AntiSource.com Articles

CISCO 500 Series PIX May Have Flaws August 22 2006 Supposedly, the CISCO 500 Series PIX firewalls may have a flaw. The potential flaw is with the SIP protocol. By sending a certain packet to the PIX, hackers would be able to gain free reins to the UDP protocol to send any messages to the Internal network using UDP. For the full article, visit http://www.networkingpipeline.com/192201308?cid=rssfeed_pl_ntp [TOP]

Find Exploits In Nearly Anything July 06 2006 HD Moore, a popular hacker, has recently updated his controversal exploit framework called Metasploit Framework. This framework has plug-in modules to allow users to test everything from their browsers to their operating system and from certain applications to their web server. One of the most interesting modules is the CSS exploit module in which HD Moore created a web test for. You can try out the test here. Also, check out HD Moore's Month of Browser Bugs blog at http://browserfun.blogspot.com/. [TOP]

"Unpreventable" Security Exploits June 19 2006 One of my colleagues, Steven Smith from ASPAlliance, pointed out an article to me involving an "unpreventable" security exploit. In short, a group of consultants were hired to assess security at a credit union. They planted some USB pen drives with a white trojan providing information to the network. Employees then found the drives, picked them up, and plugged them into their PCs [FULL ARTICLE]. Not good. This is one type of an "unpreventable" security exploit. I say its unpreventable because IT cannot prevent this. Rather, its the employees responsibility to learn what is acceptable and what is not. This is just one of the hardships that many IT professionals run into. It's not always a hole in the operating system or a virus in an email. [TOP]

Microsoft Security Bulletins Via RSS May 10 2006 You can now subscribe to the Microsoft Security Bulletins that are released on a continual basis by visiting the TechNet website and subscribing to their email service. You can also sign-up for the RSS feed by using the URL: http://www.microsoft.com/technet/security/bulletin/secrss.aspx. [TOP]

Microsoft May Purchase Claria July 01 2005 According to eWeek, Microsoft may purchase Claria, the company who owns Gator. With this in mind, eWeek has suggested that Microsoft may no longer have a strong interest in security. What do you think? Usually I try not to display my opinion on these matters, but I can make an exception. I think that if there is a deal, Microsoft can then cure 50% of their issue with spyware. This can help save them money in the long run. Also, Claria does have some value such as a customer database, user behavior-tracking software, and other small software that Microsoft could always clean up and re-use. [TOP]

Misspelling Google Can Be Costly April 28 2005 If you are attempting to visit Google.com, be careful. If you type Google.com incorrectly such as Googkle.com, you may become infected with a virus. DO NOT GO TO THIS WEBSITE TO TEST. For more information, visit http://www.f-secure.com/v-descs/googkle.shtml. [TOP]

Email "Urban Legends" April 27 2005 This morning while listening to the radio I heard a story about a woman receiving an email. The email she received talked about a girl being approached in a parking lot by 2 guys looking to sell perfume. As the story goes, she received some scratch and sniff samples from these men and ended up passing out. While she was out, she was robbed. This isn't a true story. In fact, there are many false stories or "urban legends" that are passed around via email. Folks who have not heard these before are likely to forward these legends off to coworkers, family, and friends. If you are in an environment that receives similar emails, you should make your users aware. There is a website called Snopes.com with a listing of various email hoaxes. Users (or administrators) should delete these emails and not forward them off. The scariest thing about this is that some day a virus can accompany one of these emails! -- Just some food for thought. [TOP]

New Windows Security Forum April 13 2005 There is a new windows security forum available at WindowsAdvice.com. To access the forum, visit http://www.windowsadvice.com/forums/18/ShowForum.aspx. If you have an RSS feed, you may also consume the RSS by using http://www.windowsadvice.com/forums/rss.aspx?ForumID=18&Mode=0. [TOP]

Microsoft to Acquire Anti-Virus Security Provider February 08 2005 Microsoft announced today that they will be acquiring Sybari Software from the state of New York to help businesses protect messaging and collaboration servers from viruses, worms, and spam.For more information, please visit: http://www.microsoft.com/presspass/press/2005/feb05/02-08SybariPR.asp. [TOP]

Virus Scanning for Smart Phones December 14 2004 I read an article earlier today about virus scanning for smart phones. This eWeek article can be found at http://www.eweek.com/article2/0,1759,1737171,00.asp?kc=ewnws120804dtx1k0000599. I wonder when they'll come out with virus scanning for microwaves. ;) [TOP]