Vol 34 01-Dec-11
You're receiving this newsletter because you are a valued contact of Qadit Systems.
Not interested anymore? Unsubscribe. Having trouble viewing this email? View it in your browser.
Qadit SystemsQadit's SecureITy Bulletin
Information is power. Secure IT.

OWASP Top 10 Mobile Risks

OWASP (Open Web Application Security Project) has come up with a top 10 risks for the mobile technology. This list is in the ‘beta’ stage. The list, released on 23rd September 2011, has been under a 60 day review period and is due for a final version release any time. When released, this will be the first official version of OWASP top 10 for mobile applications. Read More.


Internet / Mobile Banking users beware - ZITMO & SPITMO are here !!


Typically a strong online banking authentication relies on generating a Transaction Authorisation number, sending it to the registered mobile number of the internet banking user, and the user will then have to enter the random generated authorisation code into the mobile banking site for the transaction to get authorised. Beware — danger is lurking in this scenario also - in the form of ZITMO & SPITMO. Read more.


Click Jacking - Hijacking The Click


Click jacking is used by an attacker to collect information from user’s clicks. The attacker can do any type of things by launching this type of attack for example taking control of users microphone, webcam, adjusting the user’s computer settings, sending the user to Web sites that might have malicious code. Read More.

In Other News & Views:

Can our Power Supply / Other Utility Systems be hacked?
US Federal authorities are investigating a hack that resulted in the burnout of a water pump at the Curran-Gardner Township Public Water District in Illinois. Read more.

Are you inclined to do Online Shopping?
There are 10 wise tips to safeguard personal information, while shopping online and to prevent threats pose by hackers. Read More.

Tech Terminology Demystified - Duqu Trojan
Duqu is a Remote Access Trojan designed to steal data from computers it infects. Duqu seems to have been designed to steal information from vendors of industrial control systems. Read More.

Forward
Know someone who might be interested in this mail? Kindly forward it.

Unsubscribe
Not interested in receiving this email in the future? Unsubscribe.
Read more interesting news and articles at Qadit's SecureITy blog
For further info contact :
Qadit Systems & Solutions Pvt Ltd,
1st Floor, Balammal Building (above Canara Bank)
33, Burkit Road, T.Nagar, Chennai 600017
Tel: 044-42791150 to 52
Email: security@qadit.com
<> ERP Audits <> ISO 27001 <> GRC <> IT Audits <> Website Security Audits <>
Copyright (C) 2011 . All rights reserved.