Latest news
Injection of client-side attacks with Ettercap
Ettercap is a multipurpose sniffer/interceptor/logger for switched LAN, which makes injection of client-side attacks scarily easy. Ettercap launches a man-in-the-middle attack via arp poisoning or port stealing.
Arp poisoning is a technique that modifies the MAC address/IP mapping. As a result, any packets bound for a specific IP will not be routed to the legitimate machine, but rather the attackers machine as it sent a fake ARP package to create an incorrect mapping.
At Christian Seifert's blog.
[ Read more ]
Spotlight
The security of WordPress plugins
Posted on 18 June 2013. | Checkmarx’s research lab identified that more than 20% of the 50 most popular WordPress plugins are vulnerable to common Web attacks, such as SQL Injection.
Information security executives need to be strategic thinkers
Posted on 17 June 2013. | George Baker, the Director of Information Security at Exostar, talks about the challenges in working in a dynamic threat landscape, offers tips for aspiring infosec leaders, and more.
Large orgs in denial about own security breaches?
Posted on 14 June 2013. | Over two thirds (66%) of large organizations said they either had not experienced a security incident in the last 12-18 months or were unsure if they had.
Vulnerability scanning with PureCloud
Posted on 12 June 2013. | nCircle PureCloud is a cloud-based network security scanning product built upon the companies' vulnerability and risk management system IP360.
Reactions from the security community to the NSA spying scandal
Posted on 11 June 2013. | Read on for comments on this scandal that Help Net Security received from a variety of security professionals and analysts.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
