Hackers place Cisco Pix firewall source code up for sale
A group called The Source Code Club says it's selling the blueprint for an older version of the popular Cisco Systems Pix firewall for $24,000. As the group says in an online statement: "This release is significant because Pix is vital to the security of many ultra-secure networks." The group specifically boasts code for the Pix 6.3.1 source code, which was replaced in July with 6.3.4. The same group made headlines earlier this year when it tried to sell proprietary code for Enterasys Networks' Dragon intrusion detection system and Napster software. Cisco told a news organization it is aware of the online offer and was investigating its authenticity. The California-based company suffered a source code leak in May, but no one has said if this latest offer from the hackers, previously known as Larry Hobbles, is related.
Wells Fargo customer data again stolen from vendor
For the third time in a year, Wells Fargo & Co. has reported computers containing customer personal data have been stolen from a third-party vendor. This time the $422 billion financial services giant sent letters to thousands of mortgage and student loan customers saying four computers were stolen last month from Atlanta-based Regulus Integrated Solutions LLC, which prints loan statements for a number of big banks. Wells Fargo did not say how many of its 4.9 million mortgage and almost 900,000 student loan customers were at risk. Though no passwords or PINs were on the machines, the stolen computers did hold customer names, addresses, social security numbers and account numbers, according to the Associated Press. A spokeswoman said there were no reports of misuse and that the company was providing its free credit-monitoring service to those who enrolled by March 31, 2005.
Microsoft IE losing marketshare to open-source browser
Though still the biggest browser on the market, Internet Explorer by Microsoft has lost market share in recent months to Firefox, a free browser based on Netscape source code that's being heavily marketed by the open-source community. Firefox boosted its marketshare to 6%, compared to 3.5% in June. Meantime, IE slipped from 95.5% to 92.9% during that same period, according to Reuters news agency. Firefox was developed by programmers at the Mozilla Foundation. The open source community recently drummed up enough donations to take out a full-page ad in the New York Times to publicize Firefox's latest launch. More than 7 million copies have been downloaded to date, according to the Mozilla Foundation Web site.
If it's Wednesday, it must be time for another virus
Apparently, more malicious code hits networks on Wednesdays than any other day of the week, according to a London-based managed Web security provider. ScanSafe also says Exploit.HTML.Mht, which targets a Microsoft Internet Explorer flaw to install a malicious program, was the most popular exploit tool last quarter. Company director Roy Tuvey told ZDNet that the growth rate for exploits overall is rising 15% each quarter. "The first thing exploited are browser vulnerabilities," he said. Among other stats: 21% of viruses attack on a Wednesday, compared to only 6% on weekends. Ten percent of attacks involved Web-based e-mail sites. The company did not provide other details on its Web site, but its research is based on more than a billion Web requests it receives monthly.