For more information about the site, see the Site Index

• Adobe issues patch to block zero-day flaw
• Microsoft patches critical Windows kernel flaw
• Apple iPhone app could boost two-factor
• Inside MSRC: Microsoft updates DNS, kernel
• Microsoft to patch critical Windows vulnerabilities
• PCI QSA assurance program penalizes assessors
• Mozilla repairs URL spoofing, memory corruption flaws in Firefox
• PCI Council issues priority tool for compliance
• Cisco brings email security appliances closer to SaaS
• Cisco offers more email security choices, but lacks vision
• HIPAA changes force healthcare to improve data flow
• Conficker worm targets Southwest Airlines
• VM servers affected by Intel TXT exploit method
• Conficker botnet ready to be split, sold
• Adobe updates Flash Player to fix clickjacking, buffer overflow flaws
• Attackers target Microsoft Excel zero-day flaw
• Sourcefire issues Adobe zero-day patch to block attacks
• Microsoft Conficker worm offers attack prevention lesson
• Laid off workers likely to steal company data, survey warns
• Group identifies top 20 security controls to thwart cyberattacks
• Hacker sentenced for stealing millions from U.S. credit cards
• Attackers target new Adobe zero-day flaw
• Smartphone security lacking at many businesses
• New hacking method stealthily attacks Macs with malware
• SMS mobile worm attacks Symbian smartphones
• CVS pays $2.25 million HIPAA violation settlement
• Intel Trusted Execution Technology is flawed, Black Hat researchers show
• SSLstrip hacking tool bypasses SSL to trick users, steal passwords
• Trustwave acquires NAC appliance vendor Mirage Networks
• Firms show DLP interest to monitor social networking traffic, survey finds
• Virtualization security moves to the fore in 2009
• Virtualization challenges traditional security concepts
• Four ways to prioritize security programs in bad economy
• Kaspersky website hacked multiple times, expert says
• Massachusetts data protection, encryption law extended
• Finjan, Citrix highlight different gateway approaches
• Coalition forms to battle Microsoft worm attack, $250K reward offered
• Microsoft offers $250K bounty for Conficker writer
• BlackBerry maker to acquire encryption firm
• F-Secure latest security vendor hacked
• RIM warns of serious vulnerability in BlackBerry Web loader
• Report offers security strategy tips to overcome funding problems
• Microsoft fixes critical IE 7, Exchange flaws
• Inside MSRC: Microsoft foldout explains IE, Exchange patches
• Kaspersky website hacked, customer activation codes exposed
• Finjan adds DLP, content caching to Web security gateway
• SQL injection attacks targeting Flash, JavaScript errors
• OpenDNS to step up fight against Conficker worm
• Microsoft to patch serious IE, Exchange Server flaws
• Cisco corrects serious Wireless LAN flaws
• Heartland breach highlights PCI limitations
• Fuzzing tool helps Oracle DBAs defend against SQL injection
• Firefox version 3.0.6 update fixes dangerous flaws
• Encrypt now to meet new Mass. data protection law
• Data breach costs rise as firms brace for next loss
• Malware engine breaks Google search results
• Security skills pay increases despite economic downturn
• VA could pay veterans $20 million for security breach
• Sensitive data insecure abroad, McAfee report finds
• First lawsuit filed in Heartland data security breach
• Symantec CEO Thompson could be next commerce chief
• Microsoft Conficker worm hits peak, but payload awaits
• Educators see secure coding training challenges, improvements
• Barracuda Networks expands backup service with acquisition
• Websense acquires Web 2.0 antispam platform Defensio
• Archer Technologies buys IT GRC competitor Brabeion Software
• IPv6 move could cause network problems, threaten cybersecurity
• Monster.com discloses database breach
• Apple fixes critical QuickTime flaws
• Retailers boost data collection, but data privacy issues persist
• Shavlik apologizes for hyped Microsoft patch analysis
• Payments processor discloses massive data breach
• 2009 spam outlook: After McColo, attackers exploit alternative methods
• New York drafts language demanding secure code
• Oracle patches dangerous WebLogic, Secure Backup vulnerabilities
• AVG acquires HIPS vendor Sana Security
• RIM fixes serious BlackBerry PDF handling flaws
• Microsoft updates critical SMB server flaws
• Inside the MSRC: Microsoft describes Server Message Block update
• Security experts identify 25 dangerous coding errors
• Oracle to release 41 security fixes
• TJX suspect convicted in Turkish court
• Microsoft RPC worm spreads in corporate networks
• Phishing scams for money? Don't bet on it
• Microsoft to issue critical Windows patch
• Trend Micro gets more competitive with BigFix deal
• SAP issues update to correct critical ActiveX flaw
• CA steers DLP towards access, identity management
• Twitter tries to shore up security in wake of hack attack
• CA to acquire Orchestria for DLP
• VeriSign addresses MD5 flaw
• Rogue digital certificates strike blow to Internet security
• Open source security concerns can trump cost savings
• Top 5 cybersecurity news stories of 2008
• Microsoft Windows XML flaw exploits test desktop antimalware
• Microsoft warns of SQL Server zero-day
• Check Point to acquire Nokia security appliance business
• Adobe issues warning for Linux users
• Mozilla fixes cross-site-scripting flaws
• Microsoft issues emergency patch to fix IE flaw



• More