Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > April 2006 > New NISCC Technical Notes, General Advice documentation, and NISCC Monthly Bulletin

April 2006

New NISCC Technical Notes, General Advice documentation, and NISCC Monthly Bulletin

ID: 00318
Ref: 313
Date: 27 April 2006:15:20:27
Version: 1
Title: New NISCC Technical Notes, General Advice documentation, and NISCC Monthly Bulletin
Abstract:
Vendors affected: Various
NISCC Technical Notes:

1. Egress and Ingress Filtering
Technical Note Id. 00294, 20 April 2006, (TN0106)
This NISCC Technical Note supplements NISCC Technical Note 10/04, #Understanding Firewalls#.
Its purpose is to assist those thinking about implementing or changing packet filtering
devices at their network boundaries.
URL: http://www.niscc.gov.uk/niscc/docs/re-20060420-00294.pdf?lang=en

2. Security considerations of IPv6
Technical Note Id. 00307, 24 April 2006, (TN0206)
IPv6 is an extremely complicated protocol suite, with a large number of Internet RFCs linked
to it, and as such there are many different areas which have security implications. This
document attempts to summarise current thoughts on the security of IPv6 and linked protocols and technologies.
URL: http://www.niscc.gov.uk/niscc/docs/re-20060424-00307.pdf?lang=en


General Advice:

1. Secure web applications. This document aims to provide insight into the secure development and installation of web applications by exposing the pitfalls of web application design and addressing how to stop future attackers.
URL: http://www.uniras.gov.uk/niscc/docs/secureWebApps.pdf


NISCC Monthly Bulletin Contents:

Threats & Attacks
1. Israel jails spyware-for-hire couple
2. US man faces IRC Trojan charges
3. Phishing fraudsters offer cash reward
4. Kits help phishing sites proliferate
5. AOL files suit against suspected phishers
6. Zombie PCs menace mankind

CIIP, Legal & International Issues
7. Tougher hacking laws get support
8. UK companies failing to manage application
9. Viruses plague British businesses
10. Banks told to adopt stronger authentication
11. Banks strike back at ID cheats
12. Banks set up text and email fraud alerts
13. US government failing on cybersecurity
14. Security flaws could cripple missile defence
15. Internet blows CIA agents# cover
16. Enterprises: cybercrime costs us dear
17. China creates own Internet domains
18. Korea to fight web attacks from China

Viruses, Vulnerabilities & Incidents
19. DNS recursion leads to nastier DoS attacks
20. Open source players unite for patch testing
21. Trojan targets basic Java phones

URL: http://www.niscc.gov.uk/niscc/docs/re-20060331-00306.pdf?lang=en
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |