NTA Monitor

Latest News

Will IE6 be the next NT4?

1st October 2009 All penetration testers will remember the long tail of Windows NT 4.0, and how this operating system continued to be used long past the point when security updates stopped at the end of 2004. For many years the presence of an unpatchable NT4 server was a common issue in a penetration test report, and it is only now, almost five years after security support ended, that finding an NT4 system on a network is becoming a rare event. Read More

One in four web applications susceptible to high risk security flaws

7th September 2009 NTA Monitor has reported a 10% increase in the total number of web applications found to have at least one high-risk security issue... Read More

Organisations facing a changing threat landscape

20th July 2009 According to NTA Monitor's 2009 Annual Security Report, the average number of Internet security vulnerabilities is on the rise... Read More

The Return of the Insider Threat

1st July 2009 When NTA started security testing twelve years ago, the main focus was on the insider threat. There were many reports with statistics showing that most security breaches were due to insiders. By contrast there was very little focus on the external threat via Internet and third-party network links. Back then many companies did not even have a firewall. Read More

February 2007

Welcome to February's edition of Internet Security News, the monthly risks bulletin detailing the latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing company. It provides a convenient way to keep up to date with the fast changing world of IT security; this month's edition includes a total of 10 risk issues: 3 High, 2 Medium and 5 Informational .

Cross site scripting Adobe flaw

(High risk) A vulnerability discovered in Adobe Reader 7.0.8 could permit malicious people to inject arbitrary JavaScript into a browser session 1st February 2007 Read More

No MS patches for zero-day Word flaws

(High risk) Microsoft released its January patches and updates, but without supplying one for zero-day flaws that are being actively exploited 1st February 2007 Read More

Oracle patches 51 flaws

(High risk) Oracle has issued patches for 51 vulnerabilities in various Oracle products 1st February 2007 Read More

Fake emails about recent storms circulate virus

(Medium risk) The recent storms experienced in northern Europe have prompted some spammers to circulate a virus called Small.DAM 1st February 2007 Read More

New Opera flaws discovered

(Medium risk) Two flaws recently discovered in Opera can enable malicious users to gain remote system access 1st February 2007 Read More

Google XSS flaw patched

(Informational) Google has patched a cross site scripting flaw that could permit cross site scripting in Google documents and spreadsheets 1st February 2007 Read More

Hackers look forward to the release of Apple's iPhone

(Informational) Shortly after Steve Jobs announced that Apple's newest product would be the iPhone, hackers started to get excited about what they'd be able to do with it 1st February 2007 Read More

Insecure MI5 email subscription service now secure

(Informational) An investigation into MI5's terror alert emails at the beginning of January discovered that they were not secure, with details apparently being sent unencrypted to a US-based server 1st February 2007 Read More

Majority of organisations unaware of WEEE responsibility

(Informational) According to a recent survey, 74% of organisations are unaware of their obligations under the Waste Electrical and Electronic Equipment (WEEE) directive, which was introduced on 1st January this year 1st February 2007 Read More

Spammers masquerade as hitmen to con victims

(Informational) Spam emails have taken a disturbing new turn, with spammers posing as hitmen in order to extract money from victims 1st February 2007 Read More

About NTA Monitor

This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of testing services including:

For more information on the above services please see our services page.