NTA Monitor

Latest News

60% of UK website tests revealed Internet encryption and cross-site scripting vulnerabilities

10th April 2008 60% of web application tests performed for UK organisations showed that their websites contain weak encryption or cross-site scripting (XSS) vulnerabilities Read More

Demilitarised Zone most secure option for BlackBerry device

28th February 2008 Recent BlackBerry testing by IT security consultancy, NTA Monitor, has revealed that organisations are still not configuring these mobile devices correctly Read More

Retailers should put security top of their Christmas list

13th November 2007 With British consumers spending more than £6.6 billion online in the last two months of last year, the 2007 festive season is set to be one of great cheer for online retailers Read More

Businesses warned not to have skeletons in cupboards

13th November 2007 For many organisations, the festive season is an opportunity to heave a corporate sigh of relief and enjoy the brief respite in frenetic business activity as countless people all over the world, go home to celebrate Christmas Read More
Welcome to November's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading Internet security testing company. It provides a convenient way to keep up to date with the fast changing world of Internet security; this month's edition includes a total of 10 risk issues: 3 High, 1 Medium, 3 Low and 3 Informational.

November 2006

101 Oracle flaws patched

(High risk) 101 flaws have been found in Oracle's database, application server, E-Business Suite and PeopleSoft and JD Edwards applications Read More

Multiple Firefox flaws found

(High risk) Multiple vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to conduct man-in-the-middle, spoofing and cross-site scripting attacks, and potentially compromise a user's system Read More

New Windows flaws patched

(High risk) Numerous holes are found in Microsoft products as new patches cover 10 issues, six of which are critical Read More

Cache servers holding onto exploit codes

(Medium risk) It has recently been discovered that some cache servers are holding onto exploit code for two weeks after it's been removed from websites Read More

Google releases code search feature

(Low risk) Google has recently released its Beta Code Search, enabling anyone to query a massive database of publicly available source code and filter results based on license and programming language Read More

Thousands of US government machines could be infected by bots

(Low risk) Thousands of US government computers may be under the control of cybercriminals. Security vendor Trend Micro has compiled a list of organisations affected Read More

Fries with your spyware?

(Low risk) McDonald's is recalling Flash mp3 players given away in Japan after discovering up to 10,000 are loaded with a Trojan, and Apple finds a Windows virus on some of its video iPods Read More

British spammer sued by Microsoft

(Informational) A British spammer breaching the terms of Microsoft's Hotmail service has been fined £45,000, which is reportedly the largest civil award against a spammer in Europe Read More

iTunes copy protection code cracked

(Informational) At present, iPod users can only download music from iTunes. Now a hacker claims to have cracked the iTunes security code Read More

Phishing kits for sale

(Informational) Phishing kits are on sale for as little as £16, arming would-be hackers with exploit codes that take advantage of new, or unknown, vulnerabilities Read More

About NTA Monitor

This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:
  • VPN Testing
  • Onsite Auditing
  • Web Application Test
  • War Dialling
  • Wireless Infrastructure Testing
  • RM Vulnerability Testing
For more information on the above services please see our services page.