Network Security Roundup for November 7, 2003
TechNewsWorld: Passphrase Flaw Exposed in WPA Wireless Security
06-Nov-03 18:12 ET
"A research paper posted online warns of holes in the latest WiFi (or 802.11) wireless cryptography protocol and outlines how WiFi Protected Access (WPA) can be compromised using a traditional cyber assault known as a dictionary attack. The paper, written by Bob Moskowitz of TruSecure's ICSA Labs, cautions against use of weak passwords that could allow attackers to gain unauthorized access."
TechNewsWorld: Feds Obtain Restraining Order Against Super Spammers
06-Nov-03 16:40 ET
"An outfit that has exploited a networking feature in Microsoft Windows to send pop-up ads to consumers' computers as frequently as one every 10 minutes has been slapped with a temporary restraining order to halt the practice, the Federal Trade Commission (FTC) announced at a press conference in Washington, D.C."
Silicon.com: Linux Kernel Suffers Trojan Horse Hack
07-Nov-03 5:00 ET
"An unknown intruder attempted to insert a Trojan horse program into the code of the next version of the Linux kernel, stored at a publicly accessible database. Security features of the source-code repository, known as BitKeeper, detected the illicit change within 24 hours, and the public database was shut down, a key developer said Thursday."
ComputerWeekly.com: Virus Writers Dismiss Microsoft Bounty Fund
07-Nov-03 10:35 ET
"Though cyberspace outlaws may look over their shoulder one extra time before launching a computer virus or worm, they won't be deterred by the $5m bounty fund established by Microsoft to help capture and convict them, two virus writers said. 'This new initiative from Microsoft does not change anything. Virus writers who spread their viruses know very well that what they are doing is illegal,' said Benny, a Czech member of virus writing group 29A."
The Register: Canadian '419er' Arrested
07-Nov-03 6:56 ET
"A Canadian man has been arrested for advanced fee fraud following a sting operation instigated by a Connecticut woman fed up with receiving scam emails. Like many other people, Heide Evans was constantly barraged with dubious emails purporting to offer millions in exchange for helping to transfer vast funds from Africa. Instead of deleting these emails, she strung the fraudsters along."
For more of the latest e-business and technology news from around the world, updated 24 hours a day, visit TechNewsWorld.com.