Network Security News

Web 2.0 wave ran over all the aspect s of Net activity. The concept of user-brought content is already several years old, yet the amount of such services grows. However, the old-style thinking hasn't yet prepared an adequate security model and Network codex of ethics, to meet the challenges of Web 2.0. ZDnet elaborates this in Security risks of Web 2.0 tools should not be overlooked by enterprises, individuals.

Dedicated servers, DS, are the ultimate form of popular hosting - end-user has total control over what is running on the server. Since many of us are aware of known security limitations in shared hosting, the dedicated servers are viewed as very secure by default. However, security isn't a feature, it's discipline and a state of mind, not just something granted by hardware and software combined. EukHost comments on this in Dedicated Hosting Can Still Be Insecure

There are many sentient security-related watches such as SNORT, they are evolving as cyber-threats evolve, in turn. Static security means are no more effective; human-only-powered security systems are not capable of handling large-scale attacks, thus sentient software watches are the obvious security response. Simple Thoughts elaborates on this: Scientists devise cyber security ‘neighborhood watch’.

Botnets, huge clusters of computers controlled to perform certain actions invisibly for their end-users, are the source of significant danger. Simply speaking, modern botnets are capable of removing literally any given site, network service and so on. To understand the exact impact of botnets, they should be modeled. Internet Evolution in Botnet Project Could Yield Internet Secrets depicts one of approaches.

A term 'botnet' is well-known to many a people; the scale of the problem can't be underestimated. The existing botnets are responsible for most spam and DoS-type attacks known nowadays. However, cell phones were not viewed as possible members of a network controlled by a third party and used to perform destructive actions. Impact Lab refers to such a precedent in First Zombie Cell Phone Network.

A term 'cloud computing' becomes popular nowadays, even though it's in most cases very clouded and too general. An idea to distribute resources of all kinds over many computers isn't new, yet cloud computing is a relatively new family of technologies, growing rapidly and promising many an improvement in terms of reliability and security. Rational Survivability has posted a large and detailed article on that, Cloud Computing Architectural Framework.

Cyberspace is becoming a battlefield; well-known botnets, other means and tools of disrupting networks, of breaking the security, bypassing all kinds of sentinels and monitors; cyber-espionage and phishing - looks like the peaceful Internet is but history. Resources created to serve people are used in people's conflicts, and as such are being exhausted. Information Security Resource has more to say in Are We Creating a State of Cyber-Attrition?

Technologies like OpenID, OAuth and other of the kind are spreading quickly. Nowadays, a single account at, say, Google may be a key to hundred other accounts supporting OpenID authorization. It means a user hasn't to invent a hunder more name and password pairs and can only use their Google (or LJ, or Yahoo etc) account. But the ironic saying that a keyring is the best means to lose all the keys attaching to it is true. Trusted.md elaborates this in TwitterGate Debacle Highlights Security Risks of Google Health.

All the information threats are caused by user's actions or lack of actions; developing proper security discipline is both simple and tedious; certain habits are to be created in case one doesn't wish to witness themselves or their computer a victim of popular modern information hazards. DoctorWeb20.com starts this discussion in Stop Spyware Intrusion In Internet Businesses: Three Habits of Spyware Prevention!

Both human beings and corporations can be very conservative in terms of accepting the current state of security situation. Inside, many companies do not accept how severe could be consequences of information leaked out due to inadequate security precautions. It also gets worse with the amount of documents growing rapidly. This is elaborated in ZDNet blogs' IT Security: Context is King.