http://www.itworld.com/taxonomy/term/613/all xx http://www.itworld.com/security/72334/vulnerability-disclosure-it-blackmail-whitemail-or-bluemail Hackers (or security researchers) come with a range of rainbow colored hats. Some guys'n'gals are nice (the White Hats). They find and disclose problems in communication products using approved responsible disclosure models. Others are in the business for money, and are not satisfied by the fame they get for disclosing problems. The process can easily get close to what some would consider unethical, or even direct blackmailing. http://www.itworld.com/security/72334/vulnerability-disclosure-it-blackmail-whitemail-or-bluemail#comments Career Security Software Opinion security research security testing vulnerabilities Thu, 23 Jul 2009 16:25:21 -0400 Ari Takanen 72334 at http://www.itworld.com http://www.itworld.com/security/67214/kilo-day-threat-and-mundane-security In the security business we spend a lot of time worrying about the "zero-day" threat that appears out of nowhere and immediately starts attacking a hereto unknown vulnerability. We worry so much that we overlook the vulnerabilities we already know about. The ones that have been hanging around on our systems, known but unaddressed, unpatched and wide open. http://www.itworld.com/security/67214/kilo-day-threat-and-mundane-security#comments Security Opinion conficker patch vulnerabilities Wed, 29 Apr 2009 16:19:18 -0400 ITworld staff 67214 at http://www.itworld.com http://www.itworld.com/security/66917/windows-bugs-never-really-die Hackers can successfully attack Windows PCs months -- even years -- after Microsoft Corp. fixes a flaw, a security expert said Thursday, because there's always a pool of unpatched systems. http://www.itworld.com/security/66917/windows-bugs-never-really-die#comments Security Windows Analysis patch Qualys vulnerabilities Fri, 24 Apr 2009 10:06:44 -0400 ITworld staff 66917 at http://www.itworld.com http://www.itworld.com/security/66519/black-hat-supertalk-halted-due-vendor-concerns The Black Hat security conference is full of drama again in Amsterdam with the last-minute cancellation of a presentation. http://www.itworld.com/security/66519/black-hat-supertalk-halted-due-vendor-concerns#comments Security News Black Hat exploits vulnerabilities Thu, 16 Apr 2009 13:33:56 -0400 ITworld staff 66519 at http://www.itworld.com http://www.itworld.com/security/65118/firefox-fix-due-next-week-after-attack-published Mozilla developers are scrambling to fix a critical bug in the Firefox browser after attack code was released Wednesday. http://www.itworld.com/security/65118/firefox-fix-due-next-week-after-attack-published#comments Security News Firefox Mozilla patches vulnerabilities Thu, 26 Mar 2009 09:24:27 -0400 ITworld staff 65118 at http://www.itworld.com http://www.itworld.com/security/64770/power-grid-found-susceptible-cyberattack Researchers at IOActive say malicious code could propagate on next generation power meter devices. http://www.itworld.com/security/64770/power-grid-found-susceptible-cyberattack#comments Security News energy exploits vulnerabilities Sat, 21 Mar 2009 21:22:49 -0400 ITworld staff 64770 at http://www.itworld.com http://www.itworld.com/security/63233/adobe-patches-flash-vulnerabilities-three-platforms Adobe has updated its Flash multimedia software to eliminate five flaws affecting Windows, OS X and Linux systems. http://www.itworld.com/security/63233/adobe-patches-flash-vulnerabilities-three-platforms#comments Security Software News Adobe Adobe Flash vulnerabilities Wed, 25 Feb 2009 09:52:01 -0500 ITworld staff 63233 at http://www.itworld.com http://www.itworld.com/security/61389/popular-apps-critical-security-vulnerabilities The software vulnerabilities listed in Bit9's so-called 'Dirty Dozen' don't swoop in wearing a mask and brandishing a gun. They come in surreptitiously hidden in the coattails of popular applications. http://www.itworld.com/security/61389/popular-apps-critical-security-vulnerabilities#comments Security Opinion vulnerabilities Mon, 26 Jan 2009 11:00:49 -0500 ITworld staff 61389 at http://www.itworld.com http://www.itworld.com/operating-systems/55401/apple-patches-months-old-java-bugs Apple patched nearly 30 Java vulnerabilities in Mac OS X Wednesday, months after Sun Microsystems Inc., Java's developer, fixed most of the same flaws for other operating systems. http://www.itworld.com/operating-systems/55401/apple-patches-months-old-java-bugs#comments Operating systems News Apple java Mac OS X vulnerabilities Fri, 26 Sep 2008 11:33:21 -0400 ITworld staff 55401 at http://www.itworld.com http://www.itworld.com/software/54771/reason-behind-vulnerabilities Now something completely unrelated to VoIP: Reason behind all vulnerabilities in software! I read an article that explained how vulnerabilities are basically created by the fact that people tend to drift from good development principles into practices that are just simply Fun. The engineers among us know that software development can be enormously interesting, something you would happily even do in your leisure time. But can fun be converted into reliable software? http://www.itworld.com/software/54771/reason-behind-vulnerabilities#comments Security Software Opinion quality assurance security software testing vulnerabilities Mon, 08 Sep 2008 15:54:15 -0400 Ari Takanen 54771 at http://www.itworld.com