On September 21, Apple released two security patches that protect essentially every Mac that uses AirPort against malformed frames passed over 802.11b networks. That’s the vulnerability I wrote about last month, which may or may not have been a real threat to Mac users. “So,” you say. “The problem’s been fixed, ...

“IN FOCUS: Rootkit Removal Tools by Mark Joseph Edwards, News Editor, mark at ntsecurity / net Rootkits are a growing problem, and as you might expect, the list of tools that can help you prevent rootkit infiltration is also growing. The list of standalone tools that can help with rootkit detection and ...

Remember the 4 Ps in marketing? Product, Price, Place and Promotion? Well, successful vendors in the online crime community certainly remember their Ps. And when I say “vendors”, mind you, I’m not referring to security companies. I’m talking about those fraudsters who offer stolen credentials for sale, or “cash out” services, ...

“Live View is a Java-based graphical forensics tool that creates a VMware virtual machine out of a raw (dd-style) disk image or physical disk. This allows the forensic examiner to ‘boot up’ the image or disk and gain an interactive, user-level perspective of the environment, all without modifying the underlying ...

Click here to listen/download (09:56). Burt Kaliski, chief scientist, RSA Labs, shares highlights from last week’s CRYPTO 2006 and the hash function workshop. We also speak with Rudy Wolfs, chief information officer, ING DIRECT, about a new login process for his company’s online banking customers. Related Links: CRYPTO 2006 Conference ING DIRECT Introduces ...

CRYPTO 2006, the 26th annual cryptology conference, was held in Santa Barbara last week. Several results particularly caught the attention of RSA Laboratories’ researchers, including a few that I’ll summarize within the space (and time) available for a brief note: Elad Barkan, Eli Biham, and Adi Shamir, in their paper ...

Scientific progress stands on the shoulders of researchers throughout the world, and cryptography in particular draws from a multi-national community of experts. My colleague Moti Yung, the newest full-time member of RSA Laboratories, is in a unique position to contribute his expertise to one such multi-national effort as an ...

Click here to listen/download (09:10). We continue our summer-series on building the business case for security within your organization – RSA Security’s Brian Breton returns with more tips and ideas. And you’ll find an update on technology dos and don’ts in the aftermath of the recently-heightened airline security – RSA Security ...

In Part 4 of this series, we discuss network forensics and misuse investigations; different types of devices that may hold suspect data or evidence; introduction to the 7-layer OSI model; network forensics and the role of sniffers and protocol analysis software; the function of network interface cards and layer-2 ...

If you used IDA Pro for a while, you might have noted that it contents itself with simple things. It neatly displays the disassembly listing. It allows you to improve the listing by adding names and comments. You can manually define your symbols, types, functions. IDA itself can add some types and discover ...

Click here to listen/download (08:41). We look at how more corporate organizations are deploying virtual private networks (VPNs)- and at the need for strong authentication to protect VPN-based access - with guest speakers from Hudson Advisors, L.L.C. We also continue our series on selling the need for security within the corporate ...

After a weekend of monitoring here’s what we seem to know about the MS06-040 Worm(s) in the wild: There’s at least two variants in the wild so far (ref) It appears to be primarily targeting Windows 2000 machines (ref) After infecting machines it communicates out via IRC via port 18067 and scans for ...