- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
- Vuln: Cisco VPN Client for Windows 'StartServiceCtrlDispatche' Local Denial of Service Vulnerability
- Vuln: HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
- Vuln: PHP Versions Prior to 5.3.1 Multiple Vulnerabilities
- Vuln: KDE KDELibs 'dtoa()' Remote Code Execution Vulnerability
- Vuln: PEAR Sendmail 'From' Parameter Arbitrary Argument Injection Vulnerability
- Vuln: IBM Rational Products Multiple Cross Site Scripting Vulnerabilities
- Vuln: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
Search
Search Result
-
SecuraBit Episode 44 – Dennis Hurst and Movember!
Category: Network Security & Hacking News/Latest Security News
SecuraBit Episode 44 – Guest Interview: Dennis Hurst, Senior Application Security Architect at HP Software Solutions and a founding member of the Cloud Security Alliance Discussion of security and Agile ...Friday, 20 November 2009 -
Cloud Security Front And Center
Category: Network Security & Hacking News/Latest Security News
Cloud computing is the latest trend that has the industry abuzz. Everywhere you go, there are cloud services for every functionality imaginable. Many believe that cloud computing can deliver massive business ...Wednesday, 18 November 2009 -
Government confirms plan to disconnect alleged file-sharers
Category: Network Security & Hacking News/Latest Security News
The Government has confirmed that it will pass legislation allowing for the termination of internet connections used by suspected illegal file-sharers but has not yet said whether the action will be subject ...Wednesday, 18 November 2009 -
Verizon at SANS Incident Detection Summit
Category: Network Security & Hacking News/Latest Security News
The SANS WhatWorks in Incident Detection Summit 2009 will be held on December 9-10 in Washington, D.C. It follows the 2008 and 2009 editions of the SANS WhatWorks in Forensics and Incident Response Summits. ...Wednesday, 18 November 2009 -
Continue Playing
Category: Network Security & Hacking News/Latest Security News
by Jeff Kirsch In “Playing Games”, I shared some lessons that I learned while playing chess with my son. Chess is a rich example of the need for, and challenge of, planning ahead. For those unfamiliar ...Monday, 16 November 2009 -
Component Directory Lockdown – New in Firefox 3.6
Category: Network Security & Hacking News/Global Security News
We hate crashes. When Firefox crashes, we try to get you back on your feet as quickly as possible, but we'd much rather you not crash in the first ...Monday, 16 November 2009 -
Keeping Money Mule Recruiters on a Short Leash
Category: Network Security & Hacking News/Latest Security News
The money mule recruitment syndicate exposed in a previous post (Standardizing the Money Mule Recruitment Process), continues introducing new domains and re-branding the de-facto recruitment templates ...Monday, 16 November 2009 -
Tenable Network Security Podcast - Episode 12
Category: Network Security & Hacking News/Latest Security News
Welcome to the Tenable Network Security Podcast - Episode 12 Announcements A new blog post has been released that covers my experiences scanning Windows 7 with the latest version of Nessus 4.2 (yet to ...Monday, 16 November 2009 -
New Study Provides Real-World Data on Leading Software Security Initiatives in Europe
Category: Network Security & Hacking News/Latest Security News
Fortify Software, the market leader in Software Security Assurance solutions, and Cigital, the largest software security consulting firm in the world, announced today the release of the Building Security ...Monday, 16 November 2009 -
Cyber-Ark Expands Into Superuser Access Control Market
Category: Network Security & Hacking News/Latest Security News
When it comes to managing privileged identities, most enterprises have been forced to invest in separate solutions to manage the lifecycle and access-control policies across all shared and superuser accounts, ...Monday, 16 November 2009 -
Financial Executive Is Keynote Speaker for ISACA’s 2010 EuroCACS Conference in Budapest
Category: Network Security & Hacking News/Latest Security News
ISACA, the not-for profit IT security, governance and assurance association with more than 80,000 members worldwide, has revealed that the keynote speaker for its world-leading European Computer Audit, ...Monday, 16 November 2009 -
FBI/CIA/NSA Information Sharing Before 9/11
Category: Network Security & Hacking News/Latest Security News
It's conventional wisdom that the legal "wall" between intelligence and law enforcement was one of the reasons we failed to prevent 9/11. The 9/11 Comission evaluated that claim, and published a classified ...Thursday, 12 November 2009 -
EU law does not upset UK plan for file-sharer disconnection, says lawyer
Category: Network Security & Hacking News/Latest Security News
British ISPs may be forced to disconnect customers accused of file-sharing without the need for a court hearing, according to a legal expert. Safeguards for internet access that were agreed by MEPs last ...Thursday, 12 November 2009 -
We need to learn more about the RBS Worldpay ATM attack
Category: Network Security & Hacking News/Latest Security News
The size and scope of the RBS Worldpay ATM heist are unprecedented. The perpetrators stole $9M in a matter of hours from 2100 ATMs worldwide. An indictment was handed down on Nov 10, 2009. I am always ...Wednesday, 11 November 2009 -
Get out of Jail, not so free
Category: Network Security & Hacking News/Global Security News
Nearly two years ago the first attempt at creating iPhone malware was seen. That was an attack against jailbroken iPhones. This month, although the shenanigans are still targeting jailbroken iPhones, ...Tuesday, 10 November 2009 -
Cybercrime reality through FBI eyes
Category: Network Security & Hacking News/Latest Security News
Addressing the crowd gathered at the Information Security Forumaposs World Congress in Vancouver on Tuesday, Shawn Henry, FBI Assistant Director of Cybersecurity, shared some stories about recent cybercr... ...Tuesday, 10 November 2009 -
Sun Alert 272489 Security Vulnerability in the OSCAR Protocol Plugin for pidgin(1) may Lead to a Denial of Service (DoS) Condition
Category: Network Security & Hacking News/Global Security News
Product: Solaris 10, OpenSolaris A security vulnerability in the the OSCAR protocol plugin library, the shared library that adds support for various instant messaging networks to the pidgin(1) Instant ...Monday, 09 November 2009 -
Interesting Information Security Bits for 11/09/2009
Category: Network Security & Hacking News/Latest Security News
Good afternoon everybody! I hope your day is going well. Here are today's Interesting Information Security Bits from around the web. Andy poses the question (paraphrased) You get to build a security program ...Monday, 09 November 2009 -
Cenzic and Imperva Unite to Battle Web Application Threats
Category: Network Security & Hacking News/Latest Security News
On this episode of the Imperva Security Podcast - Cenzic CTO - Lars Ewe talks about the state of application security, VA, WAF, and virtual patching. Lars discusses the Imperva Cenzic partnership, and ...Monday, 09 November 2009 -
Laissez-Faire Access Control
Category: Network Security & Hacking News/Latest Security News
Recently I wrote about the difficulty of making role-based access control work, and how reasearch at Dartmouth showed that it was better to let people take the access control they need to do their jobs, ...Sunday, 08 November 2009 -
Koobface Abuses Google Reader Pages
Category: Network Security & Hacking News/Latest Security News
We are seeing another development from the Koobface botnet, this time abusing the Google-owned service Google Reader to spam malicious URLs in social networking sites such as Facebook, MySpace, and Twitter. ...Sunday, 08 November 2009 -
How-to: Cloning a (Laptop) Hard Drive using DD over the network
Category: Network Security & Hacking News/Latest Security News
As hard drives are growing, dying or trying to evade us, the need for cloning disks are growing fast. There are many uses for cloning disks, including: forensics work - you need an exact copy of the drive ...Sunday, 08 November 2009 -
Security 2009 report
Category: Network Security & Hacking News/Latest Security News
As promised, here is a report from the Security 2009 Conference that took place in Oslo in October. The conference had focus on security issues related to the current economic situation, and how to deal ...Friday, 06 November 2009 -
Don't panic over the secret copyright treaty
Category: Network Security & Hacking News/Latest Security News
OPINION: Secret gatherings of the world's governments are usually the stuff of fevered imaginings, but just one such gathering is this week generating its own fair share of paranoia. OPINION: Secret ...Thursday, 05 November 2009 -
NOW LIVE! McAfee Online Support Community
Category: Network Security & Hacking News/Global Security News
The McAfee Online Support Community gives you a way to interact with other McAfee business users to ask questions and share best practices. Additionally, you’ll be able to talk with McAfee professionals ...Wednesday, 04 November 2009 -
Mac malware disguised as game
Category: Network Security & Hacking News/Latest Security News
Symantec shared an uncommon Mac malware type on one of their official blogs: a combination of malware and a game similar to the once popular Space Invaders. They detected the threat as OSX.Loosemaque. ...Wednesday, 04 November 2009 -
Intelligence agency hit by DoS attacks
Category: Network Security & Hacking News/Latest Security News
According to The Local, Sweden is seeing her share of cyber disruptions and attacks this last few days. First a technical error blocked access to hundreds of Swedish websites for half an hour, then t... ...Wednesday, 04 November 2009 -
Tentative Speaker List for SANS Incident Detection Summit
Category: Network Security & Hacking News/Latest Security News
Thanks to everyone who attended the Bejtlich and Bradley Webcast for SANS yesterday. We recorded that Webcast audio is now available) to start a discussion concerning professional incident detection. ...Tuesday, 03 November 2009 -
Get peace of mind during kids’ computer time
Category: Network Security & Hacking News/Latest Security News
We want to keep kids safe online, but as they grow older we also want to respect their privacy. We know that kids are going to use computers for school work and for communicating with their friends, but ...Monday, 02 November 2009 -
Kaspkersky False Positive in gosearch.gif
Category: Network Security & Hacking News/Latest Security News
Kaspersky is detecting gosearch.gif as Trojan.JS.ramif.a. gosearch.gif is a standard magnifying glass icon used in Sharepoint as a search button. I submitted this to Kaspersky and they concur its a false ...Monday, 02 November 2009 -
Your new client security analyst
Category: Network Security & Hacking News/Latest Security News
After seven years, my colleague Natalie Lambert is leaving Forrester. In the year that I have been at Forrester, she has been a good team-mate, sounding board for ideas, gleeful mischief-maker, and collaborator ...Monday, 02 November 2009 -
Facebook spamming practices revealed
Category: Network Security & Hacking News/Latest Security News
Dennis Yu, the CEO of BlitzLocal, was a guest yesterday on TechCrunch, and he shared his thoughts and knowledge about Facebook spamming and advertising. BlitzLocal is an advertising agency that - b... ...Monday, 02 November 2009 -
Good online music services would beat punishment, say file-sharers
Category: Network Security & Hacking News/Latest Security News
The provision of appealing, legal online music services would be a more powerful incentive to stop illegal file-sharing than the proposed cutting off of internet access, copyright-infringing downloaders ...Monday, 02 November 2009 -
Good online music services would beat punishment, say file-sharers
Category: Network Security & Hacking News/Latest Security News
The provision of appealing, legal online music services would be a more powerful incentive to stop illegal file-sharing than the proposed cutting off of internet access, copyright-infringing downloaders ...Monday, 02 November 2009 -
Global security best practices
Category: Network Security & Hacking News/Latest Security News
The latest Microsoft Security Intelligence Report shares security best practices from countries that have consistently exhibited low malware infection. These best practices and security intelligence p... ...Monday, 02 November 2009 -
Announcing Into The Boxes – E-Magazine
Category: Network Security & Hacking News/Latest Security News
I have been a little busy of late. Work, family, and a few side projects have taken up a lot of my time. Good news, however, I am ready to make one of those side projects public. That project is an ...Sunday, 01 November 2009 -
Software Security Initiatives:Maturity Models, Metrics and Business Cases
Category: Network Security & Hacking News/Latest Security News
On November 4, I am going to present at Italy OWASP Day E-Gov 09 OWASP-CONSIP sponsored conference (CONSIP is a company of the Italian Department of Economy and Finance). I will be presenting on the topic ...Sunday, 01 November 2009 -
Risk Driven Security Testing
Category: Network Security & Hacking News/Latest Security News
I presented today at IMI Security Summit on the topic of "Threat Analysis as methodology for deriving risk-based security tests of web application software". The conference gave me the opportunity to evangelize ...Friday, 30 October 2009
