EarthLinkThe Web

https://forums.symantec.com/t5/Evolution-Of-Security/bg-p/evolution_of_security Evolution Of Security Wed, 07 Jan 2009 12:45:34 GMT evolution_of_security 2009-01-07T12:45:34Z https://forums.symantec.com/t5/Evolution-Of-Security/Just-a-Reminder/ba-p/372417 You may have seen an article in the New York Times on December 6, 2008, by John Markoff, entitled "Thieves Winning Online War, Maybe Even in Your Computer." As we've previously discussed here, we're exploring an exciting new reputation-based security approach to protect against the continuing proliferation of the types of threats described in the article. Sat, 13 Dec 2008 00:47:53 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Just-a-Reminder/ba-p/372417 Steve Trilling 2008-12-13T00:47:53Z https://forums.symantec.com/t5/Evolution-Of-Security/Security-Bugs-Vs-Regular-Bugs/ba-p/346636 There has been much debate recently that stems from discussions related to Linux kernel development, over whether or not security vulnerabilities should be treated differently than regular software bugs. This has meant there has been a slight departure from the exhausted “full disclosure” debate Thu, 28 Aug 2008 17:29:02 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Security-Bugs-Vs-Regular-Bugs/ba-p/346636 Jesse Gough 2008-08-28T17:29:02Z https://forums.symantec.com/t5/Evolution-Of-Security/PCI-DSS-Version-1-2-Changes-Forthcoming/ba-p/346033 The PCI Security Standards Council has released a summary of changes and clarifications for version 1.2 of the PCI-DSS standard, which is scheduled for release on October 1, 2008. In an effort to combat the growing problem of card theft, the Payment Card Industry Data Security Standard has been established to ensure that through the use of imposed regulations, compromises of customer card data will not be easily possible. Tue, 26 Aug 2008 18:53:35 GMT https://forums.symantec.com/t5/Evolution-Of-Security/PCI-DSS-Version-1-2-Changes-Forthcoming/ba-p/346033 Jesse Gough 2008-08-26T18:53:35Z https://forums.symantec.com/t5/Evolution-Of-Security/Elcomsoft-Debuts-Graphics-Processing-Unit-GPU-Password-Recovery/ba-p/306515 On October 25, 2007, Elcomsoft Co Ltd. in Moscow, Russia filed for a US patent on a reportedly new password recovery method that makes use of a video card's graphics processing unit (GPU). Elcomsoft credits Mon, 12 Nov 2007 08:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Elcomsoft-Debuts-Graphics-Processing-Unit-GPU-Password-Recovery/ba-p/306515 Erik Kamerling 2007-11-12T08:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/One-More-Crack-at-the-WEP/ba-p/306514 Wireless Equivalency Protocol (WEP) has been one of the hottest topics in Irish news over the last few days. One of the leading providers of DSL in Ireland has supplied users with wireless routers protected Wed, 03 Oct 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/One-More-Crack-at-the-WEP/ba-p/306514 Patrick Fitzgerald 2007-10-03T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/What-Does-the-Future-Hold-for-Security/ba-p/306513 Up to now in this anniversary series, my fellow Symantecites have been discussing what has happened over the past 25 years around security and how Symantec and the industry have grown to meet these challenges in a number of areas, from malicious code and vulnerabilities through to modern day threats such as phishing. Wed, 29 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/What-Does-the-Future-Hold-for-Security/ba-p/306513 Ollie Whitehouse 2007-08-29T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Disclosure-the-Debate-Continues/ba-p/306512 With the dawn of networked computing, users were granted on-demand access to their data and computing infrastructure. The gained connectivity, of course, led to an increased exposure to attacks. Attackers no longer required any physical access to the machines or to the portable media. Fri, 24 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Disclosure-the-Debate-Continues/ba-p/306512 Josh Talbot 2007-08-24T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/A-look-back-at-Code-Red-Nimda-and-Slammer/ba-p/306510 Code Red, Nimda, and Slammer (also known as SQL Slammer) are three of the most well known computer worms in the relatively short history of computers. Well known not because of their creatively selected names, but because of the massive impact they had on a widely used Internet. Wed, 22 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/A-look-back-at-Code-Red-Nimda-and-Slammer/ba-p/306510 Yazan Gable 2007-08-22T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/2000-and-on-A-Security-Odyssey/ba-p/306509 After the success of the W97.Melissa virus in 1999, mass-mailing became the next big thing in viruses. This trend continues even today. Different methods have been tried over the time, but they fall mainly into two categories: exploits and social engineering. Fri, 17 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/2000-and-on-A-Security-Odyssey/ba-p/306509 Peter Ferrie 2007-08-17T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Evolution-of-the-AV-Engine/ba-p/306507 Back in June of 1992, I joined Symantec’s nascent antivirus team as a scruffy intern after a brief stint with the Norton Commander and Norton Desktop teams. At the time, Norton AntiVirus was a third-tier product with virtually no market-share. But that was about to change Wed, 15 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Evolution-of-the-AV-Engine/ba-p/306507 Carey Nachenberg 2007-08-15T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/A-Brief-History-of-Phishing-Part-II/ba-p/306506 On Friday, Part I of A Brief History of Phishing discussed the early days of phishing from relatively harmless spam to targeting the financial sector and then to an increasingly professional operation with serious consequences for both organizations and individuals. Today's discussion looks at the evolving threat of phishing and what to look for in the future. Mon, 13 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/A-Brief-History-of-Phishing-Part-II/ba-p/306506 Zulfikar Ramzan 2007-08-13T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/A-Brief-History-of-Phishing-Part-I/ba-p/306505 Symantec is celebrating its 25-year anniversary and, during the course of the company’s history, we’ve seen the threat landscape evolve continuously. Many of the threats we routinely address today were practically unheard of in the early days. While much of the activity back then was centered around viruses and other forms of malicious code designed to wreak havoc on customers' personal computers, today’s landscape now includes new threats that can wreak havoc on customers’ personal lives, stealing their money and also their identity. Fri, 10 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/A-Brief-History-of-Phishing-Part-I/ba-p/306505 Zulfikar Ramzan 2007-08-10T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Kevin-Mitnick-The-Hacker-as-Anti-Hero/ba-p/306504 The hacker's place in the pop culture continuum is as anti-hero. This is an image portrayed in movies and novels - the hacker is a wild-card with the power of deus ex machina who can be called upon to cheat technology or exploit a loophole in the system. Since computers don't lie and the system is perfect, the hacker invokes black arts in gross defiance of reality and the law in order to accomplish his (as hackers are overwhelmingly portrayed as male) goals. Yet we often sympathize with the fictional hacker for this exact reason. The system irks us and we often wish we could circumvent it. The nineties had its own hacker anti-hero: Kevin Mitnick. Wed, 08 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Kevin-Mitnick-The-Hacker-as-Anti-Hero/ba-p/306504 David McKinney 2007-08-08T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Do-Botnets-Dream-of-Digital-Sheep/ba-p/306501 Over the last few decades, markets and economies have been revolutionized with the advent of this powerful medium we call the Internet: Access to information and freedom of expression are not limited to any geographical boundaries; the world has shrunk to the size of electrons. I keenly remember the challenges of the protagonist in Phillip Dick’s science fiction novel, ‘Do Androids Dream of Electric Sheep?’, while dealing with rogue androids. Fri, 03 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Do-Botnets-Dream-of-Digital-Sheep/ba-p/306501 Pukhraj Singh 2007-08-03T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Vulnerability-Disclosure-Do-the-Right-Thing/ba-p/306499 It has been almost 14 years since Scott Chasin began BugTraq to discuss computer security vulnerabilities in detail. Since then, it has grown from a small email list to become a top industry source for vulnerability information and, along the way, helped advanced many of the changes in the industry through its full disclosure policy. What a long and strange trip it has been since then. But one thing remains the same, the constant struggle to do what is right in a field full of moral landmines. Wed, 01 Aug 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Vulnerability-Disclosure-Do-the-Right-Thing/ba-p/306499 Elias Levy 2007-08-01T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/The-Advent-of-the-Computer-Hacker-Scene/ba-p/306498 The hacking scene is definitely not what it used to be. Though it seems hard to remember, there was a time before vulnerabilities were posted to mailing lists every day, you could sell exploits to corporations and hacking groups were being turned into security companies. There were few established laws restricting hacking and a simple Internet search returned a massive amount of detail on how to hack. It was a time when a few small groups of elite technology enthusiasts, driven largely by curiosity and mischief (vs. malicious) became some of the most notorious and powerful hackers of all time. Fri, 27 Jul 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/The-Advent-of-the-Computer-Hacker-Scene/ba-p/306498 Aaron Adams 2007-07-27T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Hacking-the-Bubble/ba-p/306497 Hacking has existed in one form or another for quite some time. Just as the Internet grew by leaps and bounds in the '90s, so did the hacking community. While the dot-com bubble thrust the Internet into the general public’s conscience, it also brought hacking into the limelight. Web site defacements and denial of service attacks quickly became commonplace. Naturally, with the rapid growth of the Internet population, a rise in the number of people looking to take advantage of neophyte users also took place. Wed, 25 Jul 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Hacking-the-Bubble/ba-p/306497 Marc Fossi 2007-07-25T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/Morris-and-the-Brain/ba-p/306496 Morris and Brain. The average person doesn’t know these names very well in comparison to Melissa, CodeRed, Slammer, Nimda, and Funlove. They all had their day, and are burned in the memories of the users who were infected and those who cleaned up after them. Without Morris and Brain, though, the current “superstars” wouldn’t exist. Fri, 13 Jul 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/Morris-and-the-Brain/ba-p/306496 Marc Fossi 2007-07-13T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/The-80s-scene/ba-p/306495 The early years of the 1980s were marked by great technological advancements, particularly the release of the first integrated and powerful personal computers. By the mid-80s, small, powerful (relatively) personal computers were deployed in homes, businesses, and schools, and were used for a growing number of applications. As personal computers become more popular and widespread, so did the security concerns related to them. Wed, 11 Jul 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/The-80s-scene/ba-p/306495 Elia Florio 2007-07-11T07:00:00Z https://forums.symantec.com/t5/Evolution-Of-Security/The-70s-Scene/ba-p/306493 Steal this book! F@&! the System! Do those phrases bring back any memories? For me, they conjure up images of Chicago’s Old Towne & New York’s Greenwich Village in the late '60s and early '70s. And that seems like a fitting start for a blog entry on computer security because…well, it’s a long story. Fri, 06 Jul 2007 07:00:00 GMT https://forums.symantec.com/t5/Evolution-Of-Security/The-70s-Scene/ba-p/306493 Sarah Gordon 2007-07-06T07:00:00Z