Rodney Campbell's Blog

Email: Compliance and Information Management

Email is fundamental to internal and external communication for many organisations, with 87% of UK businesses highly dependent on electronic information. The nature and sheer volume of information that is shared and stored on email today makes email management critical to IT and corporate governance.

SSH Tunnels: Bypass (Almost) Any Firewall

The goal of this article is to present a few effective methods to revamp the way you work in a restricted corporation-like network. In order to achieve it we’re going to use SSH tunneling to bypass the firewall rules applied by your system administrator. We’ll start with breaking through simple restrictions and gradually pass to more and more elaborate firewalls while we move on.

MS06-042 Internet Explorer Crash is Exploitable

On August 8th Microsoft released MS06-042 which was a cumulative update for Internet Explorer. Over the course of a few days after the release of this patch various Internet Explorer users and businesses started to experience Internet Explorer crashing problems when viewing certain websites. 

Sophos offers free rootkit detection and removal tool

Sophos has announced the availability of a new free-of-charge, standalone tool offering comprehensive rootkit detection and removal capabilities. Sophos Anti-Rootkit complements Sophos Anti-Virus 6.0 and other vendors' anti-virus solutions by providing an additional layer of protection for the Windows NT/2000/XP/2003 operating systems.

IBM to acquire Internet Security Systems

IBM announced on Wednesday that the technology giant has agreed to buy Internet Security Systems, an all-cash deal that the company valued at $1.3 billion, or about $28 a share.

Kevin Mitnick Web sites hacked

Instead of the usual description of Kevin Mitnick, his consulting services and books, the famed hacker's Web site on Sunday displayed a vulgar message.

Tip of the Day – PHP Security

For all of us here coding in PHP I put together a couple of configuration tips to provide an extra layer of security. Now while all of your own applications are of course bug free and will never get exploited, you just may have to use some third party code once in a while.

Married couple charged with $1 million stock spam scam

SophosLabs has warned users to be wary of emails offering unsolicited financial advice as a married couple are charged by federal regulators with making $1 million through a stock market pump-and-dump scam.

Brit Convicted for Accessing Wireless Network

A recent court case, which saw a West London man fined £500 and sentenced to 12 months' conditional discharge for hijacking a wireless broadband connection, has repercussions for almost every user of wi-fi networks. 

TrackMeNot: a "new" Firefox browser privacy extension

TrackMeNot is a browser extension that protects web-searchers against surveillance and data-profiling. It does so not by means of concealment or encryption (i.e. covering one's trail), but instead, paradoxically, by the opposite strategy: noise and obfuscation.

Protecting the BlackBerry device platform against malware

This document describes the third-party application control features of the BlackBerry Enterprise Solution and provides an overview of how you might use those features and place the BlackBerry Enterprise Solution within your network architecture to contain the threat of malware on your BlackBerry devices and your corporate network.

Yahoo tests antiphishing service

Yahoo is testing a security service designed to prevent Web surfers from landing on sites that look like they are from Yahoo but that are fake ones set up by fraudsters to carry out phishing scams.

Eavesdropping on a Botnet

Botnet Eavesdropping – Inside the Mocbot (MS06-040) Attack.

Internet Explorer 7 Beta 3 for Windows XP SP2 updated

Internet Explorer 7 (IE7) Beta 3 has been designed to make everyday tasks easier, provide dynamic security protection and improve the development platform and manageability. End user improvements include a streamlined interface, tabbed browsing, printing advances, improved search functionality, instant feeds (RSS), dynamic security protection, and more.

Five Firewalls For Your Desktop PC

It's amazing to think there was once a time when the idea of a firewall for one's desktop computer was thought of as overkill, if not downright ridiculous. Now it's practically mandatory — not just to protect your computer from outside threats, but to keep Trojans and e-mail viruses from hijacking your system from within.

EFF: How To Keep Your Search History Private

How can you help prevent damaging privacy invasions like AOL's data leak? Along with spreading the word about this debacle, you can take steps to protect yourself online. Beneath the fold, we've listed some tips and tools that will help keep your search history private. 

Microsoft August 2006 Patches

12 Microsoft Security Bulletins for August 2006.

Bot spreads using latest Windows flaw

Security firms advise companies and home users to patch their Windows systems after detecting a bot program using a recently fixed flaw to compromise computers.

Windows Mobile security software insecure
Security outfit Airscanner has slammed Windows Mobile security software as insecure and buggy. In a paper posted, the report condemns Windows Mobile as lacking any decent security infrastructure.

VoIP Security
There’s no doubt that Voice over IP (VoIP) is the future of telephony. What started as a rather cumbersome way for budget-conscious enthusiasts to talk to each other using their computers has now developed into something of much greater significance – IP telephony, a new way of delivering fully-featured phone services that promises big cost savings and opens the way for a whole new range of multimedia communication services.

A Guide to Information Security Certifications
Many people are confused by the massive number of information security certifications available today. Some people already have one or more and are looking to expand, while others are just getting started with certification and need a place to start. This guide aims to help with both scenarios.

Windows Updates Downloader
Windows Updates Downloader is a small utility that allows you to download all of the current Windows critical updates. All updates are downloaded directly from microsoft.com to your computer with a single mouse click.

Spyware's Growing Arsenal
Spyware's threat is getting nastier. Infection rates are on the rise, in part thanks to the surging popularity of social-networking sites like MySpace.com. We're finding that the social-networking sites like MySpace are turning out to be hotbeds for spyware. It doesn't help that many younger users aren't sufficiently cautious either.

Pen Testing in the Palm of Your Hand
A portable hacking device equipped with hundreds of exploits and an automated exploitation system will go on sale in the United States in October.