Information Security News Page 12

For more information about the site, see the Site Index

SANS: Application threats, website flaws pose biggest security threats
Melissa Hathaway urges more cooperation, government attention to cybersecurity
DNSSEC deployment challenges can be overcome
Trustwave acquires data loss prevention vendor Vericept
Microsoft issues SMB vulnerability advisory, patch pending
Security vendors can learn from ConSentry Networks demise
Microsoft repairs Windows media, TCP/IP vulnerabilities
Attackers target Microsoft IIS; new SMB flaw discovered
Microsoft five critical updates won't include IIS
At VMworld 2009, companies focus on virtual desktops for security
Microsoft issues IIS FTP advisory, exploit code circulates
Unpatched vulnerability discovered in Microsoft SQL Server
Security fundamentals remain focus of virtualization deployments
Skype Trojan records VoIP communications
SSH key compromise shuts down Apache website
Security expert's PCI analysis misguided, says PCI Council GM
Electronic Frontier Foundation calls social networking privacy study alarming
Social network privacy study finds identity link to cookies
IBM finds sharp spike in malicious content on trusted sites
DEFCON survey suggests hacker community on vacation
External attacks start with unintentional mistakes, survey finds
Security technologies fail to address insider threat management
Adobe updates ColdFusion, JRun, Flex
Data breach avoidance begins with security basics, panel says
Hacker charges also an indictment on PCI, expert says
FTC extends breach notification to Web-based health repositories
SQL injection continues to trouble firms, lead to breaches
Marine Corps' Twitter ban example of security paranoia
Three indicted for Hannaford, Heartland data breaches
Patch management study shows IT taking significant risks
Trusteer CEO criticizes Adobe, touts better patch deployments
Microsoft fixes Office Web Components vulnerability, kill-bit bypass
Data has become too distributed to secure, Forrester says
Microsoft Security Essentials (MSE) shows no vision, expert says
Security testing firm uncovers XML vulnerabilities
Report: Rogue pharmacies use Microsoft Bing to sell drugs illegally
Microsoft to address critical vulnerability in Office Web Components
Twitter, Facebook hit by denial-of-service attacks
WatchGuard acquires email and Web security vendor BorderWare
Mozilla shuts down online store after third-party security breach
Q2 2009 data shows IT security certification pay still climbing
Researchers say search, seizure protection may not apply to SaaS data
McAfee to acquire email SaaS vendor MX Logic
New Cisco IOS bugs pose tempting targets, says Black Hat researcher
Machiavelli Mac OS X rootkit unveiled at Black Hat
DoD urges less network anonymity, more PKI use
MMS messaging spoof hack could have global ramifications
Expert: Information security spending often restricts innovation
Panda reports fast-spreading rogueware antivirus fraud rakes in millions
Microsoft kill-bits, browser plug-ins pose big risks, say Black Hat researchers
Kaminsky reveals key flaws in X.509 SSL certificates at Black Hat
IBM acquires Ounce Labs for source code analysis
Microsoft issues emergency Active Template Library updates
Black Hat presenters to showcase smart grid security risks
Network Solutions data security breach exposes a half-million credit card numbers
Microsoft to release emergency bulletins for Visual Studio, IE
Microsoft to issue security report card, new tool at Black Hat
Massive spam campaign hits Yahoo Groups, LiveJournal
Hackers to award most over-hyped bug, epic fail
New hacker skills optimize revenue
Adobe issues security advisory for Flash zero-day flaw
Adobe acknowledges serious Flash zero-day vulnerability
GAO report cites government weaknesses, data leakage
Conficker authors prepping for next stage, researcher says
PCI group releases wireless security guide
Microsoft repairs critical DirectShow, Video ActiveX vulnerabilities
Oracle issues quarterly patches, fixes database flaws
Maturing cybercriminal economy buoyed by business savvy hackers
Mozilla warns of critical Firefox JavaScript vulnerability
SSL certificates used by phishers in hacking toolkits
Microsoft warns of new Office Web Components vulnerability
Cloud-based security services should start private
Adobe patches ColdFusion vulnerability blocking website attack
Latest DDoS attacks extremely unsophisticated, experts say
Microsoft to address DirectShow, ActiveX zero-day flaws
DDoS attacks hit U.S., South Korean government websites
Researchers predict SSNs, crack algorithm putting identities at risk
Researchers to demonstrate new EV SSL man-in-the-middle hacks
Adobe ColdFusion websites being compromised
New attack code targets Microsoft ActiveX zero-day vulnerability
nCircle statistics show rising Web application vulnerabilities
Twitter vulnerability project highlights Bit.ly flaws
Twitter risks, Facebook threats trouble security pros
Juniper pulls ATM hacking presentation from Black Hat
New Trojan stealing FTP credentials, attacking FTP websites
MasterCard increases PCI compliance requirements for some merchants
Cybercriminals exploit Michael Jackson, Farrah Fawcett deaths
Adobe fixes critical Shockwave Flash Player flaw
Kaminsky interview: DNSSEC addresses cross-organizational trust and security
TJX to pay $9.75 million for data breach investigations
Social engineering training could disrupt botnet growth
Cybersecurity czar candidate questions clout of new position
Symantec offers endpoint protection management, monitoring services
Gartner sees better days ahead for security budgets
Virtual appliances boost flexibility, improve security
Botnet platform helps cybercriminals bid for zombie PCs
Security researchers develop browser-based darknet
Database monitoring, encryption vital in tight economy, Forrester says
Month of Twitter Bugs project to document Twitter flaws
Microsoft cracks down on click fraud ring