The latest news and blog information from testertools.com
In a bid to stave off critcisim over their security policy, Facebook recently held a company meeting to discuss privacy issues.
in what has been described by some as a panic-stricken response to public attacks on how it handles member details, Facebook also announced two new security measures that will keep member accounts and personal information secure.
One way consumers can take responsibility is to use the new Facebook tools that work to keep the bad guys out and keep members aware of any suspicious activity so they can take action to correct it.
“Over the last few weeks, we’ve been testing a new feature that allows you to approve the devices you commonly use to log in and then to be notified whenever your account is accessed from a device you haven’t approved,” explained Lev Popov, a software engineer on Facebook’s site-integrity team. “This feature is now available to everyone.”
The security feature lets users select the option to receive notifications for log-ins from new devices. You can save your home computer, your school or work computer, and your mobile phone, for example. When you do this, Facebook will ask whomever logs into your account from a device that is not on the list to name the device and send you an immediate notification that someone tried to access your account. That notification offers details on how to reset your password and remove the device, in case it was accessed by a cybercriminal.
Facebook also built in a new system to block suspicious log-ins before they happen. When Facebook notices you (or someone who is not you) is trying to access your account from a device not listed in your account security settings, the person will be asked to answer an additional verification question to prove person’s identity as the authentic account holder. After you confirm your identity, you can review recent log-ins and reset your password if you see log-ins you don’t recognize.
“It would definitely appear that Facebook is moving at a very fast pace, perhaps, in many cases, too fast for some of its users,” said Michael Gartenberg, a partner at Altimeter Group. “On the other hand, the market almost demands that type of fast pace, and consumers need to understand the implications of what they are doing online and take responsibility.”
Digg
Del.icio.us
Mixx
Stumble
.Net Testing Tools (7)A/B Testing. (1)Agile Testing (2)Ajax Testing Tools (4)Ant (4)Application Lifecycle Management (1)Automated Testing (67)Automated Testing Framework (30)Benchmarking Tools (11)Browser Based Testing (6)C/C++ Testing Tools (9)Cloud Based Testing Tools (14)Data Comparison (3)Data Generators (8)development tools (11)Eclipse plugins (3)embedded systems (6)Flash Testing Framework (5)Functional Testing (20)GUI Testing (17)HTML (2)Java (21)JavaScript (4)Linux Testing Tools (2)Load testing (11)microsoft (2)Mobile (8)Network Testing (17)New Software (4)Newsletter Archive (1)Oracle Database Test Tools (6)Performance Testing (36)Perl Testing Tools (3)Python Testing Tools (7)Quality Assurance (2)registry repair tools (1)Robotic Testing Tools (1)Ruby Testing Tools (4)Security Testing (25)Site News (3)Social Media (1)SQL Testing Tools (2)Static Analysis (1)TCL Testing Tools (3)Test Documentation Tools (5)Test Enviroment Management (8)Test Harnesses (2)Test Management (53)Tester Tools News (13)Unit Testing (10)Usability Tools (11)VB (3)Web Application Testing (5)Web Testing (26)Welcome (2)
A free utility that you can use to demonstrate SQL injection vulnerabilities in web apps has been released by web security specialists, NT OBJECTives.
NTO SQL Invader is interesting because it isn’t designed to find the vulnerability; instead, the aim is to give you a way to show how the vulnerability could be
According to a report in techworld.com European countries have announced plans to ban hacking and penetration testing tools
Justice Ministers across Europe want to make the creation of “hacking tools” a criminal offence, but critics have hit back at the plans, saying that they are unworkable.
Ministers from all 27 countries of the European Union
According to a report in eweek – A security researcher will reveal at Black Hat DC how he deployed password-testing software on Amazon EC2 to break into a secured wireless network using WPA-PSK.
Titled ‘Amazon EC2 Used to Crack Password Encryption on Wireless Networks’ the hack took only 20 Minutes to complete:
Specialized
SearchSecurity.com have featured an article on a new Penetration Testing Software Release.
Written by Robert Westervelt, Core Security launches CISO-level pen testing software the article dicusses the release of a new tool and its features.
Core Security Technologies is introducing new pen testing software that, according to the company, has robust reporting capabilities, enabling CIOs, CISOs
Veracode is actively recruiting channel partners for a new cloud-based platform that allows partners and users to verify application security independently in both internally developed and third-party software without requiring source code or expensive in-house tools.
The launch of its Global Partner Programme will certify partners to sell its SecurityReview security verification solution delivered as software-as-a-service.
Scalable Network Technologies, Inc. (SNT), the leader in wireless network modeling and simulation, announced that the company has developed a software capability that enables integration of realistic cyber warfare communication effects into a Live Virtual Constructive (LVC) environment. The result is an advanced system that provides more realistic training and
The world’s largest network equipment manufacturer has awarded a major supply contract to Dyaptive Systems for additional 3G/4G subscriber simulation systems over a multi-year period. Dyaptive’s end-to-end solution was selected, after extensive trials and evaluations, to upgrade the primary test beds used to ensure robustness, performance, scale and quality of
Help Net Security have featured a book review on network attacks.
Seven Deadliest Network Attacks written by Stacy Prowell, Rob Kraus and Mike Borkin and published by Syngress, book introduces the reader to the anatomy of attacks aimed at networks: DoS, MiTM, war dialing, penetration testing, protocol tunneling, password replay and spanning tree
Rapid7®, the leading provider of unified vulnerability management and penetration testing solutions, today announced the availability of Metasploit Pro™, the new software for security professionals in enterprises, government agencies and consulting firms who need to make network security testing more efficient to reduce costs. Unlike alternative products, Metasploit Pro improves the efficiency of penetration
Athena Security, the makers of Athena FirePAC, a comprehensive enterprise firewall audit and operations tool, today announced that it will make the company’s Configuration Debugger, the first and only software solution that network engineers can use for offline troubleshooting of service availability issues on Cisco, Check Point and Netscreen firewalls,
Wow this is a great resource.. I’m enjoying it.. good article
Just want to say what a great blog you got here!
I’ve been around for quite a lot of time, but finally decided to show my appreciation of your work!
Thumbs up, and keep it going!
Cheers
Christian, iwspo.net
Couldent have put it any better my self, some points in this article is very accurate.
Just want to say what a great blog you got here!
I’ve been around for quite a lot of time, but finally decided to show my appreciation of your work!
Thumbs up, and keep it going!
Cheers
Just want to say what a great blog you got here!
I’ve been around for quite a lot of time, but finally decided to show my appreciation of your work!
Thumbs up, and keep it going!
Cheers
Christian,Earn Free Vouchers / Cash