Features

Review: LC5

This product being the latest version of L0phtcrack is euphemistically called a password auditing and recovery tool. It is known to others as a fantastic password hash cracker for Windows. And while the new name makes it sound more like a seminal Detroit rock band of the late 60's, the latest version hopes to kick out the competition with a array of new features.

René Millman May 28 2004 12:00AM Security

Review: LC5

René Millman May 28 2004 12:00AM Security

User Administration with Active Directory

Keeping an organization safe from potential security breaches and costly downtime involves knowing who has access to what parts of the infrastructure and how changes were made to group policies or to user account information. Many IT organizations have already made the long journey from legacy systems to Active Directory (AD) or are well on their way. Having spent time preparing for the pitfalls and pains of migrations, corporations have often forgotten why they set forth on the journey in the first place. The promise of Active Directory has always been to lower the costs of user administration, but sometimes it is unclear how best to achieve these ends. For many organizations, the two most overlooked areas are group policies and the secure delegation of tasks.

Indy Chakrabarti May 24 2004 5:48PM Security

The Issue of Compliance - It’s Here and It’s Expanding!

By now, most high-tech conferences have devoted at least one 30-minute session to the topic of Sarbanes-Oxley (aka “Sarbox”).

Melisa LaBancz-Bleasdale May 24 2004 5:43PM Security

Managing Information Security in Modern Commercial Environments, Part 2 – A Pro-Active Approach

In the first article of this series, we identified and provided examples of the types of issues that need to be resolved if organisations are to correctly manage risk in the area of information security. If we combine the impact of these trends and issues with the fact that most enterprises are being forced to cut costs in order to remain competitive the true magnitude of the problem becomes apparent. Simply put, information security managers have to secure more complex environments, faster and using less resources.

Steve Purser May 24 2004 5:37PM Security

This threat could kill e-commerce

Marcia Savage sees a storm rolling in as phishing statistics jump alarmingly and the e-commerce industry finds itself facing a collapse in public confidence

Marcia Savage May 20 2004 3:47PM Security

Third party or third rate?

Gunter Ollmann shows why each organization should assess the security of its third-party hosting providers

Gunter Ollmann May 20 2004 3:47PM Security

Review: Juzt-Guard

There is a saying that Alaska is what America used to be and in a way this product from Anchorage-based software firm Juzt-Reboot Technology is a bit like what software used to be. Opening up the package reveals a parallel port dongle and installation had an old-fashioned look to it.

René Millman May 20 2004 12:00AM Security

Review: Juzt-Guard

René Millman May 20 2004 12:00AM Security

Our archaic law leaves an open door for cybercrime

Think what the world of IT was like in 1990. A few lucky researchers, military personnel, government workers and assorted hangers-on would have been able to enjoy the novelty of fledgling email and internet services. If you were a forward-thinking large corporate, you might well have a mainframe or a minicomputer network storing and processing crucial data and, although dial-up modems could connect systems to each other and enable remote terminal access, viruses and hack-attacks were minor worries. The occasional infected floppy disc might contain some malware that could potentially compromise the contents of your expensive 40mb hard drive, but a relatively up-to-date antivirus programme would probably protect you. Hackers and virus writers were mostly a minority sub-culture of cyber-kids operating from their bedrooms bragging and swapping war stories on underground bulletin boards.

Staff Writers May 19 2004 3:49PM Security

Viable solutions in the fight against phishing

David Brunswick, technical director for Tumbleweed Communications Europe and a member of the Anti-Phishing Working Group, discusses potential solutions in the fight against phishing

David Brunswick May 19 2004 3:46PM Security

Caller-ID – sharp enough to cut out spam?

With both the US CAN-Spam Act and the EU Directive on spam proving to be failures in stemming the flow of unsolicited emails, attention has turned once again to technology and standards in the battle against spam.

Jamie Cowper May 19 2004 3:45PM Security

The hidden dangers of spam

Spam has gone from virtually nothing four years ago to a major problem today. It is now estimated that spam accounts for about 60 per cent of all email carried over the internet, up from 45 per cent this time last year.

Peter Wenham May 19 2004 3:43PM Security

Review: SecureZip

Just about everyone that uses a computer uses compressed zip files in day-to-day use. However, zipped files are not known for their security,
other than sometimes requiring a password for access files stored within a zip file.

René Millman May 19 2004 12:00AM Security