HNS Newsletter
Issue 237 - 01.11.2004.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It
covers weekly roundups of security events that were in the
news the past week.


----------------------------------------------------------------
Information Management Network Presents The European Cyber 
Security in the Financial Services Sector Executive Summit &
The European Summit on Wireless Technology for Financial 
Institutions November 30 - December 1, 2004 * London
----------------------------------------------------------------
Sessions target systems technology professionals, lawyers, 
business continuity professionals, compliance officers and 
auditors at banks, brokerages, funds, asset managers, building 
societies and insurance companies, as well as their cyber 
security advisors and vendors. For additional information, 
please go to http://www.imn.org/a684/nse
----------------------------------------------------------------


Table of contents:

1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Software
6) Webcasts
7) Conferences
8) Security World
9) Virus News


[ Security news ]


----------------------------------------------------------------

SECURITY FOR INTERNET USERS DEEMED WEAK
Internet users at home are not nearly as safe online as they believe,
according to a nationwide inspection by researchers.
http://www.net-security.org/news.php?id=6354


WORM TARGETS MAC OS X USERS
Security experts have warned Mac users about the emergence of a new
worm that "represents a huge security headache".
http://www.net-security.org/news.php?id=6355


BALLMER FLAGS SECURITY FOR A PRE-LONGHORN 'RELEASE 2'
Speaking at the Gartner Symposium and ITxpo 2004 Steve Ballmer
outlined new security initiatives, some of which would make it into a
pre-Longhorn 'Release 2' for Windows, next year.
http://www.net-security.org/news.php?id=6356


SECURITY REPORT: WINDOWS VS LINUX
Much ado has been made about whether or not Linux is truly more
secure than Windows.
http://www.net-security.org/news.php?id=6357


ARE HACKERS NOW GUNNING FOR THE MAC?
Since the last Mac OS X security update was the third in a month, and
because some of the holes looked ripe for exploiting, I have to wonder
whether the Mac is now attracting more unwanted attention from
hackers.
http://www.net-security.org/news.php?id=6358


CRITICAL SERVER NEEDS AND THE LINUX KERNEL
A discussion of four of the kernel features needed for
mission-critical server environments, including telecom.
http://www.net-security.org/news.php?id=6359


AS THE WORMS RETURN
The most unwelcome guests always stay the longest.
http://www.net-security.org/news.php?id=6362


INTEL OUTLINES WIRELESS USB SECURITY
Intel is backing the 128-bit AES encryption protocol for securing
wireless USB connections.
http://www.net-security.org/news.php?id=6363


IBM TO START SECURITY REPORTING
IT giant IBM is to start releasing a monthly report detailing threats
to corporate networks from hackers, viruses and worms.
http://www.net-security.org/news.php?id=6364


STILL NO OS X VIRUSES
The sky began to fall October 22, thanks to this discussion on
MacInTouch. Readers learned that the first ever virus for Mac OS X
had been found. Again!
http://www.net-security.org/news.php?id=6365


SECURITY WITH EASE: ACCORDANCE ARAID 2000
Due to its closed RAID architecture, the ARAID 2000 works completely
without additional drivers; the software provided by chipset makers
for their controllers is enough.
http://www.net-security.org/news.php?id=6366


SETTING UP A SIMPLE LINUX FIREWALL
This is an overview of the things I think you need to know if you're
going to try and set up a simple firewall using linux on an old PC.
http://www.net-security.org/news.php?id=6367


ISSUES DISCOVERING COMPROMISED MACHINES
This article discusses the discovery of compromised machines in large
enterprise environments, and offers some suggestions on correlating
NIDS and HIPS logs to avoid false positives.
http://www.net-security.org/news.php?id=6368


80% US HOME PCS HAVE SPYWARE: STUDY
A survey of of 329 dial-up and broadband adult computer users by the
US National Cyber Security Alliance and America Online has found that
80 percent of home computers were infected with spyware or adware of
some kind.
http://www.net-security.org/news.php?id=6369


HACKING: THE MUST-HAVE BUSINESS TOOL
A new federal case illustrates the role computer intrusion is taking
in the high-stakes world of niche Internet commerce.
http://www.net-security.org/news.php?id=6370


IMMUNIZING PCS FROM NEW THREATS
Defensive software mimics human immune system to block worms.
http://www.net-security.org/news.php?id=6371


THE STYLISTIC ST5000 TABLET PC UPDATED WITH SECURITY FEATURES
The device keeps your data protected with a number of security
features.
http://www.net-security.org/news.php?id=6372


USERS SEE SPYWARE AND VIRUSES THROUGH ROSE-COLORED GLASSES
People who believe their PCs are free of malware that can track their
computer usage or gain control over their machines are most likely
wrong.
http://www.net-security.org/news.php?id=6373


VOIP SECURITY A MOVING TARGET
Those who want to operate secure VoIP networks must be mindful of
myriad threats because the technology is susceptible to
vulnerabilities that might be foreign to traditional telecom managers
and their staffs.
http://www.net-security.org/news.php?id=6374


HOW SPYWARE AND THE WEAPONS AGAINST IT ARE EVOLVING
Spyware has reached epidemic proportions and is only getting worse.
http://www.net-security.org/news.php?id=6375


TIGHTEN SECURITY NOW
Network attacks are increasing " and at an alarming pace, according
to IBM's Global Security Intelligence Services.
http://www.net-security.org/news.php?id=6376


YOUR PC MAY BE LESS SECURE THAN YOU THINK
A survey conducted by AOL found that 20 percent of home computers
were infected by a virus or worm, and that various forms of snooping
programs such as spyware and adware are on a whopping 80 percent of
systems.
http://www.net-security.org/news.php?id=6377


POSTNUKE OPEN SOURCE CMS ATTACKED
On the morning of October 26th the developers of the free software
content management system PostNuke posted a security announcement
saying that a vulnerability in the paFileDB download management
software allowed an attacker to put up a hacked version of PostNuke
for download.
http://www.net-security.org/news.php?id=6378


EASY TO REMAIN UNTRACEABLE
Breaking into computer networks and remaining untraceable after the
breach has been detected is apparently easier than anyone would like
it to be, said The Grugq, a Britain-based hacker.
http://www.net-security.org/news.php?id=6379


THE DNSDOCTOR UTILITY
This utility will perform tests of a DNS zone or domain name. There
are two versions available for download.
http://www.net-security.org/news.php?id=6380


INSECURITY BEGINS AT HOME
Spyware is rife and virus infection commonplace yet many home users
reckon they are safe from online threats.
http://www.net-security.org/news.php?id=6381


SPAMMERS GO ON TRIAL
Three people who allegedly sent America Online customers millions of
junk e-mail messages touting penny stocks and other Internet gimmicks
went on trial Tuesday in the nation's first such felony case.
http://www.net-security.org/news.php?id=6382


WHY CURRENT GENERATION INTRUSION PREVENTION SYSTEMS FAILS BUSINESS
The problem is that current generation intrusion detection and
prevention (IDP) lacks context about the network. It may positively
identify an attack, but it knows nothing about the target’s
likelihood of succumbing to the attack.
http://www.net-security.org/news.php?id=6383


MAC WORM SPARKS SECURITY CONCERNS
Anti-virus experts have warned Mac users and system administrators
against becoming complacent about security after the discovery of a
worm targeting the Mac OS X operating system.
http://www.net-security.org/news.php?id=6384


VOIP BRINGS ASSOCIATED SECURITY RISKS
As local companies gear up to take advantage of the new legislation
allowing voice over IP, many have not fully considered the additional
security risks associated with the converged network.
http://www.net-security.org/news.php?id=6385


US BANCORP TEAMS UP WITH VERISIGN ON BANKING SECURITY
US Bancorp will use a hardware-token based authentication service
from VeriSign to secure access to commercial banking services for its
customers.
http://www.net-security.org/news.php?id=6386


BLUETOOTH POSES SECURITY RISK
Red-M, a vendor of intrusion detection tools, says many firms
underestimate the danger of Bluetooth.
http://www.net-security.org/news.php?id=6387


EBAY VIRUS FEARS DISMISSED AS SCAREMONGERING
Security fears sparked by the recently identified W32/Myfip virus are
unfounded, according to a security industry executive who claims the
concern is nothing more than empty scaremongering by antivirus firms.
http://www.net-security.org/news.php?id=6388


SYMANTEC UNVEILS SECURITY STRATEGY
Symantec has launched a new strategy for enterprise I.T. security
that is designed to help businesses manage and protect the massive
amounts of digital information on their networks.
http://www.net-security.org/news.php?id=6389


BIG.BIZ STRUGGLES AGAINST SECURITY THREATS
Most large companies are struggling to protect themselves against
security threats, a survey from security consultancy NetSec published
today reveals.
http://www.net-security.org/news.php?id=6390


NTT DOCOMO, IBM, INTEL TEAM TO SECURE MOBILE DEVICES
Trusted Mobile Platform is designed to protect wireless devices
against viruses.
http://www.net-security.org/news.php?id=6391


WHAT REALLY SELLS SECURITY MANAGERS ON ONE AV VENDOR OVER ANOTHER?
With a malware storm always on the horizon, you'd expect AV vendors
to have among the best customer support programs. Check out what Ed
Skoudis found out.
http://www.net-security.org/news.php?id=6392


ACCESS TO BUSH SITE CUT FOR 'SECURITY REASONS
US President George W. Bush's re-election campaign said on Wednesday
it had cut its website off from access from certain foreign countries
"for security reasons," but declined to elaborate.
http://www.net-security.org/news.php?id=6393


RSA SECURITY UNVEILS DRM SOLUTION FOR MOBILE DEVICES
RSA Security announced a standards-based security solution for
digital rights management (DRM) that provides a security
infrastructure for consumer-device manufacturers and service
providers alike.
http://www.net-security.org/news.php?id=6394


NEW CALLER I.D. SPOOFING SITE OPENS
Web-based caller I.D. spoofing is back, and this time it's available
to everyone.
http://www.net-security.org/news.php?id=6395


BANKING ON E-AUTHENTICATION
Banks are getting behind the federal government's E-Authentication
initiative, giving a significant push to federal efforts to use
electronic identities for e-government and e-commerce, said Steven
Timchak, director of the initiative at the General Services
Administration.
http://www.net-security.org/news.php?id=6396


MICROSOFT AND IT SECURITY
Microsoft has come in for heavy criticism in recent years on the IT
Security front, for obvious reasons.
http://www.net-security.org/news.php?id=6397


SMARTCARD MCU AIMS FOR APPLICATIONS GROWTH
STMicroelectronics has added a new contactless smartcard
microcontroller with 2Kbyte of EEPROM to its successful ST19 family
of field-proven secure MCUs.
http://www.net-security.org/news.php?id=6398


XACTA TO CERTIFY USDA SYSTEMS
Xacta Corp. officials will help two Agriculture Department agencies
obtain federal security certification and accreditation requirements
for their information systems, company officials announced this week.
http://www.net-security.org/news.php?id=6399


TOO MANY USERS FALL FOR CYBER SECURITY URBAN MYTHS
Commonly held misconceptions highlight problems.
http://www.net-security.org/news.php?id=6400


LINUX USERS: WELCOME TO THE WORLD OF MALWARE
Linux users are often smug about the state of their computer
security, rightly criticizing Windows for its numerous security
holes, but overlooking their own vulnerabilities.
http://www.net-security.org/news.php?id=6401


BIOMETRICS EARLY ADOPTERS REVEAL SECRETS, CHALLENGES
In a conference room overlooking the site of the World Trade Center,
early adopters of biometrics technology this week stressed the
importance of determining someone’s true identity.
http://www.net-security.org/news.php?id=6402


PROTECT AGAINST WEAK AUTHENTICATION PROTOCOLS AND PASSWORDS
Did you know that your Windows computers store and send weak password
hashes which are very easy to crack?
http://www.net-security.org/news.php?id=6403


SECRET SERVICE BUSTS CYBER GANGS
Operation Firewall nets 28 suspects alledgedly involved in online
fraud and conspiracy.
http://www.net-security.org/news.php?id=6404

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/archive_vuln.php


----------------------------------------------------------------

RealPlayer Zipped Skin File Buffer Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3801


PHP4 cURL open_basedir  Bypass  Vulnerability
http://www.net-security.org/vuln.php?id=3800


Quake II Server Multiple Vulnerabilites
http://www.net-security.org/vuln.php?id=3799


Apple Quicktime for Windows 6.5.2 Code Execution Vulnerability
http://www.net-security.org/vuln.php?id=3798


RealPlayer Malformed Skin Code Execution Vulnerability
http://www.net-security.org/vuln.php?id=3797


PuTTY SSH2_MSG_DEBUG Buffer Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3796


Pppd 2.4.1 Denial of Service Vulnerability
http://www.net-security.org/vuln.php?id=3795


Inetutils TFTP Client DNS resolving buffer overflow Multiple
Vulnerabilities
http://www.net-security.org/vuln.php?id=3794


Zgv Image Viewing Heap Overflow Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3793


OpenWFE Web Client Multiple Vulnerabilities
http://www.net-security.org/vuln.php?id=3792


AOL Journals BlogID Information Disclosure Vulnerability
http://www.net-security.org/vuln.php?id=3791


J2ME Multiple Security Vulnerabilities
http://www.net-security.org/vuln.php?id=3790


Dwc_articles 1.6 SQL Injection Vulnerability
http://www.net-security.org/vuln.php?id=3789

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

OpenPKG Security Advisory - squid (OpenPKG-SA-2004.048)
http://www.net-security.org/advisory.php?id=3944


OpenPKG Security Advisory - apache (OpenPKG-SA-2004.047)
http://www.net-security.org/advisory.php?id=3943


OpenPKG Security Advisory - postgresql (OpenPKG-SA-2004.046)
http://www.net-security.org/advisory.php?id=3942


Ubuntu Security Notice - XML library vulnerabilities (USN-10-1)
http://www.net-security.org/advisory.php?id=3941


Gentoo Linux Security Advisory - Archive::Zip: Virus detection
evasion (GLSA 200410-31)
http://www.net-security.org/advisory.php?id=3940


Ubuntu Security Notice - ppp Denial of Service (USN-12-1)
http://www.net-security.org/advisory.php?id=3939


Ubuntu Security Notice - libgd2 vulnerabilities (USN-11-1)
http://www.net-security.org/advisory.php?id=3938


Ubuntu Security Notice - tetex-bin vulnerabilities (USN-9-1)
http://www.net-security.org/advisory.php?id=3937


Ubuntu Security Notice - Standard C library script vulnerabilities
(USN-4-1)
http://www.net-security.org/advisory.php?id=3936


Ubuntu Security Notice - gaim vulnerabilities (USN-8-1)
http://www.net-security.org/advisory.php?id=3935


Ubuntu Security Notice - imagemagick vulnerability (USN-7-1)
http://www.net-security.org/advisory.php?id=3934


Ubuntu Security Notice - postgresql contributed script vulnerability
(USN-6-1)
http://www.net-security.org/advisory.php?id=3933


Ubuntu Security Notice - gettext vulnerabilities (USN-5-1)
http://www.net-security.org/advisory.php?id=3932


Ubuntu Security Notice - GhostScript utility script vulnerabilities
(USN-3-1)
http://www.net-security.org/advisory.php?id=3931


Ubuntu Security Notice - xpdf vulnerabilities (2-1)
http://www.net-security.org/advisory.php?id=3930


Ubuntu Security Notice - PNG library vulnerabilities (1-1)
http://www.net-security.org/advisory.php?id=3929


Debian Security Advisory - postgresql (DSA 577-1)
http://www.net-security.org/advisory.php?id=3928


Debian Security Advisory - squid (DSA 576-1)
http://www.net-security.org/advisory.php?id=3927


Debian Security Advisory - catdoc (DSA 575-1)
http://www.net-security.org/advisory.php?id=3926


Debian Security Advisory - cabextract (DSA 574-1)
http://www.net-security.org/advisory.php?id=3925


Gentoo Linux Security Advisory - PuTTY: Pre-authentication buffer
overflow (GLSA 200410-29)
http://www.net-security.org/advisory.php?id=3924


Apple Security Update - QuickTime 6.5.2 (APPLE-SA-2004-10-27)
http://www.net-security.org/advisory.php?id=3923


SGI Security Advisory - SGI Advanced Linux Environment 3 Security
Update #16 (20041004-01-U)
http://www.net-security.org/advisory.php?id=3922


Conectiva Linux Security Announcement - foomatic-filters
(CLA-2004:880)
http://www.net-security.org/advisory.php?id=3921


Fedora Legacy Update Advisory - Updated mozilla resolves security
vulnerabilities (FLSA:2089)
http://www.net-security.org/advisory.php?id=3920


Gentoo Linux Security Advisory - rssh: Format string vulnerability
(GLSA 200410-28)
http://www.net-security.org/advisory.php?id=3919


Gentoo Linux Security Advisory -  mpg123: Buffer overflow
vulnerabilities (GLSA 200410-27)
http://www.net-security.org/advisory.php?id=3918


Conectiva Linux Security Announcement - kernel (CLA-2004:879)
http://www.net-security.org/advisory.php?id=3917


Bugzilla Security Advisory - Vulnerabilities in Bugzilla 2.16.6 and
2.18rc2
http://www.net-security.org/advisory.php?id=3916


SUSE Security Announcement - xpdf, gpdf, kdegraphics3-pdf, pdftohtml,
cups (SUSE-SA:2004:039)
http://www.net-security.org/advisory.php?id=3915


Slackware Security Advisory - apache, mod_ssl, php (SSA:2004-299-01)
http://www.net-security.org/advisory.php?id=3914


Conectiva Linux Security Announcement - zlib (CLA-2004:878)
http://www.net-security.org/advisory.php?id=3913


Gentoo Linux Security Advisory - socat: Format string vulnerability
(GLSA 200410-26)
http://www.net-security.org/advisory.php?id=3912


Gentoo Linux Security Advisory - Netatalk: Insecure tempfile handling
in etc2ps.sh (GLSA 200410-25)
http://www.net-security.org/advisory.php?id=3911


HP Security Bulletin - HP-UX stmkfont local unauthorized privileged
access (
SSRT4807 rev.0)
http://www.net-security.org/advisory.php?id=3910


Gentoo Linux Security Advisory - MIT krb5: Insecure temporary file
use in send-pr.sh (GLSA 200410-24)
http://www.net-security.org/advisory.php?id=3909

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

"SHOOTING THE HOSTAGE": WHY CURRENT GENERATION INTRUSION PREVENTION
SYSTEMS FAILS BUSINESS
As a corporate security manager, you are caught between a rock and a
hard place. Your networks are under attack at an ever-increasing
rate, from viruses, worms and people. The consequences of successful
intrusion or infection continue to rise. And in the arms race, the
dark side seems to have the upper hand: Intrusion detection and
prevention (IDP) systems haven’t delivered the goods. 
http://www.net-security.org/article.php?id=739


THE FEDORA - RED HAT FALSE VULNERABILITY SCAM
It looks like the "evil minds" have found a new way to use spam for
their devious plans. This time spam is combined with a scam that will
try to use social engineering for the purpose of creating server
backdoors.
http://www.net-security.org/article.php?id=738


UNDERSTANDING E-MAIL SPOOFING
E-mail spoofing is a growing problem and has reached the point where
you cannot rely on the information displayed in your e-mail client to
tell you who really sent a message. This article takes a look at the
problem and the proposed solutions.
http://www.net-security.org/article.php?id=737

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3


----------------------------------------------------------------

AD-AWARE SE PERSONAL EDITION Build 1.05 (Windows)
Ad-aware is a free multi spyware removal utility.
http://www.net-security.org/software.php?id=135


KISMET 2004-10-R1 (Linux)
Kismet is a 802.11b wireless network sniffer.
http://www.net-security.org/software.php?id=218


LE PUTTY 0.56-2004-10-26 (Windows)
Le Putty is a ssh suite for Windows based on the very popular Putty
project.
http://www.net-security.org/software.php?id=416


NETSTAT AGENT 1.0 build #2 (Windows)
Netstat Agent is set of network tools useful in diagnosing network
and monitoring network connections on your computer.
http://www.net-security.org/software.php?id=584


OS-SIM 0.9.7 (Linux)
OSSIM is a distribution of open source products that are integrated
to provide an infrastructure for security monitoring.
http://www.net-security.org/software.php?id=304


SHOREWALL 2.0.10 (Linux)
Shorewall is an iptables based firewall that can be used on a
dedicated firewall system, a multi-function masquerade gateway/server
or on a standalone Linux system.
http://www.net-security.org/software.php?id=40


W3PW 1.30 (Linux)
w3pw is a web based password management console written in PHP and
using a MySQL database as storage for the encrypted password
information.
http://www.net-security.org/software.php?id=474

----------------------------------------------------------------




[ Webcasts ]


All webcasts are located at:
http://net-security.org/webcasts.php


----------------------------------------------------------------

Trust, but Verify: How to Manage Risk in Outsourced Applications
Organized by Foundstone on 18 November 2004, 4:00 PM
http://www.net-security.org/webcast.php?id=334

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

RSA Conference Europe 2004
Organized by RSA Security - 3 November-5 November 2004
http://www.net-security.org/conference.php?id=90


e-Nordic: Business & Technology Integration Summit
Organized by Marcus Evans - 8 November-10 November 2004
http://www.net-security.org/conference.php?id=99


IBM SecureWorld Conference EMEA 2004
Organized by IBM - 23 November-26 November 2004
http://www.net-security.org/conference.php?id=91


The European Cyber Security in the Financial Services Sector
Executive Summit 2004
Organized by Information Management Network - 30 November-1 December
2004
http://www.net-security.org/conference.php?id=100


Middle East IT Security Conference 2004
Organized by MEITSEC - 12 December-14 December 2004
http://www.net-security.org/conference.php?id=97


ECCE E-crime and Computer Evidence 2005
Organized by n-gate ltd. - 29 March-30 March 2005
http://www.net-security.org/conference.php?id=94

----------------------------------------------------------------




[ Security World ]


All press releases are located at:
http://www.net-security.org/press_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

Menlo Logic Announces New Partnerships with Leading Security Solution
Providers in Europe, Asia and Australia
http://www.net-security.org/press.php?id=2605


"Cisco Routers For The Desperate" Comes To The Rescue
http://www.net-security.org/press.php?id=2604


ArcSight Announces Entry into European Security Market with UK
Headquarters and Major EMEA Customer
http://www.net-security.org/press.php?id=2603


Intellitactics Closes Largest Revenue Quarter In Company History With
Ninth Consecutive Quarter Of Record Achievement
http://www.net-security.org/press.php?id=2602


Intellitactics Names David Kimball Vice President, Global Sales
http://www.net-security.org/press.php?id=2601


Intellitactics Names Pamela Casale VP Corporate Marketing
http://www.net-security.org/press.php?id=2600


Syhunt Unveils New Version of All-In-One Web Security Product
http://www.net-security.org/press.php?id=2599


The Spanish Victory of Kaspersky Anti-Virus Personal 5.0
http://www.net-security.org/press.php?id=2598


Son Of Zafi Email Worm Attacks Hungarian Prime Minister
http://www.net-security.org/press.php?id=2597


AEP Systems Signs Distributors In Europe and Israel
http://www.net-security.org/press.php?id=2596


MessageLabs Group Reports Another Year Of Record Revenues And
Appoints New Chairman
http://www.net-security.org/press.php?id=2595


PeerSec Networks Announces No-Compromise VoIP Security Solution
http://www.net-security.org/press.php?id=2594


Protego Releases Industry's First Enterprise-Class Threat Mitigation
Appliance With Distributed Processing
http://www.net-security.org/press.php?id=2593


Fortinet Enhances FortiGate Network Security Platform for Mid-Size
Enterprises and Small Businesses
http://www.net-security.org/press.php?id=2592


Blue Coat Delivers High-Performance Web Filtering Using ISS Proventia
Web Filter Technology
http://www.net-security.org/press.php?id=2591


Syngress Publishing Announces the Release of "Wireless Hacking:
Projects for Wi-Fi Enthusiasts"
http://www.net-security.org/press.php?id=2590


"Degunking Your Email, Spam, and Viruses" to Help Readers Clean Up
and Secure Their Email
http://www.net-security.org/press.php?id=2589


Spyware/Spydeleter, Malware that Tries to Blackmail Users Online
http://www.net-security.org/press.php?id=2588


New Spam Trend Targets Consumers With The Promise Of A Cheap Watch
http://www.net-security.org/press.php?id=2587


Elisa and F-Secure Introduce World's First Mobile Operator Antivirus
Service
http://www.net-security.org/press.php?id=2586


F-Secure's Antivirus and Intrusion Prevention Grew Fastest In The
Field
http://www.net-security.org/press.php?id=2585


Pointsec Signs Global Contract with ABB
http://www.net-security.org/press.php?id=2584


(ISC)2 Establishes Advisory Board Of The Americas For Cyber Security
http://www.net-security.org/press.php?id=2583


CIPA-Compliant Security Appliance Available for Schools
http://www.net-security.org/press.php?id=2582


Sana Security Launches Suite of Innate Defense Modules for Personal
Computers
http://www.net-security.org/press.php?id=2581


Virus Uses eBay and New Packer In Bid To Spread
http://www.net-security.org/press.php?id=2580


F-Secure Introduces World's First Integrated Security Solution For
Linux Systems
http://www.net-security.org/press.php?id=2579


Symantec Reports Record Revenue Growth In Fiscal Second Quarter
http://www.net-security.org/press.php?id=2578


A Prospectus Of SSH Communication Security Corp Has Been Published
http://www.net-security.org/press.php?id=2577

----------------------------------------------------------------




[ Virus News ]


All virus news are located at:
http://www.net-security.org/viruses.php


----------------------------------------------------------------

Bagle.BC Continues Causing Incidents Worldwide - New Variants Appear
http://www.net-security.org/virus_news.php?id=476


Weekly Virus Report - Seven Worms and One Spyware Application
http://www.net-security.org/virus_news.php?id=475


Bagle Worm BC Appears
http://www.net-security.org/virus_news.php?id=474


Malware Protection in  IRC
http://www.net-security.org/virus_news.php?id=473


Famus.B Worm That Exploits The Conflict In Iraq To Spread
http://www.net-security.org/virus_news.php?id=472

----------------------------------------------------------------

Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php


----------------------------------------------------------------
Information Management Network Presents The European Cyber 
Security in the Financial Services Sector Executive Summit &
The European Summit on Wireless Technology for Financial 
Institutions November 30 - December 1, 2004 * London
----------------------------------------------------------------
Sessions target systems technology professionals, lawyers, 
business continuity professionals, compliance officers and 
auditors at banks, brokerages, funds, asset managers, building 
societies and insurance companies, as well as their cyber 
security advisors and vendors. For additional information, 
please go to http://www.imn.org/a684/nse
----------------------------------------------------------------