For more information about the site, see the Site Index

• New zero-day attack targets Microsoft Excel
• Dozens of Web sites spread malicious Trojan
• Going Wi-Fi? Go safely
• NAC gains traction
• Web apps remain a trouble spot
• When physical and logical security converge
• VeriSign touts benefits of Extended Validation SSL Certificates
• WebSense: PortAuthority deal, Web 2.0 apps reflect changing threat landscape
• Pitfalls aplenty going SOA
• CISOs mastering 'softer' skills
• Developing an application security mind-set
• Intrusion detection systems are alive and kicking
• Microsoft has high hopes for Vista security
• Vendor alliance wants PCI certification program
• Keynoters speak volumes
• A new awareness for SIMs
• Vista exploitable, researcher says
• Super Bowl stadium Web site hacked, delivered malware
• Microsoft Vista voice trick: More amusement than concern
• Open source ID projects link up with Microsoft
• Patch testing may suffer due to zero-day fears
• New security vendors take on sophisticated attackers
• Group gives government low marks on data protection
• Microsoft disputes Word zero-day report
• Symantec exploitation video hits YouTube
• Symantec unveils 'universal ID system'
• Windows Vista voice command tricked
• Entrust to sell cheaper hardware tokens
• TJX faces lawsuit over data breach
• Symantec acquiring Altiris for $830 million
• Apple fixes Mac Wi-Fi flaw
• IBM tool makes online purchases anonymous
• Storm Trojan was worse than it should have been
• TJX data breach info used to make fraudulent purchases
• Microsoft investigates new Word zero-day
• McAfee: Malware all about ID theft
• Cisco fixes IOS flaws
• Veracode launches on-demand code analysis service
• Apple fixes critical QuickTime flaw
• Cisco fixes MARS flaw
• Storm worm keeps spreading
• ID theft victim to TJX customers: Mind your data
• TJX gets little sympathy from blogosphere
• Did TJX take the right steps after data breach?
• TJX breach: There's no excuse to skip data encryption
• Data breach at TJX could affect millions
• Companies take IM threats seriously
• Fortify Software to acquire Secure Software
• Oracle releases 51 security fixes
• SonicWALL's SSL VPN appliance is a winner
• Apere's IMAG 500 a tough sell
• PatchLink offers solid flaw management
• WatchGuard offers 'excellent' UTM product
• Core Security offers powerful testing tool
• Who patches better: Microsoft or Mozilla?
• CA fixes multiple flaws in back-up product
• 'Month-of' flaw projects come under fire
• Oracle emulates Microsoft with advance patch notice
• Sophos acquires Endforce to add NAC
• Out-of-cycle Microsoft patch likely, experts say
• Abobe fixes critical flaws
• Critical Apple flaw discovered in Mac OS X
• Federal government pushes full disk encryption
• More users increase risk for Volkswagen AG
• Remote flaw in Vista could earn finder $8,000
• Critical fixes for Excel, Outlook and Windows
• Attackers hide malicious code using new method
• Inside MSRC: Microsoft updates WSUSSCAN issue
• New flaw found in Microsoft Excel
• Microsoft nixes four patch bulletins
• Bug Briefs: OpenOffice vulnerable to attack
• Adobe Reader users urged to upgrade
• Outlook 2007: Image spam, mobile malware rising
• Information security market 2006 year in review
• Cisco bolsters security with IronPort buy
• Cisco software vulnerable to attack
• Adobe Reader flaws spook security experts
• Multiple Windows patches on tap next week
• Security pros grumble over spam increase
• Apple QuickTime flaw could enable botnets
• Security pros glean insight from '06
• Looking back at information security in 2006
• Skype Trojan: Much ado about nothing?
• Microsoft investigates Windows Vista flaw
• Microsoft releases Vista APIs to security vendors
• Mozilla issues fixes for Firefox, SeaMonkey and Thunderbird
• Websense acquiring PortAuthority Technologies
• Check Point gets big IDS boost from NFR deal
• Report: Spam, phishing attacks growing more sophisticated
• Check Point to acquire NFR Security
• Criminals find safety in cyberspace
• Employers to seek more security talent in '07
• Review: Deep Security is a solid IPS
• Schneier: Data breach at UCLA barely newsworthy
• Review: Prevx1 not ready for prime time
• Review: Reconnex's iGuard needs improvements
• Third zero-day found in Microsoft Word
• Review: Lancope StealthWatch 5.5 offers more than IDS
• Review: Sky's the limit with Skybox View 3.0
• PatchGuard hurts host-based IPS, vendor says



• More