Network Security and ISO 27001 / 17799 News
  Create an account
:: Home  ::  Downloads  ::  Your Account  ::  Forums  ::
Login
Nickname

Password

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.
 
Site Navigation
· Home
· Contribute Story!
· Downloads
· Encyclopedia
· Feedback Form
· Forums
· Infosecurity
· Iso17799-FAQ
· Legal
· Maillists
· Newsfeeds
· RFCs
· Search
· Stories Archive
· Surveys
· Top 10
· Topics
· Web Links
· Your_Account
 
User Info
Welcome, Anonymous
Nickname
Password
(Register)
Membership:
Latest: REav
New Today: 0
New Yesterday: 0
Overall: 54703

People Online:
Visitors: 5
Members: 0
Total: 5
 
Who's Online
There are currently, 5 guest(s) and 0 member(s) that are online.

You are Anonymous user. You can register for free by clicking here
 
BS7799 and ISO 17799
The following resources should prove to be good starting points for the standards:

Theory & information:
BS7799 & ISO 27001
Official downloads:
BS7799, ISO 17799, ISO 27001
User group for both:
ISO 17799, ISO 27001

 
Survey
Have security issues stalled VoIP deployments within your company?

Yes
No



Results
Polls

Votes 140
 
Secure Root Vulnerability Assesment Report
Anonymous writes "There is a news confirming the public availability of the announced
vulnerability assesment report by the No
Secure Root Group Security Research .
The report tells the form that a member of the group ( Lorenzo Hernandez
Garcia-Hierro ) used for
compromise the NASA websites using discovered vulnerabilities by
Lorenzo,Lorenzo could accesss
the administration system of NASA websites and then he made a complete
report about it , he was
communicating with NASA staff for solve the security problems that could be
used to compromise
the enterity of the system by sql injections , xss attacks and access to
administrative sections that were
not protected against remote access.
John R. Ray Mgr. of the NASA Competency Center ( Information Technology
Security ) contacted
Lorenzo and hi provided inmediately an access code to a secured part of
NSRG-Security servers netowork
for read the report and patch the systems.
Now the systems are patched and the NSRG-Security made public the report
about the important security holes
found.
Under a restrictive disclaimer it is available at:

Report / Advisory :
http://advisories.nsrg-security.com/Nasa.gov-MV/
Log with NASA communications made between Lorenzo and NASA staff:
http://advisories.nsrg-security.com/Nasa.gov-MV/mail-log.txt
Screen Shots related:
http://advisories.nsrg-security.com/Nasa.gov-MV/screenshots/

The question is , are the websites secured against the next generation of
attacks ?
A new way to compromise systems have been opened, is it the future of the
next generation of hackers ?
"
Posted on Wednesday, October 29 @ 08:52:45 CST by admin
 
Related Links
· More about
· News by admin


Most read story about :
Secure Root Vulnerability Assesment Report

 
Article Rating
Average Score: 4
Votes: 1


Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad

 
Options

 Printer Friendly Printer Friendly

 Send to a Friend Send to a Friend

 
http://www.packetdefense.com. Network security and BS7799 / ISO 17799 / ISO 27001 News
2003 PacketDefense. Network Defense in Depth using ISO 27000
Web site engine's code is Copyright © 2003 by phpnuke dot org. All Rights Reserved. PHP-Nuke is Free Software released under the GNU/GPL.
Page Generation: 0.273 Seconds