February 2010
My Website is infected with Malware - What's next?
by Amirthamurugaraj
Legitimate websites are being targeted for malware infections. Reason, large number of users visit their websites and hence these websites can be misused to easily spread or distribute malware to large number of users. If a website is infected with malware it may belong to one of the following scenarios:… more →
Defeat SSL Using Null Prefix Attack
by Vikram GR
This article is about defeating SSL using Man in the Middle (MITM) attacks against SSL/TSL emulating certificates due to flaws in the operating mode of the Network Security Services (NSS). NSS is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. The possible targets for MITM tools are like Firefox, Internet Explorer, Chrome, Outlook, Evolution and any other tool that makes use of the libraries / API’s listed above.… more →
An Attack Response Model for a Network Compromise
by Sudhindhar J
An Incident, in the context of this article can be defined as an adverse event that endangers the security of computing systems or networks. Examples of incidents could include activities such as repeated attempts to gain unauthorized access to a system or its data, unwanted disruption or denial of service, changing system Hardware or Software characteristics without the owner’s knowledge or consent.… more →