Tech Alert Briefing for 8/3/2007
August 3, 2007
Update covering July 27 - August 2, 2007
Welcome to Tech Talk! In this week's edition of Tech Talk, BOL Guru Jeff Patterson writes about the return of a spam attack on business executives.
Jeff Patterson,
BOL GURUYou'll also learn about:
Get the details below.
Beware of Phishing and Pharming
According to the Anti-Phishing Working Group, phishing attacks reached an all-time high last year. Designed specifically to educate and assist financial institutions, Harland Financial Solutions? Phishing Response Kit provides a detailed checklist and directives to help institutions respond in the event of a phishing scam. Download the complete kit here.
Bank Technology Conference
The Bank Technology Conference at the Foreword Financial Expo will address critical bank technology issues including anti-phishing, cybersecurity, image exchange, VoIP implementation, disaster recovery and more. The event features an Expo Floor with nearly 150 financial services companies. For more information visit Foreword Financial Expo.
Register here for conference discounts or a FREE Exhibits Pass.
Return of the BBB Attack on Execs
SANSreports that a new round of attacks aimed at corporate executives started on July 31st.The spam attacks attempt to trick recipients into clicking on a link to the Better Business Bureau site that allows them to retrieve information about a complaint.The link actually attempts to install malware.
What in the Hack is this Tool For?
SecureWorks presented data at the Black Hat security conference this week indicating that the number of hackers targeting banks worldwide is up 81% from last year.Attacks on credit unions increased 62%.The primary reason for the incredible jump in the number of attackers:easy to use hacking tool kits.Read the full story in InformationWeek.
Firefox Patch Alert
Mozilla released another patch for Firefox this week.CSOOnlineindicates that the patch fixes two serious flaws that allow a browser to launch programs when clicking on a specially crafted link.
New BOL Scams Index
BankersOnline is launching a weekly series of polls, giving bankers the chance to weigh in on topics and issues of importance. To kick off the series, we?ve introduced the BankersOnline Scams Index. We?ll share the results of the poll with all the BOL users, and we?d love to have your input. The poll, located on the BOL home page, will update with each vote throughout the week. Thanks for participating!
Cookie Grabber Allows Account Hijacking
Logging into a variety of websites including MySpace, Yahoo! Mail, Gmail and Hotmail is now much riskier, thanks to a new tool demonstrated at the Black Hat conference.The new tool allows anyone on the network to intercept the session cookie and clone the hijacked account.Security Fixhas additional information.
Have You Called for these Patches?
Apple released patches to fix 48 security flaws in its software including vulnerabilities in OS-X, Safari and the iPhone.iPhone users will need to update the patches via iTunes.Find out more in Security Fix.
B2B ePayments Service
United Kingdom high-street bank Abbey is rolling out the first commercially available electronic payment network.The new e-Invoicing system is designed for medium-sized firms and public sector organizations and promises to improve efficiency and speed up cash flow.Read Computingfor additional information.
93 Make US-CERT Security Gap List
The US-CERT Vulnerability Summary for the Week of July 23, 2007, lists 34 High and 59 Medium severity vulnerabilities. Flaws were listed in Apache Tomcat, the Apple Safari web browser, multiple CA products, Cisco Wireless LAN Controller, Citrix Access Gateway, IBM AIX and WebSphere, Microsoft Internet Explorer, and Panda Anti-Virus, among others.
A Genuine iPhone Giveaway
Get details of BOL Learning Connect's iPhone Giveaway. Have you been holding back, waiting for the first "bleeding edge" patches?Apple has done its part, so now you can do yours. It's not too late to enter!
P.S. from the BOL Team:Have you downloaded the free financial institution phishing attack response kit from Harland Financial Solutions yet?It's excellent!See the link above.
Subscribe to Tech Talk and BOL Tech Advisories.
Archived Articles on Technology and eBankingYou have access to archived Tech Talk pages and Tech Alerts on BankersOnline's Technology & eBanking page.
Plus, you'll find the latest technology and eBanking articles and guru Q&As there, too.You'll find many more related articles in our InfoVault.
print
share