Security Bytes

January 2008

Information security policies, procedures and guidelines

  • Metasploit gets a facelift

    Leigha Cardwell - TechTarget 29 Jan 2008
  • HD Moore has just released an upgrade for his popular Metasploit attack application, complete with a new Windows interface that will allow more researchers to use it. Moore says in his Metasploit ...

  • ChoicePoint saga comes to a close

    Eric Parizo - Senior Analyst 28 Jan 2008
  • Remember ChoicePoint? Four years ago the data broker kicked off what became a years-long deluge of enterprise data breaches by allowing more than 160,000 customer records to be stolen. It seems ...

  • Look how far we’ve come

    David Schneier - R.I.S.C. Associates 25 Jan 2008
  • Once upon a time, it was fairly simple for security researchers to identify and eliminate phishing sites or sites hosting malware. Most of them were hosted on sketchy domains, often in countries ...

  • Oracle plans 27 security updates Tuesday

    Leigha Cardwell - TechTarget 11 Jan 2008
  • Oracle released an advance bulletin for the Critical Patch Update (CPU) it has planned for Tuesday. If all goes to plan, DBAs are looking at 27 fixes across the database giant's product line. ...

  • Green security?

    Marcia Savage - Editor 10 Jan 2008
  • These days, "green" is being used to market everything from cars and light bulbs to cleaning products. Now security vendors are jumping on the bandwagon to promote their products as good for the ...

  • Former CA security exec Ron Moritz joins Microsoft’s Forefront team

    David Schneier - R.I.S.C. Associates 10 Jan 2008
  • Microsoft, continuing its quest to become the New York Yankees of security by amassing the best free-agent talent available, recently signed up another heavy hitter: Ron Moritz, the former head of ...

  • New MBR rootkit on the loose

    David Schneier - R.I.S.C. Associates 09 Jan 2008
  • The folks at Symantec's Security Response Center have an interesting writeup on a new Trojan making the rounds that installs a MBR rootkit on compromised machines. Known as Trojan.Mebroot, it is ...

  • Security update for VMware ESX Server, VirtualCenter

    Leigha Cardwell - TechTarget 08 Jan 2008
  • VMware has released a hefty security update to address flaws in the VMware ESX Server and VirtualCenter. Attackers could exploit the flaws to perform actions with escalated privileges, cause a ...