Despite Economy, Security Spending To Increase In 2009
Jan 05,2009 |
Data protection, identity management to get increasing attention in new year's budgets, Forrester says
SSL Crisis Averted -- For Now
Jan 05,2009 |
VeriSign quickly fixes vulnerable SSL digital certificates at risk of newly revealed hack, but experts say there's no way to know for sure if phony certificates exist from previous attacks
'Curse of Silence' Hack Kills SMS Text Message Delivery
Jan 02,2009 |
Denial-of-service attack uses malicious text message to take down mobile phone in-boxes
Four Threats For '09 That You've Probably Never Heard Of (Or Thought About)
Dec 31,2008 |
What could keep you up at night in the new year may not be what you expect -- a look at some of the lesser-known threats predicted for 2009
New SSL Hack Imperils Secure Websites
Dec 30,2008 |
Potentially deadly silent attack impersonating legitimate digital certificates revealed at hacker confab in Germany
CastleCops Shuts Down
Dec 29,2008 |
After years of fighting the good fight against spammers and phishers, the all-volunteer online community has pulled the plug
HSBC Deploys Authentify's Out-of-Band Authentication System
CA To Acquire Orchestria, Extends Security Management Portfolio
PC Tools: Top Internet Blunders of '08
Webroot Threat Advisory: Hackers Using Continental Flight 1404 Headlines To Scam Online News-Seekers
IronKey's New Anti-Worm Malware Protection Battles AutoRun Worms
IT Confidence Drops To Lowest Level In 2008
Prism Microsystems Adds Smart Search To Security Information and Event Management Solution
Cyber Secure Institute Cuts Through Misleading Security Claims: LynuxWorks and LynxSecure
THE INDEPENDENT
New Powers For Police To Hack Your PC
JANUARY 5, 2009
| British police now can hack people's PCs without a warrant
VNUNET
Microsoft Restructure Rumors Abound
JANUARY 5, 2009
| Microsoft is expected to employ cost-cutting measures in the coming months, including holding off on new hires
DATABREACHES.NET
Pepsi Employee Data On Missing Storage Device
JANUARY 5, 2009
| The Pepsi Bottling Group's payroll department is unable to locate a portable data storage device that contains unencrypted personal information on its U.S. employees
FERGIE'S TECH BLOG
Wyndham Hotel Group Hacked
JANUARY 5, 2009
| The chain is sending letters to customers who stayed in its hotels alerting them to a breach
INTERNATIONAL HERALD TRIBUNE
Beijing Urges Firms To 'Purify' Web From Porn
JANUARY 5, 2009
| Chinese government criticized several Internet companies, including Google
BBC NEWS
Welsh Government Data 'Missing'
JANUARY 5, 2009
| The Welsh Assembly Government says 16 of its documents have been lost or stolen in the past three years
IT BACKBONES
The Year In Mac Security 2008: An Annual Report From Intego
JANUARY 5, 2009
| A look back at the 2008 Mac malware and threats
SANS INTERNET STORM CENTER
JournalSpace Demise Attributed To RAID
JANUARY 5, 2009
| Speculation arises that a malicious insider or software error overwrote JournalSpace's primary and mirror disks containing its database
A look at the 25 most popular stories ever posted on the pages of Dark Reading.
- Five Coolest Hacks of 2007
- Social Engineering, the USB Way
- The World's Biggest Botnets
- New DOS Attack Is a Killer
- The Seven Deadliest Social Networking Hacks
- Antivirus Tools Underperform When Tested in Linux "Fight Club"
- Antivirus Inventor: Security Pros Are Wasting Their Time
- Researchers Find Method to Quickly Erase Hard Drives
- Ten Hot Security Startups
- Eight Vulnerabilities You May Have Misse
- How to Turn Your Browser Into a Weapon
- The Ten Biggest Myths of IT Security
- What to Do When Your Security's Breached
- The Ten Most Dangerous Things Users Do Online
- Social Engineering, the Shopper's Way
- Vint Cerf: Father Knows Best
- Hackers Reveal Vulnerable Websites
- Black Hat Woman
- DailyDave: Full Disclosure
- Teen Hacker Grows Up
- China Makes "Most Successful Cyber Attack Ever" On Pentagon
- TJX Breach Skewers Banks, Customers
- VA Reports Massive Data Theft
- Schneier On Schneier
- Medical IT Contractor Folds After Breaches
Info-Tech Research Group
A specialist in small and medium-sized businesses, Info-Tech offers a different perspective than research houses that focus on the Fortune 1000.
Evil Bytes
BY John H. Sawyer
Browser Privacy Features Leave Users Exposed
January 5, 2009
03:23 PM -- When using "private browsing mode" included in many of the current (and beta) Web browsers, do you know just how well it is working at preventing your Internet browsing from being tracked? What about the protection provided when you hit the button to clear your Web browsing history, cookies, and cached files?
Hacked Off
BY Rob Enderle
Apple Without Jobs: Who Secures A Company's Heart?
December 31, 2008
02:50 PM -- Very often a founder is the heart of a unique, successful company, or in the case of IBM it was actually the son of the founder, Thomas Watson Jr. All the focus this week on the likely departure of Steve Jobs from Apple has me thinking back about one of my very first jobs at Disney shortly after Walt died. In many ways these men embodied more than ...
Dark Dominion
BY Tim Wilson
Yes, Virginia, There Will Be More Attacks
December 24, 2008
09:49 AM -- This is the time of year when the editor of a publication usually issues a warm and fuzzy holiday message that's supposed to make you want to gather around the fire with your family for a group hug.
CS Island
BY Kristen Romonovich
Can You Vote for Me Now? Estonia First Country to Cast Cell Phone Votes
December 16, 2008
03:51 PM -- The Estonian Parliament has passed a law that will allow citizens to vote via cell phone by 2011. In the past, Estonians were able to cast their votes over the Internet, which apparently worked seamlessly despite security concerns. (See Sara Peters' coverage of e-voting in Estonia in the November 2005 Alert,
13th Annual CSI SurveyTargeted attacks, DNS exploits are on the rise, according to the 2008 CSI Computer Crime and Security Survey
MORE
Life Insurer Takes New Approach to Two-Factor Authentication
Cryptocard technology helps Kansas City Life get the handle on a thorny access problem
MORE
Stanford Medical School's Rx: Anomaly Detection
Appliance helps minimize bot, malware infections
MORE
Company: ITT
Location: Fort Wayne, IN
Posting Date: Posted 12/13/2008
MORE INFO
Company: ITT
Location: Fort Wayne, IN
Posting Date: Posted 12/3/2008
MORE INFO
Company: Fres-co System USA
Location: Telford, PA
Posting Date: Posted 12/9/2008
MORE INFO
Company: BP
Location: Houston, TX
Posting Date: Posted 12/12/2008
MORE INFO
Company: Tyco Electronics
Location: Lowell, MA
Posting Date: Posted 12/15/2008
MORE INFO
|
Published:2008-12-22
Severity:Medium
Description:SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
Published:2008-12-22
Severity:Medium
Description:The skype_tool.copy_num method in the Skype extension BETA 2.2.0.95 for Firefox allows remote attackers to write arbitrary data to the clipboard via a string argument.
Published:2008-12-22
Severity:Medium
Description:HTMLTokenizer::scriptHandler in Konqueror in KDE 3.5.9 and 3.5.10 allows remote attackers to cause a denial of service (application crash) via an invalid document.load call that triggers use of a deleted object. NOTE: some of these details are obtained from third party information.
Published:2008-12-22
Severity:Medium
Description:The name service cache daemon (nscd) in Sun Solaris 10 and OpenSolaris snv_50 through snv_104 does not properly check permissions, which allows local users to gain privileges and obtain sensitive information via unspecified vectors.
Published:2008-12-22
Severity:Medium
Description:libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
