Stories about: X-Force

Security experts are warning that ready-made code which exploits a recently announced Cisco Systems IOS operating system vulnerability is circulating and attacks using the exploit are taking place.

A weekend competition to test the skills of malicious hackers fell apart after poor planning by contest organisers and infighting among different hacker groups crippled the Web site responsible for keeping score in the competition.

Rumours of a troublesome new type of trojan program were confirmed last Thursday when two security companies issued alerts about a new threat known variously as "Trojan 55808" and "Stumbler."

The SendMail and Snort security bugs exposed recently brought front and center the unique challenges inherent in producing and applying patches to open source software.

A security vulnerability in one of the most commonly used e-mail server software packages could have a wide ranging impact, akin to the Microsoft SQL Server vulnerability that spawned the recent Slammer worm, according to an advisory published Monday by Internet Security Systems (ISS).

A vulnerability in Solaris puts systems running the Sun Microsystems operating system at risk of being taken over by an attacker, experts warned late Monday.

New vulnerabilities have been discovered in the common Berkeley Internet Name Domain (BIND) domain name system (DNS) software that could allow hackers to carry out denial of service attacks against servers using BIND, according to an advisory issued on Tuesday by security company Internet Security Systems.

As the dust begins to settle on Symantec Corp.'s eye-catching US$350 million cash purchase of three vastly different security vendors, big-name security players suddenly lodged squarely in Symantec's sights have no intention of sitting idly by and already are planning their next move.

The creators of Apache Web Server software said today that all Apache users are potentially affected by security vulnerabilities that were announced yesterday, even as a controversy continues about how the flaws were initially made public.

The CERT Coordination Center has warned that a broad array of network equipment used on the Internet -- including switches, routers, hubs, printers and operating systems -- may be vulnerable to an SNMP-related attack that could cause equipment to fail or allow an attacker to take control of it.

Internet Security Systems (ISS) Monday warned of a serious vulnerability that could leave Unix systems from Sun Microsystems, Hewlett-Packard, IBM, Silicon Graphics Inc. (SGI), Compaq Computer Corp. and Caldera Systems open to attack.