For more information about the site, see the Site Index

• IE patch glitch sends admins in search of workarounds
• Virus spreads on Google's Orkut network
• Storm, Nugache lead dangerous new botnet barrage
• Banks agree to settle lawsuits against TJX
• Critical security patch for Adobe Flash Player
• Microsoft security update causes IE meltdown
• Java flaws haunt Mac OS X
• Apple updates QuickTime to plug serious flaw
• TJX data breach costs could be settled in court appeal
• IBM releases simplified Tivoli Identity Manager
• Inside MSRC: Message Block and queuing patches explored
• Firefox 3 security looks promising, testers say
• Microsoft fixes critical DirectX, Windows and IE flaws
• Top 10 access-related controls for PCI compliance
• Sophisticated spam, employee errors continue unabated
• Security fixes on tap for Windows, IE, DirectX
• Hospital: Vista just what the doctor ordered
• Cisco injects role-based access control into the network
• Grisoft acquires Exploit Prevention Labs for Web 2.0 defenses
• Cyber insurer hopes to boost business with pen testing
• Microsoft warns of Windows zero-day
• Trend Micro enters data loss prevention (DLP) market
• TJX offers $40.9 million breach settlement
• IT pros: SANS Top 20 still useful
• Data breach costs soar
• With data breach costs soaring, companies should review data sharing policies
• Product focus evolves in volatile data loss prevention market
• Webroot adds email security with SaaS acquisition
• IBM Lotus Notes critical flaw affects file viewing
• Mozilla plugs Firefox flaws
• Exploit code targets Apple QuickTime zero-day
• Group releases Java standards for secure development
• Audio codec flaw imperils multiple applications
• Solving the RFID Dilemma
• Experts: Privacy and security officers living in silos
• Cybersquatters, phishers sharpen tactics for holiday season
• Attackers abusing trusted domain names
• Hefty security fix for Apple Mac OS X, Safari
• VeriSign to shed businesses, return to security roots
• Companies share identity management struggles
• Survey finds thousands of database servers open to attack
• Sun acquiring Vaau for identity management
• Inside MSRC: Microsoft tells details about latest security advisories
• Instant Gratification: BIOS-level virtualization
• Watchfire releases scanner update under IBM umbrella
• Microsoft fixes WSUS, releases Windows security updates
• Convio acknowledges security breach
• ISD 2007 Best in Show award winners announced
• Windows admins report WSUS trouble
• CSI 2007: Disclosing a data breach? Not so fast!
• Microsoft to release two Windows security updates
• PCI DSS Council adding new standard for payment applications
• More security education needed to avoid a cybersecurity disaster, experts warn
• CSI 2007: Developers need Web application security assistance
• Microsoft investigates Macrovision flaw
• Don't blame PCI DSS for TJX troubles, IT pros say
• Symantec acquires Vontu for DLP know-how
• Apple releases QuickTime security fix
• IBM to boost security spending, push PCI DSS program
• Exploit code targets Apple Mac OS X
• Symantec, McAfee address security flaws
• Hijacked DNS servers could allow an Internet assault
• Symantec adds intruder identification to database security software
• Cybersecurity commission to set security recommendations for next administration
• Researchers flag Symantec Mail Security flaws
• RealNetworks issues advisory for more critical flaws
• Trend Micro acquires Provilla for data protection
• Mozilla to rush update for Firefox bugs
• Critical Lotus Notes flaws discovered
• Should TJX really be worried about data breach fallout?
• TJX breach compromised more than 94 million accounts
• Proposed legislation would strengthen cybercrime laws
• Tech vendors team up for secure software development
• Microsoft report warns of more data breaches
• Adobe update fixes critical .pdf zero-day
• Experts predict Storm Trojan's reign to continue
• RealPlayer patch released as researchers warn of active attacks
• Mozilla releases Firefox 2.0.0.8 to fix multiple flaws
• Attackers target RealPlayer
• Windows admins feel post-Patch Tuesday pain
• Apple iPhone SDK could increase security threats
• Cisco releases updates for multiple flaws
• Windows Vista UAC an oil slick for energy firm
• Home Depot and Iron Mountain report missing data
• Security update repairs flaw in Opera browser
• New attack methods target Web 2.0, VoIP
• Xerox developing new document encryption technology
• AOL closes AIM attack vector, but risks remain
• Oracle plugs critical database, application holes
• Core Security to offer Web application pen testing
• Seagate pushes hard drive encryption to the data center
• Oracle CPU to contain 51 flaw fixes
• Juniper UAC to deliver Shavlik patch management technology
• Microsoft warns of dangerous Windows URI vulnerability
• With data collection soaring, is it too late to stem the flow?
• Researchers warn of new attack methods against Cisco IOS
• Install Microsoft IE, RPC patches first, experts say
• HP issues advisories, plugs holes
• Inside MSRC: Microsoft SharePoint flaw explained
• How Russia became a malware hornet's nest



• More