Help Net Security
Help Net Security

Collection of security news, happenings and articles from the past week

This is a weekly roundup of all the security news, articles, software releases, vendor advisories and webcasts that were published on Help Net Security during the past week.

Table of contents:

1) Security news
2) Advisories
3) Articles
4) Reviews
5) Software
6) Conferences
7) Security World
8) Virus News

[ Security news ]

IN-FLIGHT SURVEILLANCE COULD FOIL TERRORISTS IN THE SKY
CCTV cameras are bringing more and more public places under
surveillance – and passenger aircraft could be next.
http://www.net-security.org/news.php?id=15946

FULL DISCLOSURE AND WHY VENDORS HATE IT
The problem with too many secrets is that they frequently rub against
the notion of privacy.
http://www.net-security.org/news.php?id=15947

BOOK REVIEW – CRIMEWARE: UNDERSTANDING NEW ATTACKS AND DEFENSES
Even as the security industry celebrates solid sales thanks to
compliance laws, the last few years have not been characterized by a
state of growing security. In fact, evolving attacks have fueled a
strong underground economy and malware authors now have a solid cash
incentive to make sure their malicious code infects as many computers
as possible and avoids detection. Two well-known security researchers
and several contributors are the authors behind “Crimeware”, a book
that promises to deliver information about new attacks and provide
advice when it comes to defenses. Read on to find out what it offers.
http://www.net-security.org/news.php?id=15948

NEW SPY CAM SOFTWARE BLURS FACES OF THE INNOCENT
Cities and corporations are stringing up thousands and thousands of
surveillance cameras, armed with advanced video intelligence
algorithms, to watch out for terrorists and crooks. Too bad the rest
of us get caught on tape, while the electronic eyes make their spy
sweeps. And no one knows what the spycams are recording.
http://www.net-security.org/news.php?id=15949

GUN T-SHIRT WAS A SECURITY RISK
A man wearing a T-shirt depicting a cartoon character holding a gun
was stopped from boarding a flight by the security at Heathrow’s
Terminal 5.
http://www.net-security.org/news.php?id=15950

COST-EFFECTIVE QUANTUM KEY DISTRIBUTION
Researchers at the National Institute of Standards and Technology
(NIST) have demonstrated a simpler and potentially lower-cost method
for distributing strings of digits, or “keys,” for use in quantum
cryptography, the most secure method of transmitting data.
http://www.net-security.org/news.php?id=15951

BLIND SQL INJECTION DISCOVERY AND EXPLOITATION TECHNIQUE
This paper describes a technique to deal with blind SQL injection
spot with ASP/ASP.NET applications running with access to
XP_CMDSHELL. It is possible to perform a pen test against this
scenario by not having any kind of reverse access or display of error
messages.
http://www.net-security.org/news.php?id=15952

GOOGLE ACCUSED OVER PRIVACY LAW
Privacy groups are accusing Google of violating California law in its
reluctance to provide a direct link to its privacy policy on its
homepage.
http://www.net-security.org/news.php?id=15953

POLITICALLY MOTIVATED DISTRIBUTED DENIAL OF SERVICE ATTACKS
In the new edition of the HNS podcast we have Dr. Jose Nazario, Arbor
Networks senior security researcher, talking about politically
motivated DDoS attacks around the world.
http://www.net-security.org/news.php?id=15954

DIGITAL FORENSICS: 5 WAYS TO SPOT A FAKE PHOTO
Composite images made of pieces from different photographs can
display subtle differences in the lighting conditions under which
each person or object was originally photographed. Such discrepancies
will often go unnoticed by the naked eye.
http://www.net-security.org/news.php?id=15955

[ Advisories ]

All advisories are located at:
http://www.net-security.org/archive_advi.php

Mandriva Linux Security Update Advisory – mozilla-firefox
(MDVSA-2008:110)
http://www.net-security.org/advisory.php?id=8956

Cisco Security Advisory – Multiple Vulnerabilities in Cisco PIX and
Cisco ASA (cisco-sa-20080604-asa)
http://www.net-security.org/advisory.php?id=8955

SUSE Security Announcement – samba (SUSE-SA:2008:026)
http://www.net-security.org/advisory.php?id=8954

Mandriva Linux Security Update Advisory – kernel (MDVSA-2008:109)
http://www.net-security.org/advisory.php?id=8953

Ubuntu Security Notice – linux vulnerabilities (USN-614-1)
http://www.net-security.org/advisory.php?id=8952

Gentoo Linux Security Advisory – libxslt: Execution of arbitrary code
(GLSA 200806-02)
http://www.net-security.org/advisory.php?id=8951

Gentoo Linux Security Advisory – mtr: Stack-based buffer overflow
(GLSA 200806-01)
http://www.net-security.org/advisory.php?id=8950

Debian Security Advisory – libvorbis (DSA-1591-1)
http://www.net-security.org/advisory.php?id=8949

Debian Security Advisory – ikiwik (DSA-1553-2)
http://www.net-security.org/advisory.php?id=8948

[ Articles ]

All articles are located at:
http://www.net-security.org/articles_main.php

Articles can be contributed to articles@net-security.org

POLITICALLY MOTIVATED DISTRIBUTED DENIAL OF SERVICE ATTACKS
In the new edition of the HNS podcast we have Dr. Jose Nazario, Arbor
Networks senior security researcher, talking about politically
motivated DDoS attacks around the world.
http://www.net-security.org/article.php?id=1141

BLIND SQL INJECTION DISCOVERY AND EXPLOITATION TECHNIQUE
This paper describes a technique to deal with blind SQL injection
spot with ASP/ASP.NET applications running with access to
XP_CMDSHELL. It is possible to perform a pen test against this
scenario by not having any kind of reverse access or display of error
message.
http://www.net-security.org/article.php?id=1140

[ Reviews ]

All reviews are located at:
http://www.net-security.org/reviews.php

CRIMEWARE: UNDERSTANDING NEW ATTACKS AND DEFENSES
http://www.net-security.org/review.php?id=187

[ Software ]

Windows software is located at:
http://net-security.org/software_main.php?cat=1

Linux software is located at:
http://net-security.org/software_main.php?cat=2

Pocket PC software is located at:
http://net-security.org/software_main.php?cat=3

Mac OS X software is located at:
http://net-security.org/software_main.php?cat=5

1PASSWD PASSWORD MANAGER 2.6.4 (Mac OS X)
1Passwd is a state of the art Password Manager that brings you
security and convenience.
http://www.net-security.org/software.php?id=672

AIRSCANNER MOBILE FIREWALL 3 (Windows Mobile)
Airscanner Mobile Firewall is a full-strength, fully configurable,
NDIS packet-filtering TCP/IP firewall.
http://www.net-security.org/software.php?id=573

AUDIT DAEMON 1.7.4 (Linux)
The audit package contains the user-space utilities for creating
audit rules, as well as for storing and searching the audit records
generate by the audit subsystem in the Linux 2.6 kernel.
http://www.net-security.org/software.php?id=702

AUTOSCAN 1.26 (Linux)
AutoScan is an application designed to explore and manage your
network
http://www.net-security.org/software.php?id=699

CAIN & ABEL 4.9.14 (Windows)
Cain & Abel is a password recovery tool for Microsoft operating
systems.
http://www.net-security.org/software.php?id=110

CHECK_WEBSITES 4 beta (Linux)
check_websites is a very simple virus scanner for Web sites. It
checks a document root directory for files with the .js extension and
for codewords which might be a hint of defacement or SQL injection.
http://www.net-security.org/software.php?id=250

CRIPPIN 2.13 (Windows Mobile)
Crippin was designed to protect confidential files in case a Pocket
PC is lost or stolen.
http://www.net-security.org/software.php?id=544

CRYPTAINER PE 7.1 (Windows)
This tool enables you to secure your data and ensure absolute
privacy.
http://www.net-security.org/software.php?id=586

CRYPTOEXPERT 2008 PROFESSIONAL 7.6.0 (Windows)
CryptoExpert creates encrypted virtual disks and these disks are
visible as usual disks with drive letters.
http://www.net-security.org/software.php?id=305

EWALLET 6 (Windows Mobile)
Store, protect, and back up your important information.
http://www.net-security.org/software.php?id=553

FRAMESEER (Mac OS X)
FrameSeer is a network packet capture application.
http://www.net-security.org/software.php?id=613

FWKNOP 1.9.4 (Linux)
fwknop implements an authorization scheme called Single Packet
Authorization that requires only a single encrypted packet to
communicate various pieces of information.
http://www.net-security.org/software.php?id=695

IPS-QOS 1.10.5-6 (Linux)
ips-qos is a flexible firewall and traffic shaping tool.
http://www.net-security.org/software.php?id=705

IPSECURITAS 3.1 (Mac OS X)
IPSecuritas lets you easily setup IPSec VPN connections to another
host or network over the Internet, while securing your data by
encryption and authentication.
http://www.net-security.org/software.php?id=599

IRC DEFENDER 1.5 (Linux)
IRC Defender is a Perl program for protecting your IRC network
against virus drones, general troublemakers, ban evasion, and
attacks.
http://www.net-security.org/software.php?id=219

JELLYFISSH 4.5 (Mac OS X)
JellyfiSSH is a simple bookmark manager for connecting to *NIX boxes
like BSD/Linux etc via Telnet or SSH 1 or 2.
http://www.net-security.org/software.php?id=605

KISMET 2008-05-R1 (Linux)
Kismet is a 802.11b wireless network sniffer.
http://www.net-security.org/software.php?id=218

LITTLE SNITCH 2.0.3 (Mac OS X)
Little Snitch alerts you on outgoing network connections.
http://www.net-security.org/software.php?id=626

MINORFS 0.2.0 (Linux)
MinorFS combines a small set of cooperating userspace filesystems for
Linux that provide private storage to pseudo persistent processes.
http://www.net-security.org/software.php?id=701

MOD_AUTH_OPENID 0.2.1 (Linux)
mod_auth_openid is an authentication module for the Apache 2 Web
server.
http://www.net-security.org/software.php?id=698

NEBULA INTRUSION SIGNATURE GENERATOR 0.22 (Linux)
Nebula is a data analysis tool that automatically generates intrusion
signatures from attack traces.
http://www.net-security.org/software.php?id=251

PASSWORD MANAGER XP 2.3.433 (Windows)
Password Manager XP is a program that will help you systematize
secret information.
http://www.net-security.org/software.php?id=70

PASTOR 1.8.0 (Mac OS X)
Pastor is a tool to store all your passwords, website logins, program
serial numbers, etc. RC4-encrypted and password-protected.
http://www.net-security.org/software.php?id=617

PDFKEY PRO 3.7.1 (Mac OS X)
With PDFKey Pro you can easily recover editing and printing
capabilities to password protected PDF documents.
http://www.net-security.org/software.php?id=246

REVEALER KEYLOGGER 1.35 (Windows)
Revealer Keylogger is an easy way to record keyboard inputs. There is
almost nothing to configure, in fact everything is configured
internally with the best setting.
http://www.net-security.org/software.php?id=688

ROBOFORM2GO 6.9.89 (Windows)
RoboForm – Easy and Secure password manager. Remembers passwords,
logs you into web sites and fills forms with one-click.
http://www.net-security.org/software.php?id=706

SEAGATEX 6.40 (Linux)
segatex is a tool to configure SELinux policy with the help of a GUI
http://www.net-security.org/software.php?id=697

SECTOOL 0.7.5 (Linux)
sectool is a security tool for RPM based distributions. It can be
used for security auditing and intrusion detection.
http://www.net-security.org/software.php?id=700

SECUBOX FOR POCKET PC 1.4.2 (Windows Mobile)
SecuBox provides transparent on-the-fly encryption of sensitive data
stored on Windows Mobile PDAs and their removable media cards.
http://www.net-security.org/software.php?id=670

SHIMO 2.0.1 (Mac OS X)
The initial reason for the development of Shimo was the lousy
software implementation of the Cisco VPNClient for Mac OS.
http://www.net-security.org/software.php?id=671

SPYTECH SPYAGENT 6.21 (Windows)
Spytech SpyAgent is a solution used for computer monitoring and
surveillance needs.
http://www.net-security.org/software.php?id=694

SPYWARE TERMINATOR 2.2.1.433 (Windows)
Free Spyware Terminator provides effective real-time detection and
removal of spyware and incoming threats.
http://www.net-security.org/software.php?id=681

STEGNATE 0.0.1 (Linux)
stegnate is a program to hide data in BMPs or WAVs. stegnate-gtk is
the GTK version.
http://www.net-security.org/software.php?id=696

STUNNEL 4.25 (Linux)
Stunnel is a program that allows you to encrypt arbitrary TCP
connections inside SSL (Secure Sockets Layer).
http://www.net-security.org/software.php?id=271

THE DOORSTOP X SECURITY SUITE 2.2 (Mac OS X)
The DoorStop X Security Suite is an integrated, comprehensive
approach to securing your Macintosh on the Internet.
http://www.net-security.org/software.php?id=674

TRISUL 0.4.116 (Linux)
Trisul is a network metering and forensics tool.
http://www.net-security.org/software.php?id=707

UNHASH 1.0 (Linux)
UnHash is a program that tries a brute force attack against a given
hash.
http://www.net-security.org/software.php?id=703

VLOCK 2.2.2 (Linux)
vlock is a program to lock one or more sessions on the Linux console.

http://www.net-security.org/software.php?id=704

WATERROOF 2.0 (Mac OS X)
WaterRoof is an IPFW firewall frontend for Mac OS X with a easy
interface and many options.
http://www.net-security.org/software.php?id=689

WEB CONFIDENTIAL 3.8 (Mac OS X)
Web Confidential gives you access to your passwords from within your
browser and from the Mac OS X Dock.
http://www.net-security.org/software.php?id=601

[ Conferences ]

All conferences are located at:
http://net-security.org/conferences.php

Shakacon 2008
Organized by Shakacon – 9 June-13 June 2008
http://www.net-security.org/conference.php?id=252

Infosek 2008 Forum
Organized by Palsit in cooperation with ENISA – 9 June-11 June 2008
http://www.net-security.org/conference.php?id=257

e-Crime Wales Summit 2008
Organized by Welsh Assembly Government – 11 June-11 June 2008
http://www.net-security.org/conference.php?id=259

Recon 2008
Organized by recon – 13 June-15 June 2008
http://www.net-security.org/conference.php?id=253

SyScan 2008
Organized by SyScan – 3 July-4 July 2008
http://www.net-security.org/conference.php?id=251

Second International Symposium on Human Aspects of Information
Security & Assurance
Organized by Information Security & Network Research Group,
University of Plymouth – 8 July-10 July 2008
http://www.net-security.org/conference.php?id=238

Breakaway 2008
Organized by CompTIA – 5 August-7 August 2008
http://www.net-security.org/conference.php?id=261

IT Security World 2008 Conference & Expo
Organized by MIS Training Institute – 13 September-18 September 2008
http://www.net-security.org/conference.php?id=258

VB2008
Organized by Virus Bulletin – 1 October-3 October 2008
http://www.net-security.org/conference.php?id=256

I Digital Security Forum
Organized by FSD – 7 November-8 November 2008
http://www.net-security.org/conference.php?id=255

The Fourth International Conference on Availability, Reliability and
Security (ARES 2009)
Organized by Vienna University of Technology / Secure Business
Austria – 16 March-19 March 2009
http://www.net-security.org/conference.php?id=260

[ Security World ]

All security world articles are located at:
http://www.net-security.org/secworld_main.php

Send your press releases to press@net-security.org

Bank of New York Mellon security breach repeats in PA
http://www.net-security.org/secworld.php?id=6194

June 2008 cyber threat forecast
http://www.net-security.org/secworld.php?id=6193

Free utility for improving security of VMware ESX Hypervisor
deployments
http://www.net-security.org/secworld.php?id=6192

Vulnerability found in the latest Symbian operating system
http://www.net-security.org/secworld.php?id=6191

Network security market softer than usual in North America
http://www.net-security.org/secworld.php?id=6190

New SecureZIP brings public key cryptography to everday users
http://www.net-security.org/secworld.php?id=6189

Most dangerous domains to surf and search on the web
http://www.net-security.org/secworld.php?id=6188

Full guide on Mac OS X 10.5 Leopard security configuration
http://www.net-security.org/secworld.php?id=6187

New Payment Card Industry compliance solution
http://www.net-security.org/secworld.php?id=6186

Top ten ID theft safety tips from the experts
http://www.net-security.org/secworld.php?id=6184

Securely upload, store and manage files via a bank’s online portal
http://www.net-security.org/secworld.php?id=6183

Secure remote access for Apple iPhone from Check Point
http://www.net-security.org/secworld.php?id=6182

New biometric fingerprint sensor for 2009 Notebook PCs
http://www.net-security.org/secworld.php?id=6181

Web and E-Mail Software as a Service from Webroot
http://www.net-security.org/secworld.php?id=6180

New security service bundles to compete with Google
http://www.net-security.org/secworld.php?id=6179

New multi-gigabit IDS/IPS analyzes VoIP traffic
http://www.net-security.org/secworld.php?id=6178

Network Box E-Series consolidates network defenses
http://www.net-security.org/secworld.php?id=6177

Manage e-mail with ArcMail Defender U3160
http://www.net-security.org/secworld.php?id=6176

[ Virus News ]

All virus news are located at:
http://www.net-security.org/viruses.php

Watch out for a sneaky blackmailing virus that encrypts your data
http://www.net-security.org/virus_news.php?id=945

Featured news

Resources

Don't miss