www.hack.co.za
Known exploits.
Thursday, July 19, 2001
.:[packet storm]:.
An extremely large and current security tools resource which is for the community, by the community. Packetstorm is a non-profit organization kept alive for the sole purpose of helping secure the World's networks.
Wednesday, July 18, 2001
GaRe's Free Security Info
This site is dedicated to protecting internet users from Denial of Services (Dos) attacks for windows, explotes, by providing ways of protecting your system. These pages up to date with the most recient attacks, and explotes. If this page is missing a protection you know is avalible, has incorrect information, or missing information on some explote, please let me know.
A rogue's gallery of denial of service attacks
Tuesday, May 22, started out as just another day at CERT Coordination Center at Carnegie Mellon University in Pittsburgh. By day's end, CERT, widely regarded as the Fort Knox of computer security, would be knocked off the net by a distributed denial of service (DDoS) attack. In 2001, even the crème de la crème of network security is vulnerable. If it can happen to CERT, it can happen to you.
Tuesday, May 22, started out as just another day at CERT Coordination Center at Carnegie Mellon University in Pittsburgh. By day's end, CERT, widely regarded as the Fort Knox of computer security, would be knocked off the net by a distributed denial of service (DDoS) attack. In 2001, even the crème de la crème of network security is vulnerable. If it can happen to CERT, it can happen to you.
Monday, July 16, 2001
Secure Online Behavior: Developing Good Security Habits
The Internet has evolved to be a fundamental business innovation with a clearly demonstrated ability to positively affect organizations as well as individuals. Unfortunately, the Internet was not designed with security in mind - it is inherently insecure. Regardless of how many anti-virus programs, firewalls, and other security programs computer users may use, security continues to be a serious issue. And human error continues to be the weakest link in the security chain.
While human error can never be entirely eliminated, it can certainly be minimized. One of the best things that users can do to protect themselves and their information is to be aware of which behaviors may place them at risk, and to eliminate those behaviors. This article is the first in a series of three that will attempt to introduce readers to good security habits. This installment will offer a brief overview of some of the security threats that prey on bad user habits, and will introduce some fundamental secure habits that should be used for all computer applications. The ensuing articles will offer more in-depth examinations of the threats posed specifically by e-mail and Internet usage, and the habits that users can adopt to minimize the risks posed by these threats.
The Internet has evolved to be a fundamental business innovation with a clearly demonstrated ability to positively affect organizations as well as individuals. Unfortunately, the Internet was not designed with security in mind - it is inherently insecure. Regardless of how many anti-virus programs, firewalls, and other security programs computer users may use, security continues to be a serious issue. And human error continues to be the weakest link in the security chain.
While human error can never be entirely eliminated, it can certainly be minimized. One of the best things that users can do to protect themselves and their information is to be aware of which behaviors may place them at risk, and to eliminate those behaviors. This article is the first in a series of three that will attempt to introduce readers to good security habits. This installment will offer a brief overview of some of the security threats that prey on bad user habits, and will introduce some fundamental secure habits that should be used for all computer applications. The ensuing articles will offer more in-depth examinations of the threats posed specifically by e-mail and Internet usage, and the habits that users can adopt to minimize the risks posed by these threats.
Wednesday, July 04, 2001
The Attacks on GRC.COM
Nothing more than the whim of a 13-year old hacker is required to knock any user, site, or server right off the Internet.
I believe you will be as fascinated and concerned as I am by the findings of my post-attack forensic analysis, and the results of my subsequent infiltration into the networks and technologies being used by some of the Internet's most active hackers.
Nothing more than the whim of a 13-year old hacker is required to knock any user, site, or server right off the Internet.
I believe you will be as fascinated and concerned as I am by the findings of my post-attack forensic analysis, and the results of my subsequent infiltration into the networks and technologies being used by some of the Internet's most active hackers.
Microsoft Does Not Understand Security
With a bit of horror, I learned that Microsoft's developers have no understanding of security.
With a bit of horror, I learned that Microsoft's developers have no understanding of security.
Spy Suspect Hanssen to Plead Guilty
Trying to close the books on an espionage debacle that rocked the FBI, the government struck a deal with ex-agent Robert Hanssen that would spare his life in exchange for a full confession detailing secrets he sold the Russians, people familiar with the case said Tuesday.
Trying to close the books on an espionage debacle that rocked the FBI, the government struck a deal with ex-agent Robert Hanssen that would spare his life in exchange for a full confession detailing secrets he sold the Russians, people familiar with the case said Tuesday.
Spy Agency Reveals Some, Not All
Hidden along Route 32, in a drab beige building that looks every bit the cheap motel it once was, is America's official museum of secrets.
Hidden along Route 32, in a drab beige building that looks every bit the cheap motel it once was, is America's official museum of secrets.
Sunday, July 01, 2001
Windows 2000 Security Recommendation Guides
NSA has developed and distributed configuration guidance for Microsoft Windows NT in the form of NT configuration guides. These guides are currently being used throughout the government and by numerous entities as a security baseline for their NT systems.
To assist our Windows 2000 user community, NSA has developed security configuration guidance for Windows 2000, with the cooperation of the other government agencies and industry partners who provided their expertise and extensive technical review. The configuration guides for Microsoft Windows 2000 are being posted on the NSA web site and are presented in three parts: ".inf" files, configuration guides, and supporting documents.
Wednesday, June 27, 2001
Echelon Spy System
The Croatian NSEI System is Based on the American Spy System ‘Echelon’.
The Nacional Central Electronic Reconnaissance system (NSEI) is the most powerful and most secretive part of Croatia’s intelligence system. In the last ten years, massive financial resources have been invested in this system. As a specially organized unit of the Office for National Security (UNS), this system is responsible for monitoring all connections with countries outside of Croatia’s borders, as well as for monitoring all connections within Croatia which have any association with terrorist acts, intelligence or with directed attempts to destroy the constitutional system.
The monitoring system automatically turns itself on and records any telephone conversations when key words are mentioned, such as explosive, bomb, package, president, minister and others. The American system ‘Echelon’ operates in a similar, albeit much more complex and vast way throughout the world.
The Croatian NSEI System is Based on the American Spy System ‘Echelon’.
The Nacional Central Electronic Reconnaissance system (NSEI) is the most powerful and most secretive part of Croatia’s intelligence system. In the last ten years, massive financial resources have been invested in this system. As a specially organized unit of the Office for National Security (UNS), this system is responsible for monitoring all connections with countries outside of Croatia’s borders, as well as for monitoring all connections within Croatia which have any association with terrorist acts, intelligence or with directed attempts to destroy the constitutional system.
The monitoring system automatically turns itself on and records any telephone conversations when key words are mentioned, such as explosive, bomb, package, president, minister and others. The American system ‘Echelon’ operates in a similar, albeit much more complex and vast way throughout the world.
In-Q-Tel
In-Q-Tel is dedicated to developing information technology for the CIA that is commercially available, affordable, and supported. In-Q-Tel seeks technology that enables the gathering of accurate, comprehensive and timely foreign intelligence in the interest of national security.
Email snooping almost banned
A cluster of new laws will soon come into effect curbing companies' rights to snoop through workers' emails.
Workers sending personal email across the corporate pipeline will gain a little more protection than they have at present but privacy advocates warn that it won't be a lot.
A cluster of new laws will soon come into effect curbing companies' rights to snoop through workers' emails.
Workers sending personal email across the corporate pipeline will gain a little more protection than they have at present but privacy advocates warn that it won't be a lot.
WWW.huh?: You Are the First Line of Defense
Defense Department computer security systems and specialists foiled nearly 22,500 would-be intruders in 1999 and 24,500 in 2000. There's no let-up in sight.
Sigaba Updates Email Encryption Gateway
Sigaba announced the availability of the its Email Encryption Gateway (SEEG) version 2.0. Enhancements include compatibility with the proposed Advanced Encryption Standard (AES), expanded desktop email encryption support and interoperability with Sigaba Courier. Sigaba Courier is an HTML-based product for use with SEEG version 2.0 that allows users to open Sigaba encrypted email, without the need to download any additional software.
Sigaba announced the availability of the its Email Encryption Gateway (SEEG) version 2.0. Enhancements include compatibility with the proposed Advanced Encryption Standard (AES), expanded desktop email encryption support and interoperability with Sigaba Courier. Sigaba Courier is an HTML-based product for use with SEEG version 2.0 that allows users to open Sigaba encrypted email, without the need to download any additional software.
Hampton, New Hampshire Man Convicted and Sentenced for Hacking into Former Employer's Computer Server
McKenna, who was fired by Bricsnet on Friday, October 20, 2000, hacked into his former employer’s computer server on two occasions. The first time was the evening of Friday, October 20, 2000, the day he was fired. The second was the following morning, Saturday, October 21, 2000. McKenna remotely accessed the computer server of his former employer, via the Internet, without authorization and caused damage in four ways: 1) he deleted approximately 675 computer files; 2) he modified computer user access levels; 3) he altered billing records; and, 4) he transmitted E-mails, which purported to have originated from an authorized representative of the victim corporation, to over one hundred (100) clients. Those E-mails contained false statements about business activities of the corporation.
McKenna, who was fired by Bricsnet on Friday, October 20, 2000, hacked into his former employer’s computer server on two occasions. The first time was the evening of Friday, October 20, 2000, the day he was fired. The second was the following morning, Saturday, October 21, 2000. McKenna remotely accessed the computer server of his former employer, via the Internet, without authorization and caused damage in four ways: 1) he deleted approximately 675 computer files; 2) he modified computer user access levels; 3) he altered billing records; and, 4) he transmitted E-mails, which purported to have originated from an authorized representative of the victim corporation, to over one hundred (100) clients. Those E-mails contained false statements about business activities of the corporation.
New Encryption and Decryption drafts
The W3C released initial drafts of XML Encryption Syntax and Processing and Decryption Transform for XML Signature.
The W3C released initial drafts of XML Encryption Syntax and Processing and Decryption Transform for XML Signature.
Study: Interactive TV Could Be 'Spy in Your Home'
A new report from the Center for Digital Democracy (CDD) warns that the privacy concerns of the Internet will be magnified by interactive television (ITV), as technology makers and marketers turn the living room into a laboratory and track everything from income to favorite color.
San Angelo, Texas: Home of Spies
Thanks to neighboring Goodfellow Air Force Base, this isolated West Texas city of 87,000 may harbor more spies, ex-spies and future spies per capita than any place in America, save Washington, D.C.
Thanks to neighboring Goodfellow Air Force Base, this isolated West Texas city of 87,000 may harbor more spies, ex-spies and future spies per capita than any place in America, save Washington, D.C.
Sunday, June 24, 2001
Statement for the Record for the Joint Economic Committee Cyber Threat Trends and US Network Security
In 2015 we anticipate that the world will almost certainly experience quantum leaps in information technology (IT) and in other areas of science and technology. IT will be the major building block for international commerce and for empowering nonstate actors. Most experts agree that the IT revolution represents the most significant global transformation since the Industrial Revolution beginning in the mid-eighteenth century.
Subscribe to:
Posts (Atom)
