Students crack Microsoft CardSpace

Friday, May 30th, 2008

Students at the Ruhr University of Bochum, Germany, say they have found a way to steal security tokens in Microsoft's new CardSpace authentication framework. Attackers can apparently get access to protected, encrypted user data – such as passwords, credit card numbers, and delivery addresses – when they are transmitted. ...

Posted in Security, Windows | No Comments

Symantec Launches Online Fraud Protection

Monday, May 19th, 2008

Symantec Corp. today announced the availability of Symantec Online Fraud Protection, a comprehensive program that includes Symantec services, education and ongoing monitoring and management capabilities designed to protect businesses that conduct large volumes of financial transactions and their customers from losses due to online fraud. This offering helps businesses shield their ...

Posted in Internet, Privacy, Security, Software | No Comments

browserrecon - Passive Browser Fingerprinting

Wednesday, May 14th, 2008

Most of todays tools for fingerprinting are focusing on server-side services. Well-known and widely-accepted implementations of such utilities are available for http web services, smtp mail server, ftp servers and even telnet daemons. Of course, many attack scenarios are focusing on server-side attacks. Client-based attacks, especially targeting web clients, are becoming ...

Posted in Internet, Privacy, Security, Software | No Comments

Simple Pharming

Monday, May 5th, 2008

Today I decided to give a very brief example on pharming and why it's so easy to pharm surfers with little or no skills. Usually, browser exploit writers give simple examples on how to read the boot files, or launch a calculator. There is so much you can do with ...

Posted in Coding, Internet, Privacy, Security | No Comments

DNS Attacks Expose Key Flaws

Saturday, March 8th, 2008

The steady rise in phishing attacks in the last year, coupled with increasingly sophisticated scams such as "pharming" attacks, is driving interest in technology to lock down critical components such as e-mail and Domain Name System. But bigger changes to the underlying Internet infrastructure may be needed, according to interviews with ...

Posted in Internet, Security | No Comments

Copyright 2008 PC Sympathy - Entries (RSS) or Comments (RSS)