NTA Monitor

Latest News

Will IE6 be the next NT4?

1st October 2009 All penetration testers will remember the long tail of Windows NT 4.0, and how this operating system continued to be used long past the point when security updates stopped at the end of 2004. For many years the presence of an unpatchable NT4 server was a common issue in a penetration test report, and it is only now, almost five years after security support ended, that finding an NT4 system on a network is becoming a rare event. Read More

One in four web applications susceptible to high risk security flaws

7th September 2009 NTA Monitor has reported a 10% increase in the total number of web applications found to have at least one high-risk security issue... Read More

Organisations facing a changing threat landscape

20th July 2009 According to NTA Monitor's 2009 Annual Security Report, the average number of Internet security vulnerabilities is on the rise... Read More

The Return of the Insider Threat

1st July 2009 When NTA started security testing twelve years ago, the main focus was on the insider threat. There were many reports with statistics showing that most security breaches were due to insiders. By contrast there was very little focus on the external threat via Internet and third-party network links. Back then many companies did not even have a firewall. Read More

December 2006

Welcome to December's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing company. It provides a convenient way to keep up to date with the fast changing world of IT security; this month's edition includes a total of 11 risk issues: 4 High, 2 Medium and 5 Informational .

Five critical Microsoft flaws

(High risk) Five critical issues and one important issue were addressed in Microsoft's November security bulletin, which affected a variety of products including Internet Explorer and Macromedia Flash Player 1st December 2006 Read More

Mac OS X flaw

(High risk) A new flaw has been found in Mac OS X that may enable local attackers to escalate user privileges or compromise a vulnerable system 1st December 2006 Read More

Opera buffer overflow flaw

(High risk) Very long links can cause Opera to crash, meaning that a specially crafted link could be used to execute malicious code on users' PCs 1st December 2006 Read More

PHP DoS flaws

(High risk) Vulnerabilities recently reported in PHP can be exploited to cause a Denial of Service or compromise a vulnerable system 1st December 2006 Read More

Mozilla Thunderbird flaws discovered

(Medium risk) Four vulnerabilities have been discovered in Thunderbird 1.5.x that may allow an attacker to bypass certain security restrictions, conduct cross site scripting attacks and potentially compromise a vulnerable system 1st December 2006 Read More

Sophos DoS vulnerability

(Medium risk) Numerous versions of Sophos Anti-Virus have been affected by an error that arises when processing files compressed with Petite that contain a large number of sections 1st December 2006 Read More

Financial domain names being resold

(Informational) Some domain names being resold could be used to facilitate credit card or bank account fraud 1st December 2006 Read More

Google sends out Kama Sutra worm

(Informational) Early in November, Google inadvertantly sent out the Kama Sutra worm to 50,000 Google Video subscribers 1st December 2006 Read More

Virus writer targeted Wikipedia

(Informational) Wikipedia was recently targeted by a virus writer who uploaded a virus that was designed to collect information for future use in phishing campaigns 1st December 2006 Read More

New Second Life bug

(Informational) During November, the online world Second Life suffered from a self-replicating grey goo worm planting spinning gold rings around the virtual world 1st December 2006 Read More

New Second Life bug

(Informational) During November, the online world Second Life suffered from a self-replicating grey goo worm planting spinning gold rings around the virtual world 1st December 2006 Read More

About NTA Monitor

This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:

For more information on the above services please see our services page.