Dark Reading
Protect The Business - Enable Access
Do more than just cursory scans. Develop
a holistic approach to app security.
Find out how!
Learn to take the ambiguity out of managing IT so you can guide your business forward.
Download now!
Use these tips from Gartner to identify the EPP solution that best suits your business.
Download now!
Most Recent | 1
Around The Web
USA TODAY
Top Secret Visa Data Center Banks On Security, Even Has Moat
In an era when mobile purchases on smartphones and tablets are expected to grow 73% to $11.6 billion in the U.S. this year, securing the data center behind the cloud is important. Visa's Operations Center East is home to 130 workers, who are entrusted with the arduous task of keeping hackers out and the network up
INFOWORLD
Amid Doubts About Cloud File-Sharing Services, Enterprises Operate Their Own
Organizations with sensitive data say they're reluctant to turn it over to cloud services. Instead, they're buying file-sharing products they manage on their own for bulk file transfers among business partners
EWEEK
Saas Revenue To Reach $14.5 Billion In 2012: Gartner
Worldwide software as a service revenue is forecast to reach $14.5 billion in 2012, a 17.9 percent increase from 2011 revenue of $12.3 billion, according to a new report from IT analytics firm Gartner
INFOWORLD
Google Boosts Security Of Hosted Developer Services
Google has beefed up the security of its cloud hosted services for developers by making several of them able to authenticate interactions with applications using certificate-based Service Accounts
CIO.COM
In The Cloud, Your Data Can Get Caught Up In Legal Actions
We all know that the data we rely on to run our businesses can be subject to subpoena and other government actions. Such actions create additional risks when that data is in the cloud
NETWORK WORLD
5 Signs That You've Lost Control Over Your Cloud Apps
Password proliferation and orphan accounts show cloud apps are out of compliance with corporate security policies, as CIOs wake up to the reality that they've lost control over access to data stored in software-as-a-service applications purchased by other departments
THREAT POST
Cloud Service Linode Hacked, Bitcoin Accounts Emptied
Linux cloud provider Linode has warned customers that hackers breached a Web-based customer service portal used by the company and emptied the Bitcoin accounts of eight customers
CIO.COM
How Secure Is The Cloud? It Pros Speak Up
The cloud promises reduced costs and increased flexibility, but it also raises security concerns. Most IT professionals cite cloud security as a high priority, but a whopping 82 percent also trust it enough to use it
COMPUTERWORLD
Five Cloud Security Trends For 2011
Mobile technology leads the list, experts say
Virtela
Expert Debunks Cloud Security Concerns
Data stored in the cloud is no less safe than data stored in the data center, report states
MSP MENTOR
Where Managed Services Providers Fit In The Cloud Security Conversation
Enterprises? move to the cloud opens up new opportunities for MSPs
GOVERNMENT COMPUTER NEWS
Four Reasons The Cloud Is Safer Than You Thought
Popular views on cloud security don?t always tell the whole story, experts say
COMPUTER WEEKLY
What?s Holding Up The Cloud?
Top experts discuss why small and midsize businesses still aren?t jumping on the cloud bandwagon
INFOWORLD
Intel Targeting Cloud Security With McAfee Technology
Intel hopes to offer hardware- and software-based cloud security services
FIERCE CIO
Epsilon Breach Reignites Cloud Security Fears
Companies may be reluctant to share data with service providers, experts say
BLOOMBERG
IBM Seeks To Make Cloud Computing More Palatable To Businesses
SmartCloud service is designed with security in mind, Big Blue says
Best Of Web Archive:
Most Recent | 1
What A DDoS Can Cost
Network Security Technology Evolving Rapidly, Forrester Says
UNC Charlotte Breach Affected More Than 350,000
MORE KEYHOLE
Published:2010-11-03
Severity:High
Description:Stack-based buffer overflow in SonicWALL SSL-VPN End-Point Interrogator/Installer ActiveX control (Aventail.EPInstaller) before 10.5.2 and 10.0.5 hotfix 3 allows remote attackers to execute arbitrary code via long (1) CabURL and (2) Location arguments to the Install3rdPartyComponent method.
Published:2010-11-03
Severity:High
Description:Untrusted search path vulnerability in VIM Development Group GVim before 7.3.034, and possibly other versions before 7.3.46, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse User32.dll or other DLL that is located in the same folder as a .TXT file. NOTE: some of these details are obtained from third party information.
Published:2010-11-03
Severity:Medium
Description:Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.
Published:2010-11-03
Severity:High
Description:Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Published:2010-11-03
Severity:Medium
Description:SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the xthedateformat parameter in a register action, a different vector than CVE-2005-2989, CVE-2006-2503, and CVE-2009-1033.
|
