Sponsored White Papers, Webcasts, and Downloads
ZDNet Dictionary Definition
- Spoofing
- (1) Faking the sending address of a transmission in order to gain illegal entry into a secure system. See e-mail spoofing.
- Full Spoofing Definition >>
ZDNet Resources
- IT Dojo: How to spoof a MAC address
- When you support small offices, home offices, and remote offices, you often run across older wireless equipment. Equipment that's likely secured with MAC filtering and perhaps a hidden SSID and WEP encryption.Most techs would agree that MAC filtering alone isn't going to secure a wireless network and that even WEP...
- Tags: MAC, Information Technology, TechRepublic Inc., it dojo, bill detwiler, microsoft windows, security, wi-fi, wireless, wep, mac address, ssid, spoofing
- Videos 2008-07-14
Additional Resources
- iPhone update kills 12 security bugs
- Apple has released iPhone OS 2.2 with patches for 12 documented security flaws, some very serious. The vulnerabilities covered by the patch which also affect iPod Touch could allow remote code execution, information theft, software crashes and weakened encryption settings. The skinny on this...
- Tags: Apple iPhone, Security, Issue, SMS, Arbitrary Code Execution, Security Bug, Application Termination, Text Messaging/SMS/MMS, Telephony, Cellular Phones, Consumer Electronics, Personal Technology, Online Communications, Networking, Ryan Naraine
- Blog posts 2008-11-21
- Cyber terrorists to face death penalty in Pakistan
- According to a recently signed "Prevention of Electronic Crimes Ordinance 2008" in Pakistan, any person who commits cyberterrorism causing the death of other people will face death penalty or life imprisonment : "Whoever commits the offence of cyber terrorism and causes death of any person shall be punishable with...
- Tags: Dancho Danchev
- Blog posts 2008-11-10
- Report: NJ voting machines easily hacked
- Report: NJ voting machines easily hacked"when an optical reader and paper ballot solve everything?? "It doesn't solve the problem of how to allow elections to be manipulated, which is what this is all about.The ability to produce a desired election result without having any way to challenge it is a...
- Tags: Advertising & Promotion, ballot, paper ballot
- Discussion threads 2008-10-20
- Is Comcast plan suspect or 'reasonable'?
- Network neutrality advocates are taking contrasting views towards Comcast's new network management plan. The new plan de-prioritizes heavy users in 15-minute chunks. If your upload traffic is more than 70% of maximum bandwidth or your download traffic is more than 80% of max, you'll be de-prioritized. Free...
- Tags: Network, Comcast Corp., Network Neutrality Advocate, Networking, Richard Koman
- Blog posts 2008-09-23
- Fortune 500 companies use of email spoofing countermeasures declining
- Fortune 500 companies use of email spoofing countermeasures decliningwhen will the big ISPs clamp down?We've heard that the big ISPs and free email providers are going tobe clamping down on inbound mail that fails or has no SPF records. Is that ever going to happen? I suppose that would light...
- Tags: Internet service providers (ISPs), e-mail
- Discussion threads 2008-08-20
- News to know: IDF; Windows 7 wishes; IE 8; Salesforce.com
- Here are today's notable headlines. You can get News To Know via email alert and RSS daily: Larry Dignan: Salesforce acquires InStranet; Will take it SaaS and better target call centers Ed Bott: My Windows 7 wish list ...
- Tags: Salesforce.com Inc., Larry Dignan, Microsoft Windows 7, Jason O'Grady, Apple Inc., Microsoft Internet Explorer, Intel Corp., Service-Oriented Architecture (SOA), Microsoft Windows, Corporate Communications, Security, Web Services, Enterprise Software, Software, Operating Systems, Marketing
- Blog posts 2008-08-20
- Fortune 500 companies use of email spoofing countermeasures declining
- Here's a paradox - a technology originally meant to verify the sender of an email message for the sake of preventing spoofed messages from reaching the network, still hasn't been embraced by the world's biggest companies despite being around for years, but is actively used by adaptive spammers increasingly abusing...
- Tags: Yahoo! Inc., Spammer, Authentication, Fortune 500 Company, E-mail, Spam, Security, Online Communications, Spam And Phishing, Dancho Danchev
- Blog posts 2008-08-19
- 1.5m spam emails sent from compromised University accounts
- 1.5m spam emails sent from compromised University accountsThere may be no such thing as ViagraThe combined Governments of the Earth can not stop hacking.No country escapes,all are victims.This is the invasion of our planet.One can expect to see that all forms of communication are hacked.Can you believe anything that is...
- Tags: Whis, e-mail
- Discussion threads 2008-08-15
- DNS cache poisoning attacks exploited in the wild
- UPDATE: Arbor Networks have provided more details in their "30 Days of DNS Attack Activity" analysis, SANS confirmed HD Moore's statement on DNS cache poisoned AT&T DNS servers. Numerous independent sources are starting to see evidence of DNS cache poisoning attempts on their local networks, in what appears to be...
- Tags: Query, DNS, Vulnerability, Server, Attack, Domain Names, Networking, Internet, Dancho Danchev
- Blog posts 2008-07-29
- Evilgrade: Exploit toolkit pwns insecure online updates
- A security research outfit in Argentina has released a malcode distribution toolkit capable of launching man-in-the-middle attacks against popular products that use insecure update mechanisms. The toolkit, called Evilgrade, works in conjunction with man-in-the-middle techniques (DNS, ARP and DHCP spoofing) to exploit a wide range of applications,...
- Tags: DNS, Toolkit, Evilgrade README, Domain Names, Networking, Internet, Ryan Naraine
- Blog posts 2008-07-28
- How OpenDNS, PowerDNS and MaraDNS remained unaffected by the DNS cache poisoning vulnerability
- The short answer is being paranoid about tackling a known vulnerability. It's 2001, and Daniel J. Bernstein DJB, author of the then popular djbdns security-aware DNS implementation, is applying basic math principles to raise awareness on what's to turn into the "sky is falling" critical Internet vulnerability in 2008, in...
- Tags: DNS, Vulnerability, Anomaly, Attack, OpenDNS, MaraDNS, NSS, Domain Names, Networking, Internet, Dancho Danchev
- Blog posts 2008-07-25
- |)ruid and HD Moore release part 2 of DNS exploit
- |)ruid and HD Moore release part 2 of DNS exploitSo, Linux's BIND the first to be exploited...So, Linux's BIND the first to be exploited...Nice work!CoolNate, nice post and analysis!Wasn't the replacing the ns.victim.com cache entry part of the Halvar Flake speculation? I thought first part of the exploit was to...
- Tags: Domain names, NETWORKING, Operating systems, Alecco, DNS, ruid, exploit, HD Moore, Linux
- Discussion threads 2008-07-24
- iPhone vulnerable to phishing, spamming flaws
- Security researcher Aviv Raff left has discovered a pair of basic design flaws that could turn your iPhone into easy bait for malicious phishing and spamming attacks. According to an advisory from Raff, the iPhone's Mail and Safari applications are susceptible to a URL Spoofing vulnerability which...
- Tags: Apple iPhone, Apple Safari, Vulnerability, Spamming, Flaw, Aviv Raff, Phishing, Spam, Security, Spam And Phishing, Ryan Naraine
- Blog posts 2008-07-23
- Protocol handlers cause Mozilla Firefox 3 remote command execution vulnerabilities
- Update 07/16/2008: Apparently I neglected to mention that this has been patched already. Reading over it again and a heads up from a reader pointed out the error to me. As always, great job by Window Snyder and the Mozilla Security Team for getting this patched quickly. ...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, URI, Vulnerability, Mozilla Corp., Attack, Web Browsers, Security, Internet, Nathan McFeters
- Blog posts 2008-07-16
- Apple ships (long overdue) iPhone security patches
- Finally, after months of waiting, iPhone users finally get security fixes for a batch of known software vulnerabilities. The latest iPhone 2.0 and iPod Touch 2.0 update patches at least 13 documented vulnerabilities, including several code execution holes in the Safari mobile Web browser. The...
- Tags: Apple iPhone, Apple Safari, JavaScript, Apple Inc., Web Site, Arbitrary Code Execution, Application Termination, Memory Corruption, Web Site Development, Web Technology, Security, Internet, Ryan Naraine
- Blog posts 2008-07-11
- Gmail, PayPal and Ebay embrace DomainKeys to fight phishing emails
- Brad Taylor, Google's Gmail Spam Czar, has just posted details on the ongoing cooperation with PayPal and Ebay, two of the most targeted brands in phishing emails, the effect of which is rejecting compared to flagging as spam each and every email pretending to be coming from paypal.com and ebay.com...
- Tags: Google Gmail, DomainKeys, PayPal, eBay Inc., Authentication, E-mail, Phishing, Cyberthreats, Spam, Viruses And Worms, Security, Online Communications, Spam And Phishing, Dancho Danchev
- Blog posts 2008-07-09
- Kaminsky and Ptacek comment on DNS flaw
- Kaminsky and Ptacek comment on DNS flaw"Important"I guess Microsoft agrees that it's not a really scary vulnerability.ActuallyI talked to Dan about this. It early on threw me off too, but their rating has to do with the fact that it is a spoofing flaw, and not an arbitrary code...
- Tags: Domain names, SECURITY, Ptacek, Kaminsky, DNS, flaw
- Discussion threads 2008-07-08
- Kaminsky and Ptacek comment on DNS flaw
- Well, well, well, what a day for security news! I got a chance to get the scoop word of mouth from Dan Kaminsky of IOActive (pictured above [image courtesy of quinnums]) and Thomas Ptacek of Matasano pictured below on the DNS flaw that's been all over the...
- Tags: DNS, Flaw, Nate, Domain Names, Networking, Security, Internet, Nathan McFeters
- Blog posts 2008-07-08
- Microsoft addresses 9 security vulnerabilities with 4 "Important" bulletins
- Microsoft announced 4 "Important" security bulletins today that cover 9 separate vulnerabilities. Of note were vulnerabilities reported in Windows DNS server and client, and within SQL Server. Briefly, the vulnerabilities involve: Cache poisoning and insufficient socket entropy flaws in Microsoft DNS Server A remote...
- Tags: Attacker, Microsoft SQL Server, Vulnerability, Server, Microsoft Windows, Microsoft Corp., Microsoft Outlook Web Access, Microsoft Outlook, Security, Microsoft Office, Office Suites, Software, Nathan McFeters
- Blog posts 2008-07-08
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
Become an Intel Premier IT Professional member to access the most up-to-date IT best practices and learn from IT leaders. Joining is free and quick to do, and provides you with exceptional benefits.
