Web-application errors pose danger to enterprises
A majority of Web sites have at least one major security issue that could be used by hackers for fraud-related purposes, according to a new survey.
Is Your Web Site Under Attack?
If you have a web site, the answer is undoubtedly "yes". Someone somewhere or, more likely, quite a few someones are attempting to attack your site or the system on which it is running. Assuming hackers have found your site and are testing it for holes that they might crawl through, let's take a look at how you can uncover evidence of their exploits with a quick examination of your web logs.
Hijacked Web sites attack visitors
Here's the scenario: Attackers compromise a major brand's Web site. But instead of stealing customer records, the attacker installs malware that infects the computers of thousands of visitors to the site. The issue goes unnoticed until it's exposed publicly.
Opinion: Why application-layer defenses belong in the applications
Intrusion-detection tools might seem up to the job of stopping SQL injection attacks, but they aren't.
Internet Security: Patch your apps now!
A report from the SANS Institute shows that it is all about unpatched applications, not the underlying operating systems. Most of the observed attacks have come from older, weaker apps and well known Internet vulnerabilities.
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Where Google Chrome security fails: the password
I heard mention that the Chrome OS will have some sort of encryption available a la bitlocker. If it's possible to encrypt personal data using another password or key, then it may have potential for very secure data.... And Ubuntu has an 'encrypt home directory' option, perhaps google should follow suit.
- Dann
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.













Kaspersky Lab's Malaysian Web site hacked
Hacker claims SQL bug on Symantec site
Internet Security: Patch your apps now!
Is Your Web Site Under Attack?
Kaspersky says hacking attack did no damage
Thousands hit in broad Web hack
Web App Firewalls: How to Evaluate, Buy, Implement
Opinion: Why application-layer defenses belong in the applications
Hijacked Web sites attack visitors
Web-application errors pose danger to enterprises