March 27th: Man-in-the-Middle Attackers

March 27, 2009 by sarahfender · Leave a Comment

What if you get an email from your boss telling you to purchase a $1,000 office item. You email back to get instructions, which he e-mails back. You order the product, and then find out it wasn’t your boss e-mailing you at all. You’d be a victim of a Man-in-the-Middle attack (MITM), a cryptographic form of eavesdropping. This threat to businesses is enormous and getting worse every day. Phishing, SSL proxy, autoproxy, Man-in-the-Browser, DNS poisoning such as Hotspots and Kaminsky attacks, IPSec+XAUTH... (Read More)

Tagged: autoproxy, botnets, David Strom, dns poisoning, IPSec+XAUTH MITM, Man-in-the-Middle, MITM, phishing, ssl proxy

March 13th: E-Mail Exposed!

March 1, 2009 by sarahfender · Leave a Comment

Communication via e-mail is the lifeblood of any business today, as well as your personal life. Those of you who access e-mail remotely using Outlook Web Access or another web client, and particularly those of you who are responsible for securing these systems, BEWARE. Web-based e-mail systems are especially vulnerable. A simple phishing scheme targeting any of your co-workers or your e-mail contacts could be used to compromise the entire e-mail infrastructure, harvest e-mail addresses, and access... (Read More)

Tagged: email, OWA, phishing, Security, web mail

IT Security Investigations and Insights by Steve Dispensa

March 27th: Man-in-the-Middle Attackers

March 13th: E-Mail Exposed!

Listen to the Radio Show

Recent Topics:

Tags

Archives

Blogroll