Wednesday, July 06, 2005

Are firewalls expendable?


All the week's news and views about Security, 07/06/05
_______________________________________________________________
This newsletter is sponsored by AppStream
Dynamic Management of Software Licenses
A Whitepaper by Hurwitz & Associates:

Companies utilize 20 percent or less of their desktop software.
Learn how one company saves over $6 million dollars in licensing
costs, and distributes, updates and upgrades software with
little to no IT intervention. Click here to download this
whitepaper
http://www.fattail.com/redir/redirect.asp?CID=107815
_______________________________________________________________
WHAT YOU CAN DO TO PREVENT DATA-THEFTS?

For years, hackers have obtained confidential information by
manipulating legitimate users into revealing it. It's critical
that companies convey to their employees - local and remote -
why security measures are important. If you're curious to see
how your company's security efforts stack up, click here for
more:
http://www.fattail.com/redir/redirect.asp?CID=107671
_______________________________________________________________

Network World's Security News Alert

Are firewalls expendable? 07/04/05

For more than a decade, firewalls have stood guard at the
perimeter of corporate networks to defend against the Internet's
perils. But a growing number of security managers, united under
the banner of the Jericho Forum, want to retire this stalwart
...
<http://www.networkworld.com/news/2005/070405perimeter.html?nl>

Threat increases from IM-based attacks, 07/05/05

A study released Tuesday by instant messaging (IM) security
vendor IMlogic reported that hackers and virus writers are
recognizing and exploiting the opportunites presented by
IM-based attacks, the numbers of which have risen sharply over
the last two quarters.
<http://www.networkworld.com/news/2005/070505-im.html?nl>

New Trojan can knock out Symbian phones, 07/05/05

Users of Symbian Series 60 smart phones should be aware of a new
Trojan horse that, if not removed within one hour, can cause
complete data loss in their wireless devices, security experts
warned.
<http://www.networkworld.com/nlsecuritynewsal3023>

Micromuse snaps up security information mgmt. vendor, 07/05/05

Network management vendor Micromuse last week announced plans to
acquire GuardedNet, a small security information management
company, for about $16.2 million in cash.
<http://www.networkworld.com/news/2005/070505-micromuse.html?nl>

German teenager admits in court to creating Sasser worm,
07/05/05

German teenager Sven Jaschan confessed at his trial Tuesday to
creating last year's Sasser computer worm that crashed hundreds
of thousands of computers worldwide after spreading at lightning
speed over the Internet.
<http://www.networkworld.com/news/2005/070505-sasser.html?nl>

Opinion: Advertising arrogance or stupidity, 07/04/05

I'm told that adware and spyware are the banes of your existence
if you happen to use a Windows computer anywhere near the
Internet. While that is not yet the case for Mac or Linux users,
I can feel your pain, anger and disgust - or at least imagine
it.
<http://www.networkworld.com/nlsecuritynewsal2996>

Covisint drives ahead with ID management, 07/04/05

Known for its pioneering integration work in the automotive
industry, Covisint now is taking a leadership role in online
identity management.
<http://www.networkworld.com/news/2005/070405-covisint.html?nl>

Cisco snaps up security firm, 07/04/05

Cisco last week said it has agreed to pay $30 million for a
year-old start-up called NetSift, which develops deep-packet
processing technology that can be used for detecting network
attacks as they happen.
<http://www.networkworld.com/nlsecuritynewsal2997>

Opinion: Tale of the tape: Encrypt data now, 07/04/05

Data should be encrypted in transit. All you need to remember
are those six words.
<http://www.networkworld.com/nlsecuritynewsal2998>

Sun, CA buys expand offerings, 07/04/05

Computer Associates announced it has acquired Tiny Software, a
Santa Clara, Calif., maker of Windows-based desktop and server
firewall products, for an undisclosed amount.
<http://www.networkworld.com/news/2005/070405-sun-ca.html?nl>

Audio: Anti-spam techniques, 07/04/05

We speak with author and anti-spam developer Jonathan Zdziarski
about his DSPAM application and Bayesian filtering techniques.
Zdziarski also has a book coming out this week called "Ending
Spam" published by No Starch Press.
<http://www.networkworld.com/research/2005/0704radio.html?nl>

Open source vs. Windows: Security debate rages, 07/04/05

It's a topic of fierce debate among high-tech cognoscenti:
What's more secure - "open source" code such as Linux and
Apache, or proprietary "closed source" operating systems and
applications, Microsoft's in particular?
<http://www.networkworld.com/nlsecuritynewsal2999>

Government, private sector mull risk-benefit aspects of
information access, 06/30/05

One of the biggest challenges facing both enterprises and
government agencies today is sharing information with other
organizations, or "crossing domains," while maintaining the
necessary level of security.
<http://www.networkworld.com/nlsecuritynewsal3000>

Attackers seek vulnerable Veritas Backup installations, 06/30/05

Attackers are already exploiting security flaws last week
reported by Veritas in its remote back-up agent to take control
of computers running the software, according to the U.S.
Computer Emergency Readiness Team.
<http://www.networkworld.com/nlsecuritynewsal3001>

Fake Microsoft security alert includes Trojan patch, 06/30/05

A new wave of spam that disguises itself as a Microsoft security
bulletin contains a link to malicious software that gives
attackers complete access to the infected machine, security
researchers are reporting.
<http://www.networkworld.com/nlsecuritynewsal3002>

IE bug can crash browser, 06/30/05

Security researchers have discovered a bug in Microsoft's
Internet Explorer (IE) browser that can cause the software to
crash, and which could possibly be used to let an attacker run
unauthorized software on the IE user's machine.
<http://www.networkworld.com/news/2005/063005-ie-bug.html?nl>

Newsletter: Securing the CIRT: Walk the talk, 06/30/05

For many months, I have been dipping into the Department of
Defense CD-ROM called "Introduction to Computer Incident
Response Team (CIRT) Management" in my series on CIRTs. This
week I want to expand on a theme presented late in that course:
the importance of securing the CIRT and more broadly, of using
our own advice.
<http://www.networkworld.com/nlsecuritynewsal3003>

Microsoft ready to discuss RSS security, 06/30/05

Microsoft will be taking a closer look at the security of a new
Web publishing technology it plans to integrate into the next
major version of Windows, codenamed Longhorn.
<http://www.networkworld.com/nlsecuritynewsal3004>

FBI cracks down on 'warez' piracy sites, 06/30/05

The FBI, with help from investigators from 10 other countries,
has arrested four people and dismantled at least four Web sites
used to illegally distribute movies, music and software, the
U.S. Department of Justice announced Thursday.
<http://www.networkworld.com/news/2005/063005-fbi-warez.html?nl>

Bluetooth group offers security tips to avoid attacks, 06/29/05

After two Israeli researchers published a paper earlier this
month explaining how security mechanisms in short-range wireless
Bluetooth technology could be quickly undermined, members of the
Bluetooth Special Interest Group (SIG) are now urging users to
take several precautions.
<http://www.networkworld.com/nlsecuritynewsal3005>

Newsletter: Microsoft aims to prevent another patch disaster by
issuing update-blocking tool, 06/29/05

Last week, Microsoft director of product management for the
Windows Server division, Samm DiStasio announced the
availability of not one, but three different tools to block the
automatic download and installation of Windows Server 2003
Support Pack 1. (While Win 2K3 SP1 was released some months ago,
it's being held back from automatic update until July 1.)
<http://www.networkworld.com/newsletters/nt/2005/0627nt2.html?nl>

Newsletter: What's Sun up to with identity management?, 06/29/05

I recently spent a delightful couple of hours with the always
engaging Sara Gates, Sun's vice president of identity, while she
told me about the company's new identity management initiatives:
Sun Java System Federation Manager and Sun Java System Identity
Manager Service Provider Edition.
<http://www.networkworld.com/nlsecuritynewsal2941>
_______________________________________________________________
To contact:

Senior Editor Ellen Messmer covers security for Network World.
Contact her at <mailto:emessmer@nww.com>.
_______________________________________________________________
This newsletter is sponsored by AppStream
Dynamic Management of Software Licenses
A Whitepaper by Hurwitz & Associates:

Companies utilize 20 percent or less of their desktop software.
Learn how one company saves over $6 million dollars in licensing
costs, and distributes, updates and upgrades software with
little to no IT intervention. Click here to download this
whitepaper
http://www.fattail.com/redir/redirect.asp?CID=107814
_______________________________________________________________
ARCHIVE LINKS

Security research center
Latest security news, analysis, newsletters and resource links.
http://www.networkworld.com/topics/security.html
_______________________________________________________________
FEATURED READER RESOURCE
FOCUS ON RECOVERY

IT professionals are changing the way they back up and recover
data, experts say, with new emphasis on the speedier fetching of
data made possible by advancing technologies. At a recent
storage conference in Orlando, disk-based backup solutions were
touted - find out if attendees agreed and if faster storage
solutions will soon be available. Click here:
<http://www.networkworld.com/news/2005/062005-data-recovery.html>
_______________________________________________________________
May We Send You a Free Print Subscription?
You've got the technology snapshot of your choice delivered
at your fingertips each day. Now, extend your knowledge by
receiving 51 FREE issues to our print publication. Apply
today at http://www.subscribenw.com/nl2

International subscribers click here:
http://nww1.com/go/circ_promo.html
_______________________________________________________________
SUBSCRIPTION SERVICES

To subscribe or unsubscribe to any Network World e-mail
newsletters, go to:
<http://www.nwwsubscribe.com/Changes.aspx>

To change your e-mail address, go to:
<http://www.nwwsubscribe.com/ChangeMail.aspx>

Subscription questions? Contact Customer Service by replying to
this message.

This message was sent to: security.world@gmail.com
Please use this address when modifying your subscription.
_______________________________________________________________

Have editorial comments? Write Jeff Caruso, Newsletter Editor,
at: <mailto:jcaruso@nww.com>

Inquiries to: NL Customer Service, Network World, Inc., 118
Turnpike Road, Southborough, MA 01772

For advertising information, write Kevin Normandeau, V.P. of
Online Development, at: <mailto:sponsorships@nwfusion.com>

Copyright Network World, Inc., 2005

at

No comments:

Post a Comment