Secure Computing warns of BlackBerry hack threat.

INTERNET BUSINESS NEWS-(C)1995-2006 M2 COMMUNICATIONS LTD LTD 1 Laron-type dwarfism 2 Leukotriene D 3 Long-term depression, see there 4. Long-term disability

Communications security See COMSEC. company Secure Computing For the general concept, see .

Secure Computing Corporation, or SCC, is a public company (NASDAQ: SCUR) that develops and sells computer security products, such as:

Firewalls including Sidewinder, SnapGear and CyberGuard TSP

Corp (Nasdaq:SCUR) warned on Tuesday (8 August) that organizations that have installed their BlackBerry server behind their gateway security devices could be subject to a hacking attack.

Next week, security researcher Jesse D'Aguanno is scheduled to release the code for his BlackBerry hacking program, BBProxy. According to the company, BBProxy can be installed on a BlackBerry or sent as an e-mail attachment. Once installed, BBProxy opens a back channel bypassing the organization's gateway security mechanisms between the hacker and the inside of the victims' network. Since the communications channel between the BlackBerry server and handheld device is encrypted and cannot be inspected by typical security products, very often the administrator opens a tunnel to allow the encrypted communications channel to the BlackBerry server inside the organization's network. A malicious person could potentially use the back channel to remove confidential information undetected or to install malware on the network.

To reduce the threat, the vice president of Strategic Accounts for Secure Computing suggests isolating any Internet facing server like a BlackBerry server or the mail server that is working with the BlackBerry server on its own DMZ (DeMilitarized Zone) A middle ground between an organization's trusted internal network and an untrusted, external network such as the Internet. Also called a "perimeter network," the DMZ is a subnetwork (subnet) that may sit between firewalls or off one leg of a segment; permitting only the connections necessary to facilitate the operation of the BlackBerry; permitting only the connections necessary to facilitate the normal operation of the mail server; not permitting internal users to open arbitrary connections to either the BlackBerry server or mail server.

((Comments on this story may be sent to info@m2.com))

COPYRIGHT 2006 Normans Media Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Comment:	Secure Computing warns of BlackBerry hack threat.
Publication:	Internet Business News
Article Type:	Brief article
Geographic Code:	1USA
Date:	Aug 9, 2006
Words:	254
Previous Article:	LUUP launches mobile donation system for Cystic Fibrosis charity.
Next Article:	Chanel selects FatWire Software for website content management.
Topics:	Computer software industry Planning Product defects and recalls Reports Internet server software Product defects and recalls Software industry Planning Product defects and recalls Reports