BenchAddix » security

Intel to buy McAfee for $7.68billion

Nerm — Thu, 19 Aug 2010 23:03:10 +0000

Today Intel announced that they are purchasing antivirus software maker McAfee for $7.68 billion. This will be a major purchase for Intel’s software group as McAfee is a giant in the security market. Intel says this buyout will help progress their ability to meet the ever increasing need of hardware integrated security.

Windows Shell vulnerability patched by Microsoft

Nerm — Tue, 03 Aug 2010 18:41:19 +0000

Microsoft released an emergency patch on Monday. The patch was to fix a known vulnerability in the windows shell that allowed remote code execution via windows shortcuts (.lnk). Microsoft rated this patch as critical and released it immediately rather than waiting until their regular Patch Tuesday.

[Microsoft Security Advisory]

DNS security enhancements start today

Nerm — Thu, 15 Jul 2010 23:55:37 +0000

Starting today the DNS Root Zone is getting DNS Security Extensions (DNSSEC) as an added layer of security against hackers. DNSSEC is an internet standard for protecting against cache poisoning by allowing websites to verify their domains with digital signatures and public-key encryption. Cache poisoning is where web traffic is redirected from a legitimate website to a fake site without the knowledge of the user or the legitimate websites administrator. This security flaw in current DNS architecture is also referred to as spoofing.

Misconfigured Cisco AP could allow unwanted access

Nerm — Thu, 01 Jul 2010 03:58:32 +0000

According to an article at networkworld researchers have found a potential security risk in Cisco’s Aironet 1200 Series Access Points if the devices are configured incorrectly. This is not an actual bug as it has more to do with user error.

“The issue has to do with Cisco’s Aironet 1200 Series Access Point, which is used to power centrally managed wireless LANs. The Aironet 1200 can be set to a WPA (Wi-Fi Protected Access) migration mode, in which it provides wireless access for devices that use either the insecure WEP (Wired Equivalent Privacy) protocol or the more secure WPA standard.

This gives companies a way to gradually move from WEP to WPA without immediately buying all-new, WPA-capable equipment. But while auditing the network of a customer who used the product, Core researchers discovered that even networks that had stopped using WEP devices could still be vulnerable, so long as the Aironet’s migration mode was enabled.

Researchers were able to force the access point to issue WEP broadcast packets, which they then used to crack the encryption key and gain access to the network.”

Anyone that is using this series of access points from Cisco might want to check and make sure that migration mode is not enabled unless absolutely necessary.

[networkworld]