Security expert Wray said although most companies are aware of viruses, worms, Trojans and Denial of Service (DOS) attacks, many IT departments have never heard of such threats as input validation attacks, SQL injection or reverse channel Trojans.
The range of possible concerns spans eavesdropping on confidential messages, impersonating a legitimate user to introduce spurious messages, misuse of IT applications, corruption of data or processes in IT corporate systems, and flooding a system...
In a statement, Cisco said it is aware of the dictionary attack method that exploits known vulnerabilities to password-based security schemes for WLANs. Last August, Wright, who works for the SANS Institute network security group, discovered the...
The worm exploits three vulnerabilities to propagate the XML-RPC for PHP Remote Code Injection vulnerability; AWStats Rawlog Plugin Logfile Parameter Input Validation vulnerability; and Darryl Burgdorf's Webhints Remote Command Execution...
The software maker will update its Security Development Life Cycle, a set of practices that Microsoft's developers follow to prevent security vulnerabilities in products. We will be revising that information in the SDL process and redoing the...
Additional tools that will help networks in case of any attack are intrusion detection and prevention systems, which scan for rogue incoming packets, and straightforward antivirus software which can help prevent any known threats from disrupting...
Did you find this white paper useful? 
White Paper RSS
Download
Register
