Computer Press!

 Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.

Every Linux user, after a while, starts creating a toolbox that he/she takes with him/her everywhere. However, that depends on the task at hand. You might need to install a distribution, you might just need a livecd, doing security-related work or just backup. And so the toolbox gets bigger and bigger, thus becoming less and less convenient. The subject of today’s article is NetbootCD. NetbootCD is not a supplement for a live Linux environment, but rather it is designed to help you to install multiple Linux distributions using a single multiboot disk as oppose to requirement of 7 Linux installation disks.

Security experts have demonstrated Facebook Pwn, a Java tool which uses social engineering to obtain personal details of Facebook users that are not publicly accessible.

The tool starts out by setting up a fake account which attempts to befriend all of the target’s contacts. The attacker picks out one of the victim’s friends whose identity he can adopt and the tool steals this friend’s name and profile picture for the fake account. The tool then uses the fake account to submit a friend request to the target – the target is confronted with a familiar name, a copy of their friend’s photo and a list of mutual friends.

Abingdon, UK, 8 September 2011 – More than two-thirds (70 per cent) of companies feel unequipped to effectively prevent and combat IT security threats, according to a survey carried out by Kaspersky Lab[1]. The majority of companies believe they have insufficient personnel, budget and knowledge, or that their systems are not adequately equipped.

When comparing the results throughout Europe, the numbers varied significantly: 82 per cent of French companies felt ill-equipped for IT risk; however the number reduced to 65 per cent for UK companies. Least concerned by a lack of network security resources was Germany, where only 52 per cent admitted concern.

Remote backdoors is ways that are used by hackers to maintain access on the compromised systems.  Types of remote backdoors generally fall into three categories: Network Socket Listener, Trojan, or covert channels.

Here there is an opensource tool that is called CloseTheDoor that can help you to discover and prevent these three categories of backdoor. it is an easy-to-use application that identifies all the listening ports, TCP / UDP over IPv4 / v6 and all the associated program files. This software will help you detect security holes and close backdoors when you want to prevent remote attacks.

Internet users in Pakistan might have a harder time protecting their information — from authority interception and crooks alike — after a ban on virtual private networks (VPNs) takes effect.

The Pakistan Telecommunications Authority sent a legal notice to the country’s ISPs, ordering them to turn in customers who use VPNs, The Guardian reports. According to the notice, anyone who wants to use a VPN needs to ask for special permission.