home contact keylogger.org add keylogger.org to favorites set keylogger.org as homepage Anti-Keylogger.org
Keylogger testing and reviews

Keylogger testing policy

Press-releases

Keylogger developers

Links 		Monitoring Software Keylogger articles

Get Free Software

Keylogger chat

Keylogger forum

Sponsorship & services
Advertising
Your Ad Here
Site News
Current section
Keylogger.Org Site News

November 27th, 2008

New version of XPC Spy Pro added!
Security World News
Keylogger.Org Security World News

December 04th, 2008

Microsoft and RSA partner on Data Loss Prevention

Worm uses familiar brands to lure people

Company data at the mercy of crooks

Norton AntiVirus Begone!

Criminals Take Control of CheckFree Web Site

Firefox Users Targeted by Rare Piece of Malware

Hacker threat: Rudd promises action

Lib Dems criticise 'shambolic' DNA database

Experts: US cybersecurity needs fresh ideas

Pentagon hacker tries one more time to avoid extradition

Virtually every Windows PC at risk, says Secunia

Sun patches at least 14 bugs in Java

Security, civil liberties experts question data mining
Voting

We are planning to redesign our site. We would like You to express your opinion in this respect. Would you like to leave the site as it is? What changes would you like to suggest?

Yes, I like the site as it is.
It's ok, but some changes are necessary.
It should be changed completely.
VotingView results
DISCLAIMER: Logging other people's keystrokes or breaking into other people's computer without their permission can be considered illegal by the courts of many countries. The monitoring software reviewed here is ONLY for authorized system administrators and/or owners of computers. We assume no liability and are not responsible for any misuse or damage caused by the keylogging software. The end user of this software is obliged to obey all applicable local, state, federal and other laws in his country of residence.

August 22nd, 2008

DNS attacks occurring, warns Kaminsky

A fatal flaw with the Domain Name System is being exploited in internet attacks and more attacks are likely, the security researcher who discovered the flaw said on Thursday.

"I do think we are going to see attacks. I think we have been seeing attacks already going on in the field," said Dan Kaminsky, director of penetration testing for IOActive, who warned the industry about the Domain Name System (DNS) vulnerability nearly five months ago. "We're doing everything we can to mitigate and reduce its incidence."

Kaminsky mentioned a DNS-related incident with the ChinaNet.com portal, but said it wasn't clear that it was due to the vulnerability he found. "There are other scenarios that I can't, unfortunately, get into," he added.

The problem exists in the DNS system, which translates web addresses into numerical IP addresses and serves as the phone book for the internet. An attacker exploiting the vulnerability could redirect web surfers to malicious sites, even if the surfers typed in a legitimate web address. For example, someone could type in the address for a bank and end up at a site that looks like the bank site but is a fake site set up to grab sensitive information like passwords.

Security firm MessageLabs recorded a 52 percent increase in suspicious DNS traffic between July and August. This indicates "the online underworld is poised to launch targeted attacks in coming weeks", the firm said in a statement released early on Thursday.

Some of that suspicious traffic is due to security researchers gathering statistics, according to Kaminsky. However, there's no way to tell how much of the traffic is for research purposes, he said.

"People are sweeping the internet looking for vulnerable systems," he said. "What they have in store, we don't know."

Those statistics only show part of the problem — researchers are unable to scan the traffic going to servers used for directing email and corporate web-browser traffic, and thus are missing the statistics on attempts to find unpatched systems via those alternative modes, Kaminsky said.

"The most important thing for people to patch are the name servers that back up their mail servers," he said.

Meanwhile, people can use test code to find out if their systems are safe at DoxPara.com.

"The good news is that there are hundreds of millions of users protected against these attacks. The bad news is it's not everybody," Kaminsky said.

Kaminsky first warned security-software vendors about the problem in a secret meeting at Microsoft headquarters in March, so they could start writing patches. On 8 July, he went public with the information, but not the details, of the flaw, at the same time as Microsoft, Cisco and other vendors released their patches in an unprecedented, synchronised, multi-vendor effort.

Kaminsky planned to release details about the vulnerability during a talk he was scheduled to give at the Black Hat security conference a month later, in order to give people more time to patch their systems. However, within a few weeks, security bloggers were speculating about and leaking technical details of the vulnerability. Days later, there was exploit code reported in the wild.

Those developments forced Kaminsky to go public with some details about his finding in a conference call with journalists on 24 July. Kaminsky talked more about the problem at Black Hat in Las Vegas two weeks ago, reporting that 70 percent of Fortune 500 companies have tested and patched mail servers successfully, while 61 percent have patched non-mail servers.


Source: ZDNet UK




All news for December 04th, 2008:
17:31Microsoft and RSA partner on Data Loss Prevention
17:29Worm uses familiar brands to lure people
17:27Company data at the mercy of crooks
17:23Norton AntiVirus Begone!
17:15Criminals Take Control of CheckFree Web Site
17:14Firefox Users Targeted by Rare Piece of Malware
17:12Hacker threat: Rudd promises action
17:11Lib Dems criticise 'shambolic' DNA database
17:10Experts: US cybersecurity needs fresh ideas
17:08Pentagon hacker tries one more time to avoid extradition
17:07Virtually every Windows PC at risk, says Secunia
17:06Sun patches at least 14 bugs in Java
17:05Security, civil liberties experts question data mining

All news for December 03rd, 2008:
15:18Hackers run Linux on iPhone
15:17Your face is easy to fake, says security company
15:15Microsoft opens up Vista SP2 beta
15:09Latest VB100 malware test brings good news
14:57Botnet Master Sees Himself as Next Bill Gates
14:53Apple removes Mac antivirus recommendation
14:51License server glitch exposes SonicWall users to e-mail security threats
14:50U.S. report sees major terror attack by 2013, ignores cyberattack risk
14:48Lenovo arms ThinkPads with Intel's built-in security
14:44Feds nab more members of alleged identity theft gang
14:43Apple's antivirus advice 'big to-do about nothing,' says researcher
14:42Opinion: Is there a hidden cost to data protection?
14:41Human error is top IT security concern
14:40Workers worried about job security might steal corporate data



All news for December, 2008
All news for 2008 year
All news for 2007 year
All news for 2006 year
All news for 2005 year
All news for 2004 year

DONATION: Keylogger.org is an independent research project supported by a team of enthusiasts. If you find this project useful or would like to help foster its continued development please consider making a donation using PayPal`s online secure payment service.

A PayPal account is not required. All major credit cards are accepted (MasterCard/Eurocard, Visa/Delta/Electron, American Express, Switch/Maestro, Solo). Simply click the button below.

Any amount would be useful and appreciated!

Thanks in advance for your support!

Advertising
Your Ad Here
| home | testing and reviews | testing policy | press_releases | developers |

| articles | contest | chat | forum | sponsorship & services | contacts | links |
Copyright © 2003-2008, Keylogger.Org Team. All Rights Reserved.
Use of any information from this website is permitted only with hypertext link to www.keylogger.org.