NTA Monitor

Latest News

60% of UK website tests revealed Internet encryption and cross-site scripting vulnerabilities

10th April 2008 60% of web application tests performed for UK organisations showed that their websites contain weak encryption or cross-site scripting (XSS) vulnerabilities Read More

Demilitarised Zone most secure option for BlackBerry device

28th February 2008 Recent BlackBerry testing by IT security consultancy, NTA Monitor, has revealed that organisations are still not configuring these mobile devices correctly Read More

Retailers should put security top of their Christmas list

13th November 2007 With British consumers spending more than £6.6 billion online in the last two months of last year, the 2007 festive season is set to be one of great cheer for online retailers Read More

Businesses warned not to have skeletons in cupboards

13th November 2007 For many organisations, the festive season is an opportunity to heave a corporate sigh of relief and enjoy the brief respite in frenetic business activity as countless people all over the world, go home to celebrate Christmas Read More
Welcome to December's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading Internet security testing company. It provides a convenient way to keep up to date with the fast changing world of Internet security; this month's edition includes a total of 11 risk issues: 4 High, 2 Medium, 0 Low and 5 Informational.

December 2006

Five critical Microsoft flaws

(High risk) Five critical issues and one important issue were addressed in Microsoft's November security bulletin, which affected a variety of products including Internet Explorer and Macromedia Flash Player Read More

Mac OS X flaw

(High risk) A new flaw has been found in Mac OS X that may enable local attackers to escalate user privileges or compromise a vulnerable system Read More

Opera buffer overflow flaw

(High risk) Very long links can cause Opera to crash, meaning that a specially crafted link could be used to execute malicious code on users' PCs Read More

PHP DoS flaws

(High risk) Vulnerabilities recently reported in PHP can be exploited to cause a Denial of Service or compromise a vulnerable system Read More

Mozilla Thunderbird flaws discovered

(Medium risk) Four vulnerabilities have been discovered in Thunderbird 1.5.x that may allow an attacker to bypass certain security restrictions, conduct cross site scripting attacks and potentially compromise a vulnerable system Read More

Sophos DoS vulnerability

(Medium risk) Numerous versions of Sophos Anti-Virus have been affected by an error that arises when processing files compressed with Petite that contain a large number of sections Read More

Financial domain names being resold

(Informational) Some domain names being resold could be used to facilitate credit card or bank account fraud Read More

Google sends out Kama Sutra worm

(Informational) Early in November, Google inadvertantly sent out the Kama Sutra worm to 50,000 Google Video subscribers Read More

Virus writer targeted Wikipedia

(Informational) Wikipedia was recently targeted by a virus writer who uploaded a virus that was designed to collect information for future use in phishing campaigns Read More

New Second Life bug

(Informational) During November, the online world Second Life suffered from a self-replicating grey goo worm planting spinning gold rings around the virtual world Read More

New Second Life bug

(Informational) During November, the online world Second Life suffered from a self-replicating grey goo worm planting spinning gold rings around the virtual world Read More

About NTA Monitor

This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:
  • VPN Testing
  • Onsite Auditing
  • Web Application Test
  • War Dialling
  • Wireless Infrastructure Testing
  • RM Vulnerability Testing
For more information on the above services please see our services page.