.7 (Linux)
Ethereal is a free network protocol analyzer.
http://www.net-security.org/software.php?id=99


IFCHK 0.95 Beta 2 (Linux)
ifchk is a network interface promiscuous mode detection tool written
with both security and system administrative applications in mind.
http://www.net-security.org/software.php?id=583


NESSUS 2.2.0 RC1 (Linux)
Nessus is a free, powerful, up-to-date and easy to use remote
security scanner.
http://www.net-security.org/software.php?id=19


NMAP 3.75 (Linux)
Nmap ("Network Mapper") is an open source utility for network
exploration or security auditing.
http://www.net-security.org/software.php?id=1


NUFW 0.9.5 (Linux)
NuFW is an "authenticating gateway". This means it requires
authentication for any connections to be forwarded through the
gateway.
http://www.net-security.org/software.php?id=526


SLOP 1.5 (Linux)
SLOP is a PERL and PHP based engine for the collection of and
reporting on logs from various network based devices such as
firewalls, switches, and web servers.
http://www.net-security.org/software.php?id=449


WIFIFOFUM 0.3.3 (Pocket PC)
WiFiFoFum is a 802.11 scanner designed for PDAs running PocketPC
2003.
http://www.net-security.org/software.php?id=580

----------------------------------------------------------------




[ Webcasts ]


All webcasts are located at:
http://net-security.org/webcasts.php


----------------------------------------------------------------

Microsoft Security Vision-Progress and Commitment
Organized by Microsoft on 26 October 2004, 11:00 AM
http://www.net-security.org/webcast.php?id=339


Introduction to ASP.NET 2.0 Security
Organized by Microsoft on 29 October 2004, 9:00 AM
http://www.net-security.org/webcast.php?id=340


Trust, but Verify: How to Manage Risk in Outsourced Applications
Organized by Foundstone on 18 November 2004, 4:00 PM
http://www.net-security.org/webcast.php?id=334

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

The 3rd Annual Cyber Security in the  Financial Services Sector
Executive Summit
Organized by Financial Services Sector Executive Summit - 27
October-28 October 2004
http://www.net-security.org/conference.php?id=101


RSA Conference Europe 2004
Organized by RSA Security - 3 November-5 November 2004
http://www.net-security.org/conference.php?id=90


e-Nordic: Business & Technology Integration Summit
Organized by Marcus Evans - 8 November-10 November 2004
http://www.net-security.org/conference.php?id=99


IBM SecureWorld Conference EMEA 2004
Organized by IBM - 23 November-26 November 2004
http://www.net-security.org/conference.php?id=91


The European Cyber Security in the Financial Services Sector
Executive Summit 2004
Organized by Information Management Network - 30 November-1 December
2004
http://www.net-security.org/conference.php?id=100


Middle East IT Security Conference 2004
Organized by MEITSEC - 12 December-14 December 2004
http://www.net-security.org/conference.php?id=97


ECCE E-crime and Computer Evidence 2005
Organized by n-gate ltd. - 29 March-30 March 2005
http://www.net-security.org/conference.php?id=94

----------------------------------------------------------------




[ Security World ]


All press releases are located at:
http://www.net-security.org/press_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

Vircom Releases Highly Anticipated Fourth-Generation Modus Technology
http://www.net-security.org/press.php?id=2576


Aloaha Has Introduced Free SPF Module in its POP3 and SINK Connector
http://www.net-security.org/press.php?id=2575


New SpamAssassin Book Released by Packt
http://www.net-security.org/press.php?id=2574


New Research Suggests That Mass-Mailing Viruses Could Be a Thing Of
The Past if AV Vendors Are Quicker Off The Mark
http://www.net-security.org/press.php?id=2573


New Panda GateDefender 8000 Series: The Most Advanced Technology To
Protect Companies Against Spam
http://www.net-security.org/press.php?id=2572


Independent Research Firm Cites Skybox Security As "The Most
Innovative Company" In Threat Management Report
http://www.net-security.org/press.php?id=2571


The Merger Between SSH And Acr Is Advancing According To The Plan
http://www.net-security.org/press.php?id=2570


Blue Coat Wins Deloitte Technology Fast 500 Award
http://www.net-security.org/press.php?id=2569


Bluesocket Adds Florida State, Ohio University & Virginia Tech to  
Growing Customer List of 400+ Campus Wireless Networks
http://www.net-security.org/press.php?id=2568


Application Security Inc. Announces Updated Version of Flagship
Database Application Vulnerability Assessment Solution-- AppDetective
4.1
http://www.net-security.org/press.php?id=2567


CipherTrust Proves Worldwide Phishing Attacks Originate From Less
Than Five Zombie Network Operators
http://www.net-security.org/press.php?id=2566


Siroconnect Simplifies Access And Strengthens Security
http://www.net-security.org/press.php?id=2565


Nemx Offers Strongest Protection Against Exchange Server Attacks
http://www.net-security.org/press.php?id=2564


Kaspersky Labs Announces Kaspersky Anti-Virus Personal Pro
http://www.net-security.org/press.php?id=2563


CyberGuard Introduces First Webwasher Content Security Management
Appliance
http://www.net-security.org/press.php?id=2562


Spam: The Digital Epidemic Of The XXI Century
http://www.net-security.org/press.php?id=2561


GFI MailEssentials 10.1 Adds Directory Harvesting Detection and SPF
Support To Its Anti-Spam Arsenal
http://www.net-security.org/press.php?id=2560


FrontBridge Inks Five Strategic Partners
http://www.net-security.org/press.php?id=2559

----------------------------------------------------------------




[ Virus News ]


All virus news are located at:
http://www.net-security.org/viruses.php


----------------------------------------------------------------

More Than 50 Arrests As Brazil Cracks Down On Phishing Trojan Authors
http://www.net-security.org/virus_news.php?id=471

----------------------------------------------------------------

Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php


----------------------------------------------------------------
IBM SecureWorld Technical University, 23-26/11, Berlin
Do you know how to effectively protect your IT infrastructure?
----------------------------------------------------------------
Security has become a very important concern in today's wireless 
and network computing business! Be on the leading edge with 70 
sessions organised around 5 topics: Security Risk Management, 
Physical & Logical Security Integration and Recovery, Internet & 
Networking Security, Security Architectures & Solutions, Security 
Management and Control.

Benefit from our promo: Get free of charge tivoli certification testing!
And don't forget to visit the Expo! Find out more on 
http://www.ibm.com/services/learning/conf/europe/securew
----------------------------------------------------------------