For more information about the site, see the Site Index

• Inside MSRC: Message Block and queuing patches explored
• Microsoft fixes critical DirectX, Windows and IE flaws
• Firefox 3 security looks promising, testers say
• Top 10 access-related controls for PCI compliance
• Security fixes on tap for Windows, IE, DirectX
• Sophisticated spam, employee errors continue unabated
• Hospital: Vista just what the doctor ordered
• Grisoft acquires Exploit Prevention Labs for Web 2.0 defenses
• Cisco injects role-based access control into the network
• Microsoft warns of Windows zero-day
• Cyber insurer hopes to boost business with pen testing
• TJX offers $40.9 million breach settlement
• IT pros: SANS Top 20 still useful
• Trend Micro enters data loss prevention (DLP) market
• With data breach costs soaring, companies should review data sharing policies
• Data breach costs soar
• Product focus evolves in volatile data loss prevention market
• Webroot adds email security with SaaS acquisition
• IBM Lotus Notes critical flaw affects file viewing
• Mozilla plugs Firefox flaws
• Exploit code targets Apple QuickTime zero-day
• Audio codec flaw imperils multiple applications
• Solving the RFID Dilemma
• Experts: Privacy and security officers living in silos
• Group releases Java standards for secure development
• Cybersquatters, phishers sharpen tactics for holiday season
• Attackers abusing trusted domain names
• Hefty security fix for Apple Mac OS X, Safari
• Survey finds thousands of database servers open to attack
• Companies share identity management struggles
• VeriSign to shed businesses, return to security roots
• Instant Gratification: BIOS-level virtualization
• Watchfire releases scanner update under IBM umbrella
• Sun acquiring Vaau for identity management
• Microsoft fixes WSUS, releases Windows security updates
• Inside MSRC: Microsoft tells details about latest security advisories
• Convio acknowledges security breach
• Windows admins report WSUS trouble
• ISD 2007 Best in Show award winners announced
• CSI 2007: Disclosing a data breach? Not so fast!
• Microsoft to release two Windows security updates
• PCI DSS Council adding new standard for payment applications
• More security education needed to avoid a cybersecurity disaster, experts warn
• Microsoft investigates Macrovision flaw
• CSI 2007: Developers need Web application security assistance
• Don't blame PCI DSS for TJX troubles, IT pros say
• Symantec acquires Vontu for DLP know-how
• Apple releases QuickTime security fix
• Exploit code targets Apple Mac OS X
• IBM to boost security spending, push PCI DSS program
• Hijacked DNS servers could allow an Internet assault
• Symantec, McAfee address security flaws
• Symantec adds intruder identification to database security software
• Cybersecurity commission to set security recommendations for next administration
• Researchers flag Symantec Mail Security flaws
• RealNetworks issues advisory for more critical flaws
• Mozilla to rush update for Firefox bugs
• Trend Micro acquires Provilla for data protection
• Critical Lotus Notes flaws discovered
• Should TJX really be worried about data breach fallout?
• TJX breach compromised more than 94 million accounts
• Microsoft report warns of more data breaches
• Tech vendors team up for secure software development
• Proposed legislation would strengthen cybercrime laws
• Adobe update fixes critical .pdf zero-day
• Experts predict Storm Trojan's reign to continue
• RealPlayer patch released as researchers warn of active attacks
• Windows admins feel post-Patch Tuesday pain
• Mozilla releases Firefox 2.0.0.8 to fix multiple flaws
• Attackers target RealPlayer
• Windows Vista UAC an oil slick for energy firm
• Apple iPhone SDK could increase security threats
• Cisco releases updates for multiple flaws
• New attack methods target Web 2.0, VoIP
• Security update repairs flaw in Opera browser
• Home Depot and Iron Mountain report missing data
• AOL closes AIM attack vector, but risks remain
• Core Security to offer Web application pen testing
• Xerox developing new document encryption technology
• Oracle plugs critical database, application holes
• Seagate pushes hard drive encryption to the data center
• Oracle CPU to contain 51 flaw fixes
• Microsoft warns of dangerous Windows URI vulnerability
• Juniper UAC to deliver Shavlik patch management technology
• With data collection soaring, is it too late to stem the flow?
• HP issues advisories, plugs holes
• Researchers warn of new attack methods against Cisco IOS
• Install Microsoft IE, RPC patches first, experts say
• How Russia became a malware hornet's nest
• McAfee acquires SafeBoot for endpoint encryption
• Inside MSRC: Microsoft SharePoint flaw explained
• Microsoft releases security updates for IE, Word
• Industry group uses awareness month to lobby for data breach laws
• Adobe offers workaround for Acrobat-Reader flaw
• UK group pushes for stiff data security breach laws
• Yahoo launches email tool to identify eBay, PayPal phishing
• Microsoft to release four critical security updates
• Apple patches persistent QuickTime flaw
• Code Green pitches data protection for SMBs
• Gap security breach exposes data on 800,000



• More