Latest Computer and PC Security News

SurfControl E-mail Filter 6.0 Stops Threats and Prevents Data Loss
posted on 11/09/2007

SurfControl has announced significant product enhancements to its e-mail filter with the release of SurfControl E-mail Filter 6.0. Product enhancements include the new SurfControl Reputation Service, a fully integrated anti-virus scanning engine, zero-hour virus protection, and extended compliance features. SurfControl E-mail Filter provides continuous, multilayered protection against increasingly complex blended e-mail threats such as spam, phishing, viruses and malicious code, as well as protection from confidential data loss. New compliance dictionaries and associated default rules, including HIPAA, GLBA and Personal identifiers, will increase organizations’ abilities to manage regulatory compliance and enforce good corporate governance. SurfControl E-mail Filter customers will now receive the benefit of SurfControl’s on-demand solutions proprietary reputation service, which eliminates IP addresses with a bad reputation — greatly reducing the amount of spam that is received by th... [more]

Storm spam campaign targets NFL fans
posted on 10/09/2007

A new outbreak of Storm malicious spam emails targeting NFL fans has been launched against inboxes worldwide. According to the Marshal TRACE Team, the latest Storm spam campaign has been timed to coincide with the start of the NFL season. The message lures recipients to a fake NFL website with the enticement of a 'Free NFL Game Tracker' - a utility that supposedly updates fans on game results but is actually the Storm trojan. Users are lured to download the tracker and by doing so download the trojan. According to TRACE, the NFL Storm campaign accounts for 1 - 2 percent of all spam. The Storm Gang is responsible for up to 20 percent of all spam traffic worldwide - roughly equivalent to all the spam generated in the US on any given day. The scale of the botnet at the command of the Storm Gang is estimated to consist of anywhere between 1-5 million computers according to differing industry estimates. "This new campaign featuring the NFL tracker is not just designed to target ardent N... [more]

GFI WebMonitor for ISA Server gives administrators control over corporate web usage
posted on 07/09/2007

The Internet is an important business-to-business (B2B) resource but uncontrolled and unmonitored access could lead to lower productivity when employees waste time browsing non-work related material. Research carried out by IDC shows that up to 40% of employee Internet activity is non-work related and this includes the downloading of music files, usage of social sites like Facebook or eCommerce sites like eBay and browsing the web for personal entertainment. Access to the Internet also increases the risk of viruses, spyware and unauthorized software being downloaded. Such activity can lead to malicious software active on companies’ systems, leading to security breaches and data loss. A practical method of mitigating these unwanted aspects of the corporate Internet connection would be to deploy GFI WebMonitor. The latest version of GFI WebMonitor for ISA Server gives administrators comprehensive control over corporate web usage and what employees are downloading from the Internet. GFI... [more]

Implementing Cellular Authentication Token for Strong Authentication
posted on 06/09/2007

Leigh Mardon NZ is the leading Credit Card Manufacturer and Security Printer in New Zealand and a major trusted supplier to the trading banks, finance companies and credit unions for their cards and cheques. Leigh-Mardon’s sales force is distributed across the country where each sales person has a responsibility to a specific area and/or group of clients. The sales tasks require frequent communication with Leigh-Mardon central server to receive and forward Emails and documents. Each sales person has their own company Email address. Dealing with highly secured information and server, the regular OWA access was deemed not secure enough and a solution was required. Leigh-Mardon was looking for a secure, affordable and easy to use solution. Leigh-Mardon has decided to take a pragmatic approach to selecting the security enabler. It was recognized that the market standard for strong authentication is TFA OTP tools and a list of requirements was prepared based on the immediate needs and proj... [more]

Significant increase in free Man-in-the-Middle phishing kits available in the fraudster underground
posted on 30/08/2007

Online fraud is evolving. Phishing and pharming represent one of the most sophisticated, organized and innovative technological crime waves faced by online businesses. Fraudsters have new tools at their disposal; and are able to adapt more rapidly than ever. Phishing kits, both “regular” and of the Man-in-the-Middle (MITM) variety, are a well known commodity in the online fraudster forums. Creators of phishing kits sell them online to the phishers themselves, who in turn use them to launch attacks against financial institutions. It is also very common to see phishing kits which are offered at no charge in the forums or in separate dedicated web sites. Kits which are available for free in the underground can usually be found in online repositories – sites dedicated to offering several kits that attack multiple targets, typically created by the same fraudster. Links to these repositories are usually provided by the author in IRC chat rooms and online fraudster forums. Most of these kit... [more]

Other Security news and resources