DNS
Security Spotlight: Top Four Mac Threats of 2009
As Apple computers grow increasingly popular and enjoy increased market share, the Mac world offers the next great frontier for cybercriminals. Exploits targeting Apple computers were definitely on the uptick in 2009.
Article link
Tracking Devious Phishing Websites
Researchers are monitoring a trick that makes it harder to track and shut down fraudulent websites.
Article link
Security of .edu Internet Domain to Increase
EDUCAUSE and VeriSign announced today the initiation of a project to enhance Internet reliability and stability. By the end of March 2010, the project will deploy a security system known as Domain Name Security Extensions (DNSSEC) within the .edu portion of the Internet, which EDUCAUSE manages under a cooperative agreement with the U.S. Department of Commerce. When the project is completed, institutions whose domain names end in .edu will be able to incorporate a digital signature into those names to limit a variety of security vulnerabilities.
DNSSEC Secures Another Domain
The .edu domain will adopt DNSSEC next March amid more concern over Domain Name System security.
Article link
New Threats Emerge from Once-Trusted Protocols, Services
The rapid morphing and bundling of exploits for known vulnerabilities could be the biggest concern for security experts, but that doesn't mean that new threats are not emerging.
Mac OS X Trojan Attack Changes DNS Settings
Researchers spot new variant of malware that prepares machines for botnet recruitment and other cybercrime uses.
Mac Users: Avoid the MacCinema Installer
Trend Micro has uncovered a new variant in the wild to an older Mac malware, a DNS-Changing Trojan.
Article link
More Firefox Updates for More Critical Vulnerabilities
Two days after disclosing two vulnerabilities that had been fixed in Firefox 3.5 (which had been released weeks before), Mozilla has disclosed 4 more vulnerabilities, 2 of them critical, and released new versions of Firefox to address them.
Article link
Reminder: You Can't Trust the "From:" Line in an E-Mail
A spoofed e-mail recently caused a stir at the SEC (Securities and Exchange Commission), underscoring credibility problems in the Internet's e-mail system.
Article link
Security tightened for .org
The Public Interest Registry will announce today that it has begun cryptographically signing the .org top-level domain using DNS security extensions known as DNSSEC. DNSSEC is an emerging standard that prevents spoofing attacks by letting Web sites verify their domain names and corresponding IP addresses using digital signatures and public-key encryption.
