Secure Computing warns of BlackBerry hack threat.INTERNET BUSINESS NEWS-(C)1995-2006 M2 COMMUNICATIONS LTD LTD 1 Laron-type dwarfism 2 Leukotriene D 3 Long-term depression, see there 4. Long-term disability
Communications security See COMSEC. company Secure Computing For the general concept, see .
Secure Computing Corporation, or SCC, is a public company (NASDAQ: SCUR) that develops and sells computer security products, such as:
Next week, security researcher Jesse D'Aguanno is scheduled to release the code for his BlackBerry hacking program, BBProxy. According to the company, BBProxy can be installed on a BlackBerry or sent as an e-mail attachment. Once installed, BBProxy opens a back channel bypassing the organization's gateway security mechanisms between the hacker and the inside of the victims' network. Since the communications channel between the BlackBerry server and handheld device is encrypted and cannot be inspected by typical security products, very often the administrator opens a tunnel to allow the encrypted communications channel to the BlackBerry server inside the organization's network. A malicious person could potentially use the back channel to remove confidential information undetected or to install malware on the network.
To reduce the threat, the vice president of Strategic Accounts for Secure Computing suggests isolating any Internet facing server like a BlackBerry server or the mail server that is working with the BlackBerry server on its own DMZ (DeMilitarized Zone) A middle ground between an organization's trusted internal network and an untrusted, external network such as the Internet. Also called a "perimeter network," the DMZ is a subnetwork (subnet) that may sit between firewalls or off one leg of a segment; permitting only the connections necessary to facilitate the operation of the BlackBerry; permitting only the connections necessary to facilitate the normal operation of the mail server; not permitting internal users to open arbitrary connections to either the BlackBerry server or mail server.
((Comments on this story may be sent to email@example.com))