HNS Newsletter
Issue 280 - 29.08.2005.
http://net-security.org

This is a newsletter delivered to you by Help Net Security. It
covers weekly roundups of security events that were in the
news the past week.

----------------------------------------------------------------
********* Master of Science in Information Security *********
----------------------------------------------------------------
Earn your Master of Science in Information Security online
from Norwich University. The National Security Agency has 
designated Norwich a center of Academic Excellence in 
Information Security. The program offers a solid education 
in the management of information assurance, and the unique 
case study method means you will gain consulting experience 
as you progress through the program.  Using today's e-Learning 
technology, you can earn this esteemed degree, without 
disrupting your career or home life.
----------------------------------------------------------------
Visit http://www.msia.norwich.edu/netsecure_en for details.
----------------------------------------------------------------


Table of contents:

1) Security news
2) Vulnerabilities
3) Advisories
4) Articles
5) Software
6) Webcasts
7) Conferences
8) Security World
9) Virus News


[ Security news ]


----------------------------------------------------------------

WHAT IS CLAMXAV (AND DO MAC USERS REALLY NEED ANTIVIRUS?)
ClamXav is a free virus checker for Mac OS X.
http://www.net-security.org/news.php?id=8630


"HACK"-DOOR ADMISSIONS
A number of prestigious colleges and universities across the country
have discovered they are being hacked at an alarming rate.
http://www.net-security.org/news.php?id=8631


GERMANY LAUNCHES IT SECURITY INITIATIVE
Interior minister says companies need to do more to protect systems.
http://www.net-security.org/news.php?id=8632


HUNDREDS OF STANFORD UNIVERSITY WEB SITES DEFACED
A crew of brazilian defacers known as Unknown Core penetrated a
server belonging to the university of Stanford and defaced 306 sites.
http://www.net-security.org/news.php?id=8633


COMMENTS ON NETWORK ANOMALY DETECTION SYSTEM ARTICLE
Richard Bejtlich was asked to comment on Paul Proctor's new article
in the August 2005 Information Security magazine, titled A Safe Bet?.
http://www.net-security.org/news.php?id=8634


EYE-WITNESS ACCOUNT OF A GLOBAL VIRUS OUTBREAK
On Sunday the 14th we found a new virus around noon...
http://www.net-security.org/news.php?id=8635


QUESTIONS SURROUND SMARTPHONE SECURITY
Wireless vendors are rolling out a new generation of handheld
computers called smartphones for corporate users, but many network
executives say they won't consider them until the means to manage and
secure them are clear.
http://www.net-security.org/news.php?id=8636


HACKERS ROB ONLINE GAMERS
Game cheating reaches a new low.
http://www.net-security.org/news.php?id=8637


CYBERCRIME FLOURISHING IN RUSSIA, ROMANIA
Romania, along with Russia, is a hotbed of computer crime.
http://www.net-security.org/news.php?id=8638


NET ACCESS SECURITY PLANS SOW CONFUSION
The worms that threatened Win­dows computers last week made clear
once again that vulnerable desktops and laptops pose a serious
threat.
http://www.net-security.org/news.php?id=8639


VERITAS USERS CRY FOUL OVER SECURITY INFO
Veritas may have been taken over by security giant Symantec, but end
users have been left wanting better notification in the wake of a
critical vulnerability with its backup software.
http://www.net-security.org/news.php?id=8640


FBI USES CYBER LAB TO CATCH SEXUAL PREDATORS
The New Haven-based lab is also used to investigate more
sophisticated computer crimes, including Internet and credit card
fraud, identity and intellectual property theft, and hacking.
http://www.net-security.org/news.php?id=8641


WIRELESS WIRETAPPING
A Federal Communications Commission (FCC) announced earlier this
month that it intends to expand a mid-1990s ruling that allows law
enforcement officers to wiretap conventional phone lines.
http://www.net-security.org/news.php?id=8642


INTELLECTUAL PROPERTY IS FOCUS AT NEW JOB
Our security manager starts a new position with a mandate to keep
company IP from walking out the door.
http://www.net-security.org/news.php?id=8643


BEWARE AND BE AWARE OF ROOTKITS
Attackers are increasingly turning to stealthy rootkits to keep
anti-virus vendors from detecting and deleting malicious worms or
Trojan horses, a Russian security firm said Monday.
http://www.net-security.org/news.php?id=8644


ID THEFT SPYWARE SCAM UNCOVERED
Thousands of computer users have been caught out by a huge ID theft
ring.
http://www.net-security.org/news.php?id=8645


US AIR FORCE SCRAMBLES AFTER PRIVACY BREACH
The US Air Force has been forced to notify more than 33,000 airmen
that their personal details might have been exposed following the
discovery of a computer security breach.
http://www.net-security.org/news.php?id=8646


INFORMATION SECURITY IN CAMPUS AND OPEN ENVIRONMENTS
This article is geared towards techies at libraries and schools and
will attempt to address common security problems that may pop up at
these institutions. The author gears the solutions towards Open
Source, freeware, and base operating system security in a Windows
XP/2k environment.
http://www.net-security.org/news.php?id=8647


BEST PRACTICES FOR WIRELESS SECURITY AND MANAGEMENT
Learn best practices for deploying, managing, and securing enterprise
wireless handheld fleets.
http://www.net-security.org/news.php?id=8648


EARTHLINK GOES SECURITY SHOPPING
Earthlink said that it bought the assets of anti-spyware maker Aluria
Software.
http://www.net-security.org/news.php?id=8649


SUN KICKS OFF OPEN DRM PROJECT
Open digital rights technology aimed at furthering digital content.
http://www.net-security.org/news.php?id=8650


LEGAL DISASSEMBLY
When Michael Lynn went to give a presentation at Black Hat, little
did he know he would ignite a legal firestorm questioning whether
even the act of looking for security vulnerabilities violates the
law.
http://www.net-security.org/news.php?id=8651


'ETHICAL HACKERS' RECRUITED
A new generation of "ethical hackers" are to be trained in Wales to
test and protect the world's computer security systems.
http://www.net-security.org/news.php?id=8652


MALICIOUS HACKERS TURN ON EACH OTHER
In the early days of computer attacks, when bright teens could bring
down corporate systems, the point was often to trumpet a malicious
hacker's success. No longer.
http://www.net-security.org/news.php?id=8653


CRIMEWARE EPIDEMIC SPREADING FAST
Epic battle shaping up between phishers and counter-phishers.
http://www.net-security.org/news.php?id=8654


US TOPS POLL OF SPYWARE PURVEYORS
Spyware purveyors are expanding their distribution channels and
adopting new tactics in a bid to cash-in by infesting more PCs with
parasitic malware.
http://www.net-security.org/news.php?id=8655


SARBANES-OXLEY SEEN AS BIGGEST IT TIME WASTER
Deployment of unproven technologies also ranked as potential waste of
time in IBM user group poll.
http://www.net-security.org/news.php?id=8656


SPYWARE PLAGUE GOES CORPORATE
20 per cent increase in incidents during the last quarter.
http://www.net-security.org/news.php?id=8657


IDENTITY MANAGEMENT ARCHITECTURES AND DIGITAL IDENTITY
After some analysis, you've decided that your company needs to beef
up its digital identity infrastructure.
http://www.net-security.org/news.php?id=8658


CA PATCHES SECURITY FLAWS IN MULTIPLE PRODUCTS
Computer Associates [CA] has issued patches to fix security flaws
involving its Message Queuing software that affect many of its
products.
http://www.net-security.org/news.php?id=8659


IDEAL-TO-REALIZED SECURITY ASSURANCE IN CRYPTOGRAPHIC KEYS (PART 2)
In the final installment of this two-part series, we'll cover two
closely related collision attacks - the birthday attack and the
meet-in-the-middle attack.
http://www.net-security.org/news.php?id=8660


ADVANCED VULNERABILITY MANAGEMENT
When security administrators think about vulnerability management,
they think about the cool tools at their disposal. But running scans
does not make for a good vulnerability management process.
http://www.net-security.org/news.php?id=8661


A LAYERED APPROACH TO NETWORK SECURITY
Fresh off a company conference call where the primary topic was this
week's Windows Plug and Play worm, Arun DeSouza was asked for his
thoughts on this most recent major attack on the operating system.
http://www.net-security.org/news.php?id=8662


NOT ALL SECURITY PROS ARE EQUAL
Experts warn that organizations should look for a lot more than
certifications before allowing someone to protect their corporate
assets.
http://www.net-security.org/news.php?id=8663


"DONNIE BRASCO" UNVEILS NEW SECURITY CAMERAS
The retired undercover FBI agent who infiltrated the Bonanno Crime
Family will unveil one of the latest tools in the arsenal of homeland
security products Wednesday.
http://www.net-security.org/news.php?id=8664


CISCO PATCHES IDS SOFTWARE, SENSORS AGAINST SPOOFING
A vulnerability in Cisco's security monitors could let attackers
spoof the network giant's intrusion detection software and sensors,
the company reveals in multiple security advisories.
http://www.net-security.org/news.php?id=8665


MICROSOFT FIND SPAM BILL HARD TO SWALLOW
The US executive charged with leading Microsoft's global drive
against spam and phishing frauds paid a flying visit to Wellington
last week to try to talk the Government out of passing its proposed
anti-spam bill in its current form.
http://www.net-security.org/news.php?id=8666


BANKS ABANDONING SSL ON HOME PAGE LOG-INS
Some of the biggest banks have abandoned the practice of posting
their online account log-in screens on SSL-protected pages in an
effort to boost page response time.
http://www.net-security.org/news.php?id=8667


ADVICE ON ASSESSING YOUR IT SECURITY POSTURE
Most people will agree that Information Technology (IT) is changing
or altering business processes and work environments at a dizzying
pace. Unfortunately for those responsible for maintaining the
security posture of these processes and environments, security
changes faster.
http://www.net-security.org/news.php?id=8668


THEY SPY WITH THEIR MALICIOUS EYE
Spyware are programs that monitor user activity and subsequently
transmit user information to remote servers.
http://www.net-security.org/news.php?id=8669


VOIP EMERGING AS NEXT SPAM ENTRYWAY
The challenge in building VoIP anti-spam tools is finding algorithms
that can determine if calls are generated by humans or machines.
http://www.net-security.org/news.php?id=8670


SPYWARE EYES BIGGER BUCKS
Spyware is getting more dangerous and has become a greater threat for
the enterprise, according to the latest quarterly state of spyware
report from Webroot Software.
http://www.net-security.org/news.php?id=8671


ZOTOB WORMS CAN AFFECT XP COMPUTERS
Microsoft admitted that the Zotob worm and similar worms could also
affect certain Windows XP computers in a security advisory issued on
Tuesday.
http://www.net-security.org/news.php?id=8672


PHISHERS AND SECURITY FIRMS IN MALWARE 'ARMS RACE'
Conventional phishing attacks launched via spam messages are becoming
eclipsed by sophisticated malware.
http://www.net-security.org/news.php?id=8673


WHY YOU NEED TO ADD “PROTECT DOMAIN NAME” TO THE SECURITY CHECKLIST
Domain name hijacking broadly refers to acts where a registered
domain name is misused or stolen from the rightful name holder.
http://www.net-security.org/news.php?id=8674


THREE BURNING IT SECURITY ISSUES
Jay Heiser, conference co-chairman and Gartner vice-president, shares
his insight on three burning IT security issues ahead of the Gartner
IT Security Summit 2005.
http://www.net-security.org/news.php?id=8675


ENSURING APPS SECURITY FROM THE GET-GO
Closing the gap between developers and users is is the first step
toward making sure applications are secure.
http://www.net-security.org/news.php?id=8676


MICROSOFT VOWS TO PLAY NICE WITH SECURITY CHIP
Windows Vista eases privacy concerns over security chip.
http://www.net-security.org/news.php?id=8677


DEVELOPING SECURE SOFTWARE IS A MANAGEMENT ISSUE
When security vulnerabilities in a vendor's software are exploited,
significant costs are faced by the vendor and its software users.
http://www.net-security.org/news.php?id=8678


IS THE REAL ID ACT THE REAL DEAL FOR ID SECURITY?
Is the Real ID Act a step toward a safer society or a threat to the
liberties we hold dear?
http://www.net-security.org/news.php?id=8679


IN ANY LANGUAGE, IM WORM A PAIN
A new "multiple language" smart worm is spreading through Instant
Messaging, checking system settings of IM clients and then sending
messages in the appropriate language.
http://www.net-security.org/news.php?id=8680


GLOBAL PHISHING OUTBREAK HITS FOUR BANKS
Thieves get busy.
http://www.net-security.org/news.php?id=8681


AN INTRODUCTION IP SPOOFING
IP spoofing is a technique used to gain unauthorized access to
computers.
http://www.net-security.org/news.php?id=8682


DETECT WEAK NETWORK PASSWORDS WITH HYDRA
Hydra is a network login cracker for more than 30 network services.
http://www.net-security.org/news.php?id=8683


CONSISTENT VOICE NEEDED ON SECURITY ISSUES, SAYS TECHNET
Zannetos seeks to articulate industry views to Congress.
http://www.net-security.org/news.php?id=8684


THE GIMP THREATENS PIN NUMBER SECURITY
This must be a first: Linux image manipulation programme the GIMP has
been fingered as a possible tool in uncovering people's PIN numbers as
sent through the post.
http://www.net-security.org/news.php?id=8685


PROTECTING YOUR EMAIL NETWORK WITH A LAYERED SECURITY ARCHITECTURE
In this webcast Sendmail will explain the four basic layers of email
security architecture, typical security gaps in complex email
networks and how to fix them, and best practices to improve email
security in a multi-vendor environment.
http://www.net-security.org/news.php?id=8686


MICROSOFT TO RELEASE ANTIPHISHING TOOL BEFORE IE 7
Phishing filter will be available for IE 6 running on Windows XP with
SP2 installed.
http://www.net-security.org/news.php?id=8687


CYBERCROOKS LURE CITIZENS INTO INTERNATIONAL CRIME
Consumer-level financial fraud has been around since thieves first
thought to filch blank checks from mailboxes.
http://www.net-security.org/news.php?id=8688


LIVE ON TELEVISION, A WORM ATTACKS
"There were some high-profile customers that were attacked by the
worm," said Debby Fry Wilson, director of Microsoft's Security
Response Center.
http://www.net-security.org/news.php?id=8689


DISTANCE DETECTION MAY HELP SECURE WI-FI
Technology could prevent unauthorised access.
http://www.net-security.org/news.php?id=8690


THREE INDICTED IN U.S. SPAM CRACKDOWN
The accused could face long prison sentences if convicted by a grand
jury in Arizona.
http://www.net-security.org/news.php?id=8691


CHINESE WEBSITES ATTACK US DEFENCE NETWORKS
Websites in China are being used to launch attacks on US Defence
Department computer networks and other US agencies, according to
reports in the Washington Post.
http://www.net-security.org/news.php?id=8692

----------------------------------------------------------------




[ Vulnerabilities ]


All vulnerabilities are located here:
http://www.net-security.org/vulnerabilities.php


----------------------------------------------------------------

mplayer Video File Audio Header strf Overflow
http://www.net-security.org/vulnerability.php?id=19019


Microsoft IIS SERVER_NAME Variable Spoofing Filter Bypass
http://www.net-security.org/vulnerability.php?id=18926


Linux ifenslave Local Overflow
http://www.net-security.org/vulnerability.php?id=18965


LM Sensors /tmp/fancontrol Symlink Arbitrary File Overwrite
http://www.net-security.org/vulnerability.php?id=18905


CaLogic Path Disclosure doclsqlres.php Direct Request Path Disclosure
http://www.net-security.org/vulnerability.php?id=18989


CaLogic Path Disclosure clmcpreload.php Direct Request Path
Disclosure
http://www.net-security.org/vulnerability.php?id=18990


CaLogic Path Disclosure viewhistlog.php Direct Request Path
Disclosure
http://www.net-security.org/vulnerability.php?id=18991


CaLogic Path Disclosure mcconfig.php Direct Request Path Disclosure
http://www.net-security.org/vulnerability.php?id=18992


CaLogic Path Disclosure doclsqlbak.php Direct Request Path Disclosure
http://www.net-security.org/vulnerability.php?id=18993


CaLogic Path Disclosure defcalsel.php Direct Request Path Disclosure
http://www.net-security.org/vulnerability.php?id=18994


CaLogic Path Disclosure cl_minical.php Direct Request Path Disclosure
http://www.net-security.org/vulnerability.php?id=18995


Coppermine Photo Gallery EXIF Data XSS
http://www.net-security.org/vulnerability.php?id=18918

----------------------------------------------------------------




[ Advisories ]


All advisories are located at:
http://www.net-security.org/archive_advi.php


----------------------------------------------------------------

Mandriva Linux Security Update Advisory - python (MDKSA-2005:154)
http://www.net-security.org/advisory.php?id=5203


Mandriva Linux Security Update Advisory - gnumeric (MDKSA-2005:153)
http://www.net-security.org/advisory.php?id=5202


Mandriva Linux Security Update Advisory - mozilla-thunderbird
(MDKSA-2005:127-1)
http://www.net-security.org/advisory.php?id=5201


Ubuntu Security Notice - courier vulnerability (USN-174-1)
http://www.net-security.org/advisory.php?id=5200


Debian Security Advisory - backup manager (DSA 787-1)
http://www.net-security.org/advisory.php?id=5199


Debian Security Advisory - simpleproxy (DSA 786-1)
http://www.net-security.org/advisory.php?id=5198


Mandriva Linux Security Update Advisory - php (MDKSA-2005:152)
http://www.net-security.org/advisory.php?id=5197


Mandriva Linux Security Update Advisory - pcre (MDKSA-2005:151)
http://www.net-security.org/advisory.php?id=5196


Mandriva Linux Security Update Advisory - bluez-utils
(MDKSA-2005:150)
http://www.net-security.org/advisory.php?id=5195


Mandriva Linux Security Update Advisory - lm_sensors (MDKSA-2005:149)
http://www.net-security.org/advisory.php?id=5194


Debian Security Advisory - libpam-ldap (DSA 785-1)
http://www.net-security.org/advisory.php?id=5193


Debian Security Advisory - courier (DSA 784-1)
http://www.net-security.org/advisory.php?id=5192


Ubuntu Security Notice - pcre3, apache2 vulnerabilities (USN-173-2)
http://www.net-security.org/advisory.php?id=5191


Debian Security Advisory - mysql-dfsg-4.1 (DSA 783-1)
http://www.net-security.org/advisory.php?id=5190


Debian Security Advisory - mysql-dfsg-4.1 (DSA 783-1)
http://www.net-security.org/advisory.php?id=5189


Mandriva Linux Security Update Advisory - MDKSA-2005:148 (vim)
http://www.net-security.org/advisory.php?id=5188


Mandriva Linux Security Update Advisory - php-pear (MDKSA-2005:146)
http://www.net-security.org/advisory.php?id=5187


Mandriva Linux Security Update Advisory - slocate (MDKSA-2005:147)
http://www.net-security.org/advisory.php?id=5186


Ubuntu Security Notice - pcre3 vulnerability (USN-173-1)
http://www.net-security.org/advisory.php?id=5185


Ubuntu Security Notice - lm-sensors vulnerabilities (USN-172-1)
http://www.net-security.org/advisory.php?id=5184


Debian Security Advisory - mozilla-thunderbird (DSA 781-1)
http://www.net-security.org/advisory.php?id=5183


Debian Security Advisory - bluez-utils (DSA 782-1)
http://www.net-security.org/advisory.php?id=5182


Cisco Security Advisory - SSL Certificate Validation Vulnerability in
IDS Management Software
http://www.net-security.org/advisory.php?id=5181


Cisco Security Advisory - Cisco Intrusion Prevention System
Vulnerable to Privilege Escalation
http://www.net-security.org/advisory.php?id=5180


SUSE Security Announcement - acroread (SUSE-SA:2005:047)
http://www.net-security.org/advisory.php?id=5179


Debian Security Advisory - kdegraphics (DSA 780-1)
http://www.net-security.org/advisory.php?id=5178

----------------------------------------------------------------




[ Articles ]


All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org


----------------------------------------------------------------

INFORMATION SECURITY IN CAMPUS AND OPEN ENVIRONMENTS
This article will be geared towards techies at libraries and schools
and will attempt to address common security problems that may pop up
at these institutions. The author gears the solutions towards Open
Source, freeware, and base operating system security in a Windows
XP/2k environment.
http://www.net-security.org/article.php?id=813

----------------------------------------------------------------




[ Software ]


Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3

Mac OS X software is located at:
http://net-security.org/software_main.php?cat=5


----------------------------------------------------------------

ANTIEXPLOIT 1.3 Beta 6 (Linux)
AntiExploit is the first ON-ACCESS exploit-scanner for Linux and
FreeBSD.
http://www.net-security.org/software.php?id=581


OPEN1X 1.2.1 (Linux)
Open1x is an open source implementation of the IEEE 802.1x protocol.
http://www.net-security.org/software.php?id=438


PROSHIELD 3.7.26 (Linux)
ProShield is a security program for Debian Linux.
http://www.net-security.org/software.php?id=282


REVELATION 0.4.5 (Linux)
Revelation is a password manager for the GNOME 2 desktop.
http://www.net-security.org/software.php?id=293


SAMHAIN 2.0.9 (Linux)
Samhain is an open source file integrity and host-based intrusion
detection system.
http://www.net-security.org/software.php?id=125


SYSMASK 1.04 (Linux)
Sysmask is a powerful and flexible security enhancement package for
Linux systems.
http://www.net-security.org/software.php?id=352

----------------------------------------------------------------




[ Webcasts ]


All webcasts are located at:
http://net-security.org/webcasts.php


----------------------------------------------------------------

How Microsoft IT Implements Exchange Security
Organized by Microsoft on 30 August 2005, 11:00 AM
http://www.net-security.org/webcast.php?id=388


How Microsoft IT Implements Exchange Security
Organized by Microsoft on 30 August 2005, 11:00 AM
http://www.net-security.org/webcast.php?id=389


Essentials of Security
Organized by Microsoft on 7 September 2005, 9:00 AM
http://www.net-security.org/webcast.php?id=390


Implementing Security Patch Management
Organized by Microsoft on 7 September 2005, 11:00 AM
http://www.net-security.org/webcast.php?id=391


Practical Security for Intranet Solutions
Organized by Microsoft on 12 September 2005, 12:00 PM
http://www.net-security.org/webcast.php?id=392


Information about Microsoft September Security Bulletins
Organized by Microsoft on 14 September 2005, 11:00 AM
http://www.net-security.org/webcast.php?id=393


Security Best Practices: Hardening Your SQL Server
Organized by Microsoft on 22 September 2005, 9:00 AM
http://www.net-security.org/webcast.php?id=396


Implementing Security for Wireless Networks
Organized by Microsoft on 23 September 2005, 9:00 AM
http://www.net-security.org/webcast.php?id=397


Security Best Practices: Finding and Fixing Buffer Overflows
Organized by Microsoft on 28 September 2005, 9:00 AM
http://www.net-security.org/webcast.php?id=395

----------------------------------------------------------------




[ Conferences ]


All conferences are located at:
http://net-security.org/conferences.php


----------------------------------------------------------------

Security Leadership Conference Series - Las Vegas
Organized by Reed Exhibitions - 14 September-15 September 2005
http://www.net-security.org/conference.php?id=145


Security Leadership Conference Series - Las Vegas
Organized by Reed Exhibitions - 14 September-15 September 2005
http://www.net-security.org/conference.php?id=146


8th Information Security Conference(ISC'05)
Organized by Institute for Infocomm Research - 21 September-23
September 2005
http://www.net-security.org/conference.php?id=123


The 4th International Workshop for Applied PKI (IWAP'05)
Organized by Institute for Infocomm Research - 21 September-23
September 2005
http://www.net-security.org/conference.php?id=124


IT Security World 2005 Conference & Expo
Organized by MISTI - 26 September-1 October 2005
http://www.net-security.org/conference.php?id=143


Security Leadership Conference Series - Chicago
Organized by Reed Exhibitions - 26 September-27 September 2005
http://www.net-security.org/conference.php?id=147


HealthSec 2005 Conference & Expo
Organized by MISTI - 28 September-30 September 2005
http://www.net-security.org/conference.php?id=141


RUXCON 2005
Organized by RUXCON - 1 October-2 October 2005
http://www.net-security.org/conference.php?id=144


RSA Conference Europe 2005
Organized by RSA Conference - 17 October-19 October 2005
http://www.net-security.org/conference.php?id=133


CNIS 2005: IASTED International Conference on Communication, Network
and Information Security
Organized by IASTED - 14 November-16 November 2005
http://www.net-security.org/conference.php?id=137


Asiacrypt 2005
Organized by International Association for Cryptologic Research - 1
December-4 December 2005
http://www.net-security.org/conference.php?id=125


3rd International IEEE Security in Storage Workshop
Organized by  IEEE Computer Society - 13 December-13 December 2005
http://www.net-security.org/conference.php?id=140


RSA Conference 2006
Organized by RSA Security - 13 February-17 February 2006
http://www.net-security.org/conference.php?id=142

----------------------------------------------------------------




[ Security World ]


All press releases are located at:
http://www.net-security.org/press_main.php

Send your press releases to press@net-security.org


----------------------------------------------------------------

Single Sign-On for the Private Home Office
http://www.net-security.org/press.php?id=3400


Public Largely Ignorant of Online Dangers Says New Poll
http://www.net-security.org/press.php?id=3399


AppGate Network security has signed an agreement that enables Sun
Microsystems to OEM MindTerm for integration into Sun Identity
Management products
http://www.net-security.org/press.php?id=3398


Cisco and Intel Collaborate to Improve Wireless and Security
Solutions for Businesses
http://www.net-security.org/press.php?id=3397


Spyware Worm Steals Usernames and Passwords From Fantasy Role-Playing
Gamers, Sophos Reports
http://www.net-security.org/press.php?id=3396


TippingPoint Intrusion Prevention Systems Recognized As “Best
Practice” By Leading Industry Research Firm
http://www.net-security.org/press.php?id=3395


Panda Software presents SpyXposer, the new, free online tool to
combat spyware
http://www.net-security.org/press.php?id=3394


Watchfire Announces New Banking Compliance Solution
http://www.net-security.org/press.php?id=3393


Panda Software releases its ‘scan and block’ solution, Panda
VPNSecure for Check Point VPN-1 Pro
http://www.net-security.org/press.php?id=3392


ForeScout Technologies Stops Zotob.E Before Security  Warnings
http://www.net-security.org/press.php?id=3391


Anonymizer Achieves Highest Quarterly Revenue
http://www.net-security.org/press.php?id=3390


QinetiQ deploys BeCrypt’s DISK Protect to secure data
http://www.net-security.org/press.php?id=3389

----------------------------------------------------------------




[ Virus News ]


All virus news are located at:
http://www.net-security.org/viruses.php


----------------------------------------------------------------

Weekly Report on Viruses and Intruders - backdoor Trojans Hupigon.BS
and Fuetel.T and hacking tools KGBSpy, Cmdow.A and Processor
http://www.net-security.org/virus_news.php?id=573

----------------------------------------------------------------


----------------------------------------------------------------
********* Master of Science in Information Security *********
----------------------------------------------------------------
Earn your Master of Science in Information Security online
from Norwich University. The National Security Agency has 
designated Norwich a center of Academic Excellence in 
Information Security. The program offers a solid education 
in the management of information assurance, and the unique 
case study method means you will gain consulting experience 
as you progress through the program.  Using today's e-Learning 
technology, you can earn this esteemed degree, without 
disrupting your career or home life.
----------------------------------------------------------------
Visit http://www.msia.norwich.edu/netsecure_en for details.
----------------------------------------------------------------


Questions, contributions, comments or ideas go to:

Help Net Security staff
staff@net-security.org
http://net-security.org

----------------------

Unsubscribe from this weekly digest on:
http://www.net-security.org/subscribe.php

The archive of the newsletter in TXT and PDF format is available 
http://www.net-security.org/newsletter_archive.php