HNS Newsletter
Issue 278 - 15.08.2005.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It
covers weekly roundups of security events that were in the
news the past week.

----------------------------------------------------------------
********* Acunetix Web Vulnerability Scanner ********* 
----------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability 
Scanner: Attackers are concentrating their efforts on attacking 
applications on your website. Up to 75% of cyber attacks are 
launched on shopping carts, forms, login pages, dynamic 
content etc. Check your website for vulnerabilities to SQL 
injection, Cross site scripting and other web attacks.
----------------------------------------------------------------
Download Trial: http://www.net-security.org/v/acunetix2
----------------------------------------------------------------

Table of contents:

1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Software
6) Conferences
7) Security World


[ Security news ]


----------------------------------------------------------------

SHINING A LIGHT ON ENTERPRISE GRID SECURITY
GRIDtoday editor Derrick Harris recently spoke with Glenn Brunette,
vice chair of the EGA Grid Security Working Group and a distinguished
engineer and chief security architect for the client solutions
division at Sun Microsystem.
http://www.net-security.org/news.php?id=8506


SECURITY DOWNLOAD MUST CLEARLY DISCLOSE ADWARE
Advertising.com has settled charges made by the Federal Trade
Commission (FTC) that it failed adequately to disclose the bundling
of adware with a free security download.
http://www.net-security.org/news.php?id=8507


SECURITY FIRMS BLOCK USB ACCESS
Sygate, McAfee enhance host-based services to guard against siphoning
by portable storage devices.
http://www.net-security.org/news.php?id=8508


MICROSOFT SLAMS VISTA VIRUS REPORT
Problem reported by F-Secure is 'non-existent'.
http://www.net-security.org/news.php?id=8509


ANTI-SPYWARE FIRM WARNS OF MASSIVE ID THEFT RING
Officials at Sunbelt Software, said the company stumbled upon a
massive ID theft ring.
http://www.net-security.org/news.php?id=8510


WEB SERVICES' SECURITY FACTOR
Basic practices such as authentication can protect Web services from
hackers and limit access to authorized personnel.
http://www.net-security.org/news.php?id=8511


SEALING THE DEAL WITH SECURITY CERTIFICATIONS
When it comes to security, obviously no company--big or small--takes
it lightly these days. Selecting the right solution provider for the
security job is a task that also takes serious consideration.
http://www.net-security.org/news.php?id=8512


FIVE MUST-HAVE HACKER TOOLS FOR THE SECURITY ADMIN
In this webcast, guest speaker Tom Bowers, CISSP, PMP and Certified
Ethical Hacker, identifies five must-have hacker tools for the
security admin.
http://www.net-security.org/news.php?id=8513


ATTACKS BEWILDER VERISIGN
Key overseer of the Internet says online world now a 'war zone'.
http://www.net-security.org/news.php?id=8514


NIGERIAN POLICE CRACK DOWN ON E-SCAMS
Here's how some scams originate.
http://www.net-security.org/news.php?id=8515


OS EXPLOITS ARE 'OLD HAT'
Security issues involving Cisco kit highlighted in Michael Lynn's
presentation at Black Hat are characteristic of networking vendors in
general.
http://www.net-security.org/news.php?id=8516


THE CASE OF THE STOLEN WI-FI: WHAT YOU NEED TO KNOW
Tapping into a wireless network can be against the law, and letting a
stranger access yours also can have serious repercussions.
http://www.net-security.org/news.php?id=8517


TARGETING THE ENEMY WITHIN
Insider security risks grow as partners and suppliers increasingly
have access to corporate networks. Here's what companies are doing
about the threat.
http://www.net-security.org/news.php?id=8518


PHP WEB APPLICATION SECURITY
We'll discuss some of the main security "gotchas" when developing PHP
web applications, from proper user input sanitization to avoiding SQL
injection vulnerabilities.
http://www.net-security.org/news.php?id=8519


RED HAT BANGS SECURITY DRUM
Security initiatives unveiled.
http://www.net-security.org/news.php?id=8520


SPYWARE COSTS IT $130,000 MONTHLY
More than 1,000 IT managers and end users reveals that spyware and
other unsanctioned downloads are resulting in average monthly costs
of $130,000 to IT enterprises.
http://www.net-security.org/news.php?id=8521


WIRETAPS FOR VOIP
The Federal Communications Commission (FCC) is expanding the reach of
U.S. wiretapping laws to wireline broadband providers and Internet
telephone companies.
http://www.net-security.org/news.php?id=8522


PERSONAL IMPLANTED CHIPS AND PRIVACY
Radio frequency identification (RFID) chips implanted into human
beings hold the promise of improving patient care.
http://www.net-security.org/news.php?id=8523


SHORT INTERVIEW WITH GIOVANNI VIGNA
Giovanni Vigna is the Associate Professor, Reliable Software Group,
Department of Computer Science at the University of California, Santa
Barbara. He is the leader of the Shellphish team, the winners of this
year's DEFCON Capture The Flag competition.
http://www.net-security.org/news.php?id=8524


FEW OBSTACLES DETER CYBER-TERRORISTS
Al Qaeda has become the first guerrilla movement to migrate from
physical space to cyberspace.
http://www.net-security.org/news.php?id=8525


SECURITY FIRM WARNS OF IM WORM
Less than a week after sounding the warning bell regarding a barrage
of threats coming through public Instant Messaging (IM) clients,
Akonix Security Center said it has discovered another bug.
http://www.net-security.org/news.php?id=8526


ENCRYPTION USE INCREASES
Many firms are increasing their use of encryption to boost IT
security, new research has found.
http://www.net-security.org/news.php?id=8527


HOW TO SECURE YOUR WIRELESS NETWORK
This purpose of this article is to help you understand the
terminology of wireless security in the home setting as well as to
develop a check list for key security oriented steps you should take
when setting up and using your network.
http://www.net-security.org/news.php?id=8528


NETWORK SOLUTIONS CEO ON DOMAIN NAME SECURITY
Network Solutions Chairman and CEO Champ Mitchell talked with
Computerworld's Sharon Machlis about his company's plans, explained
how the Hushmail domain hijacking really happened and weighed in on
the security of the domain name system.
http://www.net-security.org/news.php?id=8529


WARNING TO IT SECURITY PROS: IT'S AUGUST - ON GUARD!
August has traditionally been a rough month for IT security pros, an
anti-virus vendor warned Tuesday as it told users to keep alert even
as business slows down.
http://www.net-security.org/news.php?id=8530


LESSONS LEARNED FROM CORPORATE SECURITY BREACHES
With information security breaches in the U.S. now reported at a rate
of one every three days, corporate privacy and security officers need
to take stock about what's happening and what they can do about it.
http://www.net-security.org/news.php?id=8531


FORTINET LOSES ANTI-VIRUS PATENT RULING
The US International Trade Commission has passed an order blocking
Fortinet from importing its FortiGate antivirus firewall products
into the US pending resolution of a patent dispute with rival Trend
Micro.
http://www.net-security.org/news.php?id=8532


STEALING YOUR NEIGHBOR'S NET
The spread of wireless is opening lots of opportunity to log on for
free, but experts urge caution.
http://www.net-security.org/news.php?id=8533


TIPPINGPOINT LEANS INTO NETWORK THREATS
Intrusion-detection and intrusion-prevention products have come a
long way in a short time, as vendors have been fast to incorporate
new detection techniques and bolster defenses to an ever-widening
range of threats.
http://www.net-security.org/news.php?id=8534


SECURE YOUR APPS FOR NOTES AND WEB CLIENTS
In this webcast, We will look at application security using a
top-down approach, teaching you about all of the access points for an
application and introducing you to tips and techniques for
troubleshooting application security.
http://www.net-security.org/news.php?id=8535


FORMER 'SPAM KING' PAYS MS $7M TO SETTLE LAWSUIT
Former 'Spam King' Scott Richter has agreed to pay Microsoft $7m to
settle an anti-spam lawsuit.
http://www.net-security.org/news.php?id=8536


MICROSOFT ISSUES 3 CRITICAL SECURITY BULLETINS
Microsoft on Tuesday issued six security bulletins for Windows, half
of them carrying critical vulnerabilities, with the majority of the
bugs able to be exploited remotely.
http://www.net-security.org/news.php?id=8537


BLU-RAY CONSORTIUM LAUNCHES NEW DVD SECURITY FEATURES
One of the two groups vying to produce the next generation of DVDs
rolled out new security features Tuesday to entice entertainment and
electronics companies to adopt its technology.
http://www.net-security.org/news.php?id=8538


BLUETOOTH: IS IT A SECURITY THREAT?
Is it secure? Can it be made secure? What are particular security
concerns? We'll take a look at those questions in this article.
http://www.net-security.org/news.php?id=8539


HARMLESS HACKERS OR TEEN CRIMINALS?
'Arrest me, I know the password!'
http://www.net-security.org/news.php?id=8540


MICROSOFT'S HONEYMONKEYS PROVE PATCHING WINDOWS WORKS
Microsoft's Strider HoneyMonkey research project sniffs out sites
hosting malicious code for patching or legal action.
http://www.net-security.org/news.php?id=8541


GUIDE FOR SECURING WINDOWS SERVER ACTIVE DIRECTORY INSTALLATIONS
This guide is an update to the Windows 2000 guide and assists IT
professionals who participate in security planning for an Active
Directory service deployment and who are running a secure Active
Directory operation.
http://www.net-security.org/news.php?id=8542


MANAGING LINUX DAEMONS WITH INIT SCRIPTS
What happens if you're building from source, and no init script is
supplied? What if you're writing the source and haven't ever built an
init script?
http://www.net-security.org/news.php?id=8543


AOL RAFFLES SPAMMER'S GOLD BARS
AOL is planning to give away assets seized from spammers in a US
sweepstake due to launch Wednesday.
http://www.net-security.org/news.php?id=8544


SECURING THE ENTERPRISE: DEVELOPING AN ANTI-PHISHING STRATEGY
News reports break daily on the increasing frequency and cost of
identity theft crimes. These electronic crimes target a broad range,
from large multi-national organizations to individuals.
http://www.net-security.org/news.php?id=8545


HACKERS BREAK INTO TWO UNIVERSITIES - 100,000 IDENTITIES AT RISK
Hackers broke into the computer networks of two universities and may
have accessed 100,000 identities, including Social Security numbers,
school officials in California and Texas said this week.
http://www.net-security.org/news.php?id=8546


THE HIDDEN BOOT CODE OF THE XBOX
The principles, the implementations and the security vulnerabilities
of the 512 bytes ROM will be discussed in this article.
http://www.net-security.org/news.php?id=8547


MICROSOFT INITIALLY RELEASED CORRUPTED IE PATCH
The patch for Internet Explorer that Microsoft earlier this week
urged users to install as soon as possible was flawed, the company
says.
http://www.net-security.org/news.php?id=8548


LATEST PHISHING SCAM GOES LOW TECH
This one asks users to fax their credit card details to a toll-free
number.
http://www.net-security.org/news.php?id=8549


CRITICS SLAM NET WIRETAPPING RULE
An FCC ruling that internet telephony services must provide the same
built-in wiretapping capabilities as conventional phone companies has
civil libertarians feeling burned.
http://www.net-security.org/news.php?id=8550


FAX-BACK PHISHING SCAM TARGETS PAYPAL
Phishers have gone retro with a scam that tries to dupe victims into
faxing their banking details to fraudsters.
http://www.net-security.org/news.php?id=8551


BELKIN ADDS SIMPLE WLAN SECURITY SETUP
Belkin today announced that it has enhanced the installation wizard
of selected wireless routers to include simplified wireless security
setup.
http://www.net-security.org/news.php?id=8552


DHS HEAD: BUSINESSES NEED TO FOCUS ON CYBERSECURITY
Chertoff also calls for incentives to private sector.
http://www.net-security.org/news.php?id=8553


FBI: BUSINESSES (STILL) RELUCTANT TO REPORT CYBER ATTACKS
Roughly 20% of businesses report computer intrusions annually, a
figure the agency believes is low.
http://www.net-security.org/news.php?id=8554


INTELLIGENT PATCHING STRATEGIES
Learn what intelligent patching is, what to look for in a system and
how it can provide the necessary audit trails you need to lower
downtime and troubleshooting time and also create a self-documenting
environment for your business.
http://www.net-security.org/news.php?id=8555


WHEN IT COMES TO IM, FIRST THINK SECURITY
As IT administrators increasingly move to adopt enterprise-level
instant messaging software, industry players say their first thought
should be about how to make it secure.
http://www.net-security.org/news.php?id=8556


SECURITY EXPERT: MORE DEVELOPER EDUCATION NEEDED
Many programmers don't understand how code errors cause
vulnerabilities.
http://www.net-security.org/news.php?id=8557


AOL TO GIVE AWAY SPAMMER LOOT
Cash and a Hummer are part of assets recovered from New Hampshire
man.
http://www.net-security.org/news.php?id=8558


MICROSOFT EXPLOIT CODE HITS THE WEB
Windows Plug-and-Play hole could give hackers complete control.
http://www.net-security.org/news.php?id=8559


TRAFFIC HACKERS HIT RED LIGHT
If you've ever been stuck in traffic longing for a magic box that
could turn all your red lights to green, beware: Acting on that
fantasy became a federal crime this week.
http://www.net-security.org/news.php?id=8560


STUDENTS, AND SECURITY THREATS, HEAD TO STANFORD
Stanford University's School of Education deploys new security
modules from Juniper Networks to tighten security and boost network
performance.
http://www.net-security.org/news.php?id=8561


HOME PC FACE SECURITY ONSLAUGHT
If your house was burgled only 12 minutes after you moved in, you
would probably think about selling up and moving on pretty quickly.
http://www.net-security.org/news.php?id=8562


LIVING WITH SPYWARE
Virtually every PC that connects to the Internet on a regular basis
will by now have acquired its own collection of spy- and adware
hangers-on.
http://www.net-security.org/news.php?id=8563


CISCO SECURITY FLAP IS MUCH ADO ABOUT SOMETHING
Michael Lynn: Your 15 minutes are up. Cisco Systems: You're still on
the clock.
http://www.net-security.org/news.php?id=8564


THE FINGERPRINT OF PAPER
Scientists devise new way to foil forgeries.
http://www.net-security.org/news.php?id=8565

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/vulnerabilities.php


----------------------------------------------------------------

FreznoShop product_details.php id Variable SQL Injection
http://www.net-security.org/vulnerability.php?id=18686


Gaim Non-utf8 Invalid Filename Remote DoS
http://www.net-security.org/vulnerability.php?id=18668


WordPress Cookie cache_lastpostdate Variable Arbitrary PHP Code
Execution
http://www.net-security.org/vulnerability.php?id=18672


Microsoft Windows Remote Desktop Protocol (RDP) Crafted Packet Remote
DoS
http://www.net-security.org/vulnerability.php?id=18624


Microsoft Windows Print Spooler Service Remote Overflow
http://www.net-security.org/vulnerability.php?id=18607


Microsoft IE JPEG Rendering Memory Corruption Arbitrary Code
Execution
http://www.net-security.org/vulnerability.php?id=18610


Microsoft IE Web Folder Cross-Domain Code Execution
http://www.net-security.org/vulnerability.php?id=18611


Microsoft IE COM Object Memory Corruption Arbitrary Code Execution
http://www.net-security.org/vulnerability.php?id=18612


Microsoft Windows Kerberos Crafted Packet Remote DoS
http://www.net-security.org/vulnerability.php?id=18608


Microsoft Windows Kerberos PKINIT Domain Controller Spoofing
http://www.net-security.org/vulnerability.php?id=18609


Microsoft Windows Plug-and-Play Service Remote Overflow
http://www.net-security.org/vulnerability.php?id=18605


Microsoft Windows Telephony Application Programming Interface (TAPI)
Overflow
http://www.net-security.org/vulnerability.php?id=18606


Chipmunk Forum index.php fontcolor Variable XSS
http://www.net-security.org/vulnerability.php?id=18653


Linux Kernel Malformed Keyring Addition DoS
http://www.net-security.org/vulnerability.php?id=18651


Linux Kernel Keyring Management KEYCTL_JOIN_SESSION_KEYRING DoS
http://www.net-security.org/vulnerability.php?id=18652


tDiary HTTP GET Cross-Site Request Forgery
http://www.net-security.org/vulnerability.php?id=18604


Comdev eCommerce config.php Remote File Inclusion
http://www.net-security.org/vulnerability.php?id=18601


Wine winelauncher.in Symlink Arbitrary File Overwrite
http://www.net-security.org/vulnerability.php?id=18602


Lantonix Secure Console Server edituser Local Overflow
http://www.net-security.org/vulnerability.php?id=18597


Lantonix Secure Console Server listen_fifo_server Symlink Arbitrary
Privileged File Overwrite
http://www.net-security.org/vulnerability.php?id=18595


Lantonix Secure Console Server Traversal Arbitrary Privileged Command
Execution
http://www.net-security.org/vulnerability.php?id=18596

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

US-CERT Technical Cyber Security Alert - 
VERITAS Backup Exec Uses Hard-Coded Authentication Credentials
(TA05-224A)
http://www.net-security.org/advisory.php?id=5154


Ubuntu Security Notice - gaim vulnerabilities (USN-168-1)
http://www.net-security.org/advisory.php?id=5153


Debian Security Advisory - fetchmail (DSA 774-1)
http://www.net-security.org/advisory.php?id=5152


Ubuntu Security Notice - awstats vulnerability (USN-167-1)
http://www.net-security.org/advisory.php?id=5151


Mandriva Linux Security Update Advisory - ucd-snmp (MDKSA-2005:137)
http://www.net-security.org/advisory.php?id=5150


Mandriva Linux Security Update Advisory - kdegraphics
(MDKSA-2005:135)
http://www.net-security.org/advisory.php?id=5149


Mandriva Linux Security Update Advisory - cups (MDKSA-2005:138)
http://www.net-security.org/advisory.php?id=5148


Mandriva Linux Security Update Advisory - gpdf (MDKSA-2005:136)
http://www.net-security.org/advisory.php?id=5147


Mandriva Linux Security Update Advisory - MDKSA-2005:134 (xpdf)
http://www.net-security.org/advisory.php?id=5146


Debian Security Advisory - several ( DSA 773-1)
http://www.net-security.org/advisory.php?id=5145


SUSE Security Announcement - mozilla,MozillaFirefox,epiphany,galeon
(SUSE-SA:2005:045)
http://www.net-security.org/advisory.php?id=5144


Ubuntu Security Notice - heartbeat vulnerability (USN-165-1)
http://www.net-security.org/advisory.php?id=5143


Ubuntu Security Notice - evolution vulnerabilities (USN-166-1)
http://www.net-security.org/advisory.php?id=5142


Conectiva Linux Security Announcement - zlib (CLA-2005:997)
http://www.net-security.org/advisory.php?id=5141


Conectiva Linux Security Announcement - gzip (CLA-2005:996)
http://www.net-security.org/advisory.php?id=5140


Ubuntu Security Notice - netpbm-free vulnerability (USN-164-1)
http://www.net-security.org/advisory.php?id=5139


Conectiva Linux Security Announcement - vim (CLA-2005:995)
http://www.net-security.org/advisory.php?id=5138


Fedora Legacy Update Advisory - Updated spamassassin package fixes
security issue (FLSA:129284)
http://www.net-security.org/advisory.php?id=5137


Fedora Legacy Update Advisory - Updated mc packages fix security
issues (FLSA:152889)
http://www.net-security.org/advisory.php?id=5136


Fedora Legacy Update Advisory - Updated gzip package fixes security
issues (FLSA:157696)
http://www.net-security.org/advisory.php?id=5135


Fedora Legacy Update Advisory - Updated Apache httpd packages fix
security issues (FLSA:157701)
http://www.net-security.org/advisory.php?id=5134


Mandriva Linux Security Update Advisory - netpbm (MDKSA-2005:133)
http://www.net-security.org/advisory.php?id=5133


Mandriva Linux Security Update Advisory - heartbeat (MDKSA-2005:132)
http://www.net-security.org/advisory.php?id=5132


Mandriva Linux Security Update Advisory - heartbeat (MDKSA-2005:132)
http://www.net-security.org/advisory.php?id=5131


Microsoft Security Bulletin - Summary for August 2005 (1.0)
http://www.net-security.org/advisory.php?id=5130


US-CERT Technical Cyber Security Alert - Microsoft Windows and
Internet Explorer Vulnerabilities (TA05-221A)
http://www.net-security.org/advisory.php?id=5129


Ubuntu Security Notice - xpdf vulnerability (USN-163-1)
http://www.net-security.org/advisory.php?id=5128


Turbolinux Security Announcement - apache, httpd, proftpd
(09/Aug/2005)
http://www.net-security.org/advisory.php?id=5127


Ubuntu Security Notice - ekg vulnerabilities (USN-162-1)
http://www.net-security.org/advisory.php?id=5126


Conectiva Linux Security Announcement - mozilla (CLA-2005:994)
http://www.net-security.org/advisory.php?id=5125


Conectiva Linux Security Announcement - krb5 (CLA-2005:993)
http://www.net-security.org/advisory.php?id=5124

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

HOW TO SECURE YOUR WIRELESS NETWORK
This purpose of this article is to help you understand the
terminology of wireless security in the home setting as well as to
develop a check list for key security oriented steps you should take
when setting up and using your network.
http://www.net-security.org/article.php?id=811

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3

Mac OS X software is located at:
http://net-security.org/software_main.php?cat=5


----------------------------------------------------------------

ACUNETIX WEB VULNERABILITY SCANNER 2.0 (Windows)
This tool can automatically audit the security of your website and
web applications.
http://www.net-security.org/software.php?id=633


CONSOLE PASSWORD MANAGER (CPM) 0.15 Beta (Linux)
cpm is a small console tool to manage passwords and store them public
key encrypted in a file - even for more than one person.
http://www.net-security.org/software.php?id=287


GROKEVT 0.1.2 (Linux)
GrokEVT is a collection of scripts for reading Windows event log
files.
http://www.net-security.org/software.php?id=328


LINUX-VSERVER 2.0 (Linux)
A system for running general purpose virtual servers on one box at
full speed.
http://www.net-security.org/software.php?id=527


MARADNS 1.1.43 (Linux)
MaraDNS is a DNS server that strives to be secure and fully
open-sourced.
http://www.net-security.org/software.php?id=84


PROSHIELD 3.7.25 (Linux)
ProShield is a security program for Debian Linux.
http://www.net-security.org/software.php?id=282


SCAPY 1.0.0 (Linux)
Scapy is a powerful interactive packet manipulation tool, packet
generator, network scanner, network discovery tool, and packet
sniffer.
http://www.net-security.org/software.php?id=485


TOR 0.1.0.15 alpha (Windows)
An anonymous Internet communication system.
http://www.net-security.org/software.php?id=253

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

Crypto 2005
Organized by International Association for Cryptologic Research - 14
August-18 August 2005
http://www.net-security.org/conference.php?id=122


8th Information Security Conference(ISC'05)
Organized by Institute for Infocomm Research - 21 September-23
September 2005
http://www.net-security.org/conference.php?id=123


The 4th International Workshop for Applied PKI (IWAP'05)
Organized by Institute for Infocomm Research - 21 September-23
September 2005
http://www.net-security.org/conference.php?id=124


IT Security World 2005 Conference & Expo
Organized by MISTI - 26 September-1 October 2005
http://www.net-security.org/conference.php?id=143


HealthSec 2005 Conference & Expo
Organized by MISTI - 28 September-30 September 2005
http://www.net-security.org/conference.php?id=141


RUXCON 2005
Organized by RUXCON - 1 October-2 October 2005
http://www.net-security.org/conference.php?id=144


RSA Conference Europe 2005
Organized by RSA Conference - 17 October-19 October 2005
http://www.net-security.org/conference.php?id=133


CNIS 2005: IASTED International Conference on Communication, Network
and Information Security
Organized by IASTED - 14 November-16 November 2005
http://www.net-security.org/conference.php?id=137


Asiacrypt 2005
Organized by International Association for Cryptologic Research - 1
December-4 December 2005
http://www.net-security.org/conference.php?id=125


3rd International IEEE Security in Storage Workshop
Organized by  IEEE Computer Society - 13 December-13 December 2005
http://www.net-security.org/conference.php?id=140


RSA Conference 2006
Organized by RSA Security - 13 February-17 February 2006
http://www.net-security.org/conference.php?id=142

----------------------------------------------------------------




[ Security World ]


All press releases are located at:
http://www.net-security.org/press_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

MDI Security Systems' iTRUST Small Business Solution Named 2005
Security Technology of the Year by Secure Convergence Journal
http://www.net-security.org/press.php?id=3374


Phishing Fax Lures The Lax - Sophos Warns Of Latest Internet Fraud
Trend
http://www.net-security.org/press.php?id=3373


Panda Software receives Checkmark certification for DominoSecure
Antivirus in recognition of its effectiveness detecting malware
http://www.net-security.org/press.php?id=3372


TeliaSonera Finland and F-Secure united against mobile viruses at the
World Championships
http://www.net-security.org/press.php?id=3371


SecureOL unveils “Security by Virtualization” VE2 and VELite - a new
security paradigm now available for download
http://www.net-security.org/press.php?id=3370


Elemental Compliance System Named “Hot Pick” By Information Security
Magazine
http://www.net-security.org/press.php?id=3369


CallingID Announces Anti-Phishing Solution that Helps Banks Meet FDIC
Recommendations
http://www.net-security.org/press.php?id=3368


MDI Integrated Security and Intelligent Video Surveillance Deployed
by OneSystems to Secure Singapore's Largest Unified National
Celebration
http://www.net-security.org/press.php?id=3367


NFR Security Announces Enterprise-Class Multi-Gigabit Intrusion
Prevention Solutions
http://www.net-security.org/press.php?id=3366


State Of Louisiana's Criminal Justice System Secured With Joint 3Com,
Tippingpoint Solution
http://www.net-security.org/press.php?id=3365


Watchfire Announces New Intranet Solution
http://www.net-security.org/press.php?id=3364


New Tool From Syhunt Helps Organizations Secure Their Web
Applications
http://www.net-security.org/press.php?id=3363


PixAlert Risk Assessment Determines Degree of Exposure to
Inappropriate and Illegal Images
http://www.net-security.org/press.php?id=3362

----------------------------------------------------------------





Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php


----------------------------------------------------------------
********* Acunetix Web Vulnerability Scanner ********* 
----------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability 
Scanner: Attackers are concentrating their efforts on attacking 
applications on your website. Up to 75% of cyber attacks are 
launched on shopping carts, forms, login pages, dynamic 
content etc. Check your website for vulnerabilities to SQL 
injection, Cross site scripting and other web attacks.
----------------------------------------------------------------
Download Trial: http://www.net-security.org/v/acunetix2
----------------------------------------------------------------