Find network and information security news, reviews and analysis, covering data protection, privacy, endpoint security, and security management.
  • Symantec: Microsoft Access ActiveX attacks will intensify

    Posted July 14, 2008 - 9:40 am

    An easy-to-use toolkit used to hack computers has now been updated to take advantage of an unpatched security vulnerability in Microsoft's software, which could mean attacks will intensify, according to vendor Symantec.
  • iPhone 2.0 includes critical security fixes

    Posted July 13, 2008 - 8:36 pm

    Apple fans who bought their iPhones before Friday's splashy iPhone 3G rollout have a new reason to upgrade their software: It's buggy.
  • Thales buys nCipher for $100 million

    Posted July 11, 2008 - 12:11 pm

    Thales U.K. has reached an agreement to buy cryptographic security vendor nCipher for £50.7 million (US$100.3 million), the two companies announced Friday.
  • No servers, no comment at Financial Times

    Posted July 11, 2008 - 12:07 pm

    The Financial Times web site,, was struggling to cope Thursday after the theft of equipment at a hosting center, which is believed to have been unmanned.
  • Dear Sir or Madam: Lottery scams proliferate

    Posted July 10, 2008 - 5:13 pm

    Tom Ericson, a retired bank employee who lives in Denmark, still can't get over how he lost about €60,000 (US$90,000) in a bogus lottery.
  • Oracle to release 45 security patches Tuesday

    Posted July 10, 2008 - 5:04 pm

    Oracle will release 45 critical security fixes on Tuesday. Among the affected products are Oracle's database; its TimesTen in-memory database; Oracle Application Server; a number of PeopleSoft Enterprise products; Oracle Enterprise Manager Database Control; E-Business Suite; and WebLogic Server, which it acquired by purchasing BEA Systems. There are no new patches for Oracle's J.D. Edwards products.
  • Label That Laptop

    Posted July 10, 2008 - 12:40 pm

    People lose things all the time, including laptops. Thousands are left behind every day, in taxis, restaurants, airports, and everywhere else people go. So if you find a lost laptop in a restaurant, or your cab, how do you get it back to the owner? After all, most people are honest, and want to do the right thing, but how do you return a laptop with no return information?
  • Storm worm exploits US, Iran tensions

    Posted July 10, 2008 - 11:07 am

    The authors of Nuwar -- also known as the Storm worm -- are exploiting the escalating political tensions between the U.S. and Iran to encourage users to download the malware, according to McAfee Avert Labs.
  • Internet bug fix spawns backlash from hackers

    Posted July 10, 2008 - 10:19 am

    Hackers are a skeptical bunch, but that doesn't bother Dan Kaminsky, who got a lot of flack from his colleagues in the security research community after claiming to have discovered a critical bug in the Internet's infrastructure.
  • Senate passes surveillance bill, keeps telecom immunity

    Posted July 9, 2008 - 3:53 pm

    The U.S. Senate has voted to extend a controversial U.S. National Security Agency surveillance program that targeted terrorism suspects as well as U.S. residents, and will likely provide legal immunity to telecommunication carriers that participated in the program.
  • Symantec warns of new Word attack

    Posted July 9, 2008 - 10:14 am

    Criminals have found a new way to attack PC users, taking advantage of what appears to be a new bug in Microsoft's Word software, according to Symantec.
  • The Internet gets a patch, as DNS bug is fixed

    Posted July 8, 2008 - 9:41 pm

    Makers of the software used to connect computers on the Internet collectively released software updates Tuesday to patch a serious bug in one of the Internet's underlying protocols, the Domain Name System (DNS).
  • Microsoft patches security bugs in products

    Posted July 8, 2008 - 4:40 pm

    Microsoft has patched bugs in its Exchange, SQL Server and Windows software that could give hackers new ways to break into computers.
  • MessageLabs secures e-mail backup

    Posted July 8, 2008 - 1:08 pm

    MessageLabs, best known as a provider of e-mail security services, last week introduced a managed e-mail backup service that has as a selling point the same security features built into the company's other products.
  • Failures of Information Security: Observing the World and Asking Why

    Posted July 8, 2008 - 12:30 pm

    Information security matters; it is important. It matters to companies and their shareholders. It is of great importance to the general public, whose personal data is stored by the companies and organizations with which they interact (and by some with which they don’t). We all hope our private files and email correspondence remain secure. The security industry and security professionals are the guardians of that personal information. They seek to frustrate criminals by employing standard ways of working and by deploying security technologies. Unfortunately, these efforts have not always been successful. This chapter delves into some of the most apparent failures of information security.
  • Adware company refines opt-out, notification technology

    Posted July 8, 2008 - 11:32 am

    Facing heat over privacy worries, NebuAd said Tuesday it has a new notification and opt-out system for its targeted advertising system that critics say is invasive and spies on users.
  • Off-network security: From knowing better to doing better

    Posted July 8, 2008 - 10:33 am

    When Redemtech commissioned the Ponemon Institute to study data breaches last summer, they confirmed something we all probably understood: most breaches result from the loss or theft of a data bearing asset, often a laptop. They also confirmed that a large majority of surveyed companies have existing policies to govern the handling of data bearing equipment once it is taken "off the wire," or off-network. Not anticipated was that a majority of companies report doing nothing to measure or govern the effectiveness of those policies.
  • SNMP scans on the rise

    Posted July 8, 2008 - 9:49 am

    There has been a sharp increase in SNMP port scans, according to State of Security a blog run by MicroSolved, a security and penetration testing firm.

  • Microsoft warns of new Access attack

    Posted July 7, 2008 - 3:22 pm

    Cybercriminals are exploiting a bug in software used by Microsoft's Access database program in a new online attack, Microsoft warned Monday.
  • XP SP3 to reach most users 'shortly,' says Microsoft

    Posted July 7, 2008 - 2:00 pm

    Microsoft Monday said that it would begin pushing Windows XP Service Pack 3 (SP3) to most users "shortly."

  • AVG fixes antivirus software skewing Web site statistics

    Posted July 7, 2008 - 11:25 am

    Security company AVG is upgrading a component of its antivirus software so as not to place an undue traffic load on the Web sites it scans.
  • Coreflood, more Microsoft-Yahoo, iPhone plans

    Posted July 4, 2008 - 3:53 pm

    A Trojan horse program that has been around for about six years is now being used to steal system-administrator passwords, including those at banking and brokerage houses, according to security researchers. And it could be that six years from now we'll still be talking about Microsoft's aim to buy Yahoo's search business, which could involve obtaining the entire company and breaking it apart. Meanwhile, early adopters will undoubtedly be out in force on July 11 to be among the first to buy the new iPhone 3G.
  • Google gives away free Web application security scanner

    Posted July 3, 2008 - 9:39 am

    Google has released for free one of its internal tools used for testing the security of Web-based applications.
  • Swedish Data Inspection protects messy apartment dwellers

    Posted July 2, 2008 - 9:57 am

    The Swedish housing corporation Eslvs Bostads AB is not allowed to use log files collected from its electronic key system to keep track of who has made a mess in the common washing machine room, according to the local Data Inspection Board.
  • Microsoft to sell Office 'value pack' for $70 per year

    Posted July 2, 2008 - 9:35 am

    Microsoft has chosen the name "Equipt" for a forthcoming package of products that includes its Office suite, Internet security software and other services, and will sell it for an annual subscription fee of US$69.99.
Join us:






Spotlight on ...
Online Training

    Upgrade your skills and earn higher pay

    Readers to share their best tips for maximizing training dollars and getting the most out self-directed learning. Here’s what they said.


    Learn more

Join today!

See more content
Ask a Question