NTA Monitor

Latest News

60% of UK website tests revealed Internet encryption and cross-site scripting vulnerabilities

10th April 2008 60% of web application tests performed for UK organisations showed that their websites contain weak encryption or cross-site scripting (XSS) vulnerabilities Read More

Demilitarised Zone most secure option for BlackBerry device

28th February 2008 Recent BlackBerry testing by IT security consultancy, NTA Monitor, has revealed that organisations are still not configuring these mobile devices correctly Read More

Retailers should put security top of their Christmas list

13th November 2007 With British consumers spending more than £6.6 billion online in the last two months of last year, the 2007 festive season is set to be one of great cheer for online retailers Read More

Businesses warned not to have skeletons in cupboards

13th November 2007 For many organisations, the festive season is an opportunity to heave a corporate sigh of relief and enjoy the brief respite in frenetic business activity as countless people all over the world, go home to celebrate Christmas Read More
Welcome to May's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading Internet security testing company. It provides a convenient way to keep up to date with the fast changing world of Internet security; this month's edition includes a total of 13 risk issues: 6 High, 3 Medium, 0 Low and 4 Informational.

May 2005

The rush now starts to get BSD variants patched, and fast

(High risk) Several high-profile distributors of the BSD version of the Telnet protocol have rolled out patches for a critical bug that could cause system-hijack attacks. Read More

Cisco rushes to patch flaws in key network products

(High risk) Routing and switching giant Cisco Systems has released patches for a pair of denial-of-service and system-access flaws affecting a range of IOS-based devices. Read More

It's more complex than just running the "format" command

(Informational) Tax records, resumes, photo albums - the modern hard drive can keep increasingly larger volumes of information at the ready. But that can turn into a problem when it comes to effectively erasing the devices. Read More

Exploits catch up with Mozilla and Microsoft

(Medium risk) Vulnerabilities in Mozilla and MS products leave the two off guard and without an action plan. Read More

Fake Access Points plague London based Exhibition

(Informational) Hackers infiltrated an IT exhibition that took place in London in April 2005 and attacked delegates' computers with a new type of wireless attack. Read More

Unpatched headache for Microsoft

(Medium risk) Microsoft is investigating the report of a flaw that could open systems using its Access or Office software up to attack. Read More

Two Lotus products have six possible attack vectors

(High risk) IBM's Lotus Software has shipped patches for several high-risk security holes in its popular Notes and Domino product lines. Read More

Monthly patch train brings 18 vulnerabilities with 5 critical updates

(High risk) The Microsoft security train has made its scheduled monthly stop, dropping off eight updates to cover 18 vulnerabilities in a range of widely deployed products. Read More

Databases and operating systems not so different after all

(Informational) Crackers are developing more sophisticated techniques for taking over the control of corporate databases using malicious code akin to malware already common on Unix platforms. Read More

Sober reinvents the 'ugly duckling' scenario

(Medium risk) A new variant of the Sober email worm series is spreading rapidly across the net. Read More

SP2 headaches return to haunt MS with Server patch

(Informational) As was the case with Windows XP Service Pack 2, the latest Windows Server update is breaking applications - Microsoft's and third-parties' alike. Read More

Major TCP flaw affects 3 key players

(High risk) Britain's national emergency response team has announced a software flaw that affects products from Cisco Systems, Juniper Networks and IBM. Read More

Trojan takes on the appearance of MS Windows Update

(High risk) Anti-virus vendors have raised the alarm on a malicious new Trojan masquerading as a critical Microsoft security patch. Read More

About NTA Monitor

This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:
  • VPN Testing
  • Onsite Auditing
  • Web Application Test
  • War Dialling
  • Wireless Infrastructure Testing
  • RM Vulnerability Testing
For more information on the above services please see our services page.