My Erp Got hacked!
(4/2009)
Nokia’s Vow of Silence - Tam Hanna
Nokia’s smartphone platform Series 60 has never been known for its safety. It brought us Nokia’s S60 platform virus epidemics like the mass outbreak at a stadium in Helsinki.
Phishing - James Broad
Anyone that has opened an E-mail message or listened to the News in the last five years should know what phishing (pronounced as “fishing”) is.
Print Your Shell - Carsten Köhler
There are printers connected to print servers that have been shared over the network and thus can be used by many employees at the same time. This article shows how this functionality can be misused for local privilege escalation or for attacks on print servers – up to command line access to the target system.
My ERP got hacked(An Introduction to Computer Forensics) - Ismael Valenzuela
The System Administrator knew something was wrong when he saw there was an additional user account on the Web-based Enterprise Resource Planning (ERP) system that he administered. He kept the system updated and patched, but he now suspects that the system has been hacked and compromised. Now, as a computer forensic investigator, you will have to find out if there was any unauthorized access, how it happened and what was the extent of the damage.
Attacks On Music and Video Files - Methusela Cebrian Ferrer
Attackers are constantly on the look out for new techniques and strategiesevidently, attacks on media files significantly contributed to the success rate of malware distribution. It is important that user should be aware and stay-up-to-date on these latest threats.
The Strings Decoding Process - Marco Ramilli
One of the most difficult challenges in Computer Science is data protection. Often a well written software, a strong intrusion detection system and great access policies don't assure good data protection.
Hacking Through Wild Cards - Aditya K. Sood
This paper sheds light on the usage of wild characters that lead to hacking. The wild characters are used effectively in a different sphere. The inappropriate use of wild characters can lead to misconfiguration of parameters thereby resulting in a number of attacks.
Create A Self-Signed Digital Certificate with OpenSSL - Daniele Zuco
OpenSSL is an excellent open source software that implements protocols such as SSL v2/v3 and TLS v1 as well as a full-strength general purpose cryptography library.
Automating Malware Analysis - Tyler Hudak
In the previous article, a malware analysis automation script was created which allowed Computer Incident Response Teams (CIRTs) to quickly determine the behavior of a malware sample.
Behavioral Technology Can Deliver Proactive Defense - Julian Evans
Neural (Term comes from the word neurons in the human brain) and heuristic (Term comes from the word heuriskein, meaning to discover) technology is now being talked about as the next generation development within AV (Antivirus) and endpoint security circles.
Blackhat Europe Roundup - Chris John Riley
Blackhat Europe has been one of the main-stays of the European security conference scene since it first started back in 2000. For the last 9 years the conference has been held in Amsterdam, and although smaller than the Las Vegas version that’s due to be held later this year, it gives a perfect chance to meet with other security professionals and watch some groundbreaking research.
Interview with Billy Austin - Ewa Dudzic
Billy Austin, Chief Security Officer at SAINT Corporation, has held several executive positions for intrusion detection and vulnerability security vendors. He also published „Session Hijacking and Active Sniffing.” He holds engineering and training certifications in firewalls, VPNs, risk assessment, intrusion detection systems, public key infrastructure and other security tools.
visit Hakin9 website @ http://www.hakin9.org/en
<< back
