Mystery of RealPlayer exploit unfolds; FBI, police warn of Calif. Wildfire fraud

Security News Alert This newsletter is sponsored by Symantec Stay ahead of stealth security threats Reduce the propagation of malicious code, lower your risk profile, provide greater network availability and much more with Symantec Network Access Control. Network World's Security News Alert, 10/26/07 Mystery of RealPlayer exploit, hijacked ad server unfolds, 10/25/07: A week after Symantec security researchers traced the elaborate course of a malware exploit -- apparently devised in the Netherlands -- to what may be a compromised ad server belonging to Internet advertising company 24/7 Real Media, the attack method isn’t fully understood. FBI, police community warns of Calif. Wildfire fraud: The FBI, Better Business Bureau and California prosecutors Thursday separately issued warnings concerning potential disaster related fraud schemes in connection with the ongoing Southern California wildfires. Many of these schemes are Internet-based scams representing themselves to be disaster relief charities, the groups said. Data encryption’s adoption grows, 10/25/07: Large security vendors are buying up encryption start-ups. Venture capitalists are putting money into young companies to spur the development of encryption products. New companies are launching products to help manage and simplify encryption. Webcast: Get the latest on NAC Learn the latest on Network Access Control in Network World's Perspectives Editorial Webcast. Discover how IT professionals can leverage this hot security technology in their networks, while also learning about key management areas that have not yet been perfected. To learn more click here. Austrian police to use crime-busting Trojans, 10/25/07: The Austrian Police has become the latest European agency to express its intention to use specially-crafted Trojans to remotely monitor criminal suspects. Security guru notes how IT eases committing fraud, 10/25/07: Fraud expert, author and ex-con artist Frank Abagnale doesn't use online banking, thinks ID cards are a bad idea, and reckons the U.K. needs data breach notification laws. Security deadline missed by one-third of Visa merchants, 10/25/07: Just over a third of large-volume Visa merchants failed to meet a Sept. 30 deadline to comply with the Payment Card Industry's 12-part Data Security Standard, Visa said yesterday, and those companies are facing fines of $25,000 per month. With Provilla buy, Trend Micro to offer data leak protection, 10/25/07: Trend Micro plans to buy Provilla, making it the latest major security vendor to enter the crowded data leak prevention market. What the hackers know about SQL Server Management Studio: Microsoft Subnet welcomes new blogger Chris Amaris, chief technology officer and co-founder of Convergent Computing. Chris is a security, network and systems management guru, and author of many books. He writes: "It is an often overlooked fact that the SQL Server Management Studio is a potential source of exploits itself." Securing your Cisco router by limiting access lists: Cisco Subnet blogger Raj Tolani walks you through how to secure a router by limiting your VTY access.

MOST-READ STORIES: 1. Unlimited gall to cost Verizon $1 million 2. Storm worm strikes back at security pros 3. One picture is worth 335,000 charred acres 4. 10 reasons ITIL spooks IT managers 5. NASA offering $2M prize for lunar lander 6. What's holding Vista back? 7. Top 20 Firefox extensions 8. Apple now bigger than IBM 9. What a PC store pays for hard drive loss 10. Storm Worm now just a squall MOST E-MAILED STORY: Storm worm strikes back at security pros

Contact the author: Senior Editor Ellen Messmer covers security for Network World. E-mail Ellen. This newsletter is sponsored by Symantec Stay ahead of stealth security threats Reduce the propagation of malicious code, lower your risk profile, provide greater network availability and much more with Symantec Network Access Control. BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007