Apple patches 40 Mac OS X security bugs   29 May 2008 13:00 GMT
Apple has patched 40 security vulnerabilities in more than 25 different components and applications bundled with Mac OS X.

Source: Computerworld

State of the Internet: Old worms live on; Delaware speediest state; South Korea a broadband king   29 May 2008 11:55 GMT
Akamai on Thursday released its first State of the Internet report and found attack traffic--viruses, worms, bots and such--derived from 125 countries with 30 percent of that traffic coming from the United States and China. Some of these attacks, which occurred in the first quarter, were from worms like Blaster...
Source: ZDNet

Attacks on NFC mobile phones demonstrated   29 May 2008 01:49 GMT
Yesterday, Collin Mulliner of the trifinite.group, a group of computer experts researching insecurities in wireless communications, has released the slides as well as the research tools he came up with in order to demonstrate various attacks and vulnerabilities in Near Field Communication mobile phones, a technology that will change the...
Source: ZDNet

ICANN warning against registrar impersonation phishing attacks   29 May 2008 00:46 GMT
How realistic is an attack that successfully hijacks a domain by social engineering the domain's registrar? Pretty realistic according to ICANN's recently released advisory on preventing Registrar Impersonation Phishing Attacks : In this Advisory, SSAC describes generic forms of this type of attack. We consider types and formats of...
Source: ZDNet

Samba dinged by 'highly critical' flaw   28 May 2008 23:41 GMT
Researchers at Secunia have flagged a "highly critical" vulnerability in Samba, the widely deployed open-source software for networked file sharing and printing. According to an advisory from Secunia, the vulnerability affects Samba versions 3.0.28a and 3.0.29 and  can be exploited by malicious people to compromise a vulnerable...
Source: ZDNet

Mac OS X Leopard mega-patch plugs 41 security holes   28 May 2008 22:50 GMT
It's Patch Day in the land of Mac OS X Leopard. Apple today shipped Security Update 2008-003 (Mac OS X 10.5.3) with fixes for a wide range of serious vulnerabilities that could put users at risk of information disclosure, denial-of-service and remote code execution attacks. ...
Source: ZDNet

Adobe Flash drive-by attacks redux   28 May 2008 21:45 GMT
Adobe has finally issued an almost-definitive statement on the reports of a zero-day attack targeting its flagship Flash Player, suggesting kinda that the vulnerability is already patched. In a progress report posted to the official Adobe PSIRT blog, David Lenoe stops short of making definitive statements on...
Source: ZDNet

Yahoo sues unknown phishers   28 May 2008 17:37 GMT
Yahoo is suing an unknown group of phishers over their use of Yahoo's trademarks in spamming potential victims with promises that recipients of the email had won a lottery. Even though Yahoo doesn't know who the spammers are, it figures the information will be forthcoming through discovery, AP reports. ...
Source: ZDNet

Dan Geer leaves Verdasys for In-Q-Tel   28 May 2008 17:22 GMT
Dan Geer, a risk-management pioneer who is often described as "the dean of the security deep-thinkers' set," has left Verdasys to join In-Q-Tel as chief information security officer. Geer left will remain on the masthead at Verdasys as Chief Scientist Emeritus.  At In-Q-Tel, he will report directly...
Source: ZDNet

Spam Spikes: A Real Risk to Your Business   28 May 2008 13:00 GMT
(Source: Messagelabs) A close look at the data provides a clear picture of how spammers vary their tactics to overwhelm traditional corporate email defenses, through changes in duration, frequency and intensity among others. This white paper will help you understand these threats to your business, and how MessageLabs provides a unique solution.

Source: Computerworld