All the latest UK technology news, reviews and analysis
|
|
|
15 May 2010
In a week dominated by the launch of Microsoft’s Office 2010 suite, there was not much happening in the security space.
However, the main events centred around anger at Linux spam research from Symantec Hosted Services, and new Facebook tools to clamp down on unauthorised access attempts.
First up, Sophos warned of a Twitter phishing scam designed to harvest personal data with the offer of a new iPhone 4G as a lure.
Sophos senior technology consultant Graham Cluley wrote in a blog post that the scam employs a "gaggle of profiles, using avatars of sexy young women, pumping out messages to users" saying they could win the device.
Clicking on any of the links takes the user to a page where they are asked to fill out personal information.
Web authentication firm VeriSign has opened up its Trust Seal scheme to a wider range of companies, offering the opportunity to display compliance with a range of security criteria and improve consumer confidence in their sites.
Launched in February, the Trusted Seal programme was initially targeted at e-commerce firms that do not require SSL certificates of authenticity, but still want to reassure users that their site is safe and reputable.
The seal, which includes the VeriSign Checkmark logo, proves that a site has been scanned for malware and could suit firms that outsource elements like shopping carts to a third party, VeriSign said.
Latest stories from Security
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
Orange and Intel talk us through the ins and outs of their San Diego smartphone
Connect with V3.co.uk
The wrong printers, for the wrong tasks on the wrong contracts
Who leads the BI pack and who should we be watching out for?
Our highly successful client urgently requires Senior...
Our highly successful client urgently requires Senior...
Our highly successful client urgently requires Senior...
Our client, a highly successful and currently market...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
I happen to agree somewhat with Symantec...
I happen to agree somewhat with Symantec, although I wouldn't absolutely point the finger at Linux without concrete proof. Any misconfigured server is a potential target and Linux makes it very easy to simply point, click, and poof! You are now a (fill_in_the_blank) server without necessarily having the proper settings. I can do the same thing here with Windows although the barriers are slightly different with it (price and knowing where to find the server component if your version even has it). I just spent some of my morning here installing and configuring my simple mail server here. Authentication, turning off relay, restricting access to strict range of network addresses, etc. ad nauseum. All of the things that a good system administrator should do post-install but frankly I don't know how many other home schooled Linux users are responsible enough with their servers. Do you? Do they (Symantec)? No one really has an answer with hard numbers, do they.
Posted by: Brian J. Bartlett 17 May 2010