Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Opinion

posted in October 2008
<<   <   Page 2 / 2
Symantec Buys MessageLabs: SaaS Security Ready To Rock
Commentary  |  10/9/2008  | 
Symantec snaps up e-mail security services, IM, and Web-filtering company MessageLabs for $695 million. It's a great fit and shows Symantec is (finally) serious about how security software will be delivered in the years to come.
Most Data Breach Problems Caused By Insiders (By A Long Shot!)
Commentary  |  10/9/2008  | 
Your largest data vulnerabilities may be working for you. In fact, according to a new survey the odds are good (very) good, that if your business experiences a data breach it was caused by an employee, either accidentally or maliciously.
Clickjacking: New Cyber Attack Has Eyes On You. Literally
Commentary  |  10/8/2008  | 
Got a Web cam and a microphone? You're just the sort of person the latest thing in cybercrime targeting. It's called clickjacking and it allows the crooks to grab control of your cam and mike, watching you and listening to you, as well as working some scary twists on steering you to malicious sites.
Targeting Primary Storage
Commentary  |  10/8/2008  | 
Primary storage is the next target of optimization. As mentioned in my last entry, the growth rate of active data on this storage is small, what is growing is the older data set which, for now, still remains on primary storage. Optimizing primary storage is the most significant step you can make in reducing not only your storage budget but also your storage's use of power and cooling.
About That Verizon Breach Report
Commentary  |  10/7/2008  | 
I've just interviewed Dr. Peter Tippett from Verizon Business. If you're in the security business, you're probably already aware of the 2008 Data Breach Investigations Report issued in June of this year. The same team has just issued a followup supplement to that report -- Dr. Tippett is one of the contributors to that report.
Obama Slaps McCain While Palin Winks At Biden: Spam Lines Mine Headlines
Commentary  |  10/7/2008  | 
Want to get a handle on the spammers' hottest subj. lines? Check the news -- and if you want to stay safe stick with the news and don't click that Tina Fey Loves Sarah Palin While Rush Limbaugh Watches mail you (and millions of others) may have just received.
Ignoring Vista Entirely Is Shortsighted
Commentary  |  10/6/2008  | 
Maine's skipping Vista, and I'm skipping like a broken record. The government of the state of Maine has joined the burgeoning group of organizations planning to sidestep Windows Vista and go straight from Windows XP to Windows 7. I continue to say that completely ignoring Vista is a shortsighted decision that may cause both usability and security troubles not too far down the l
Your Data Is Not Growing
Commentary  |  10/6/2008  | 
Well, your active data isn't growing, or at least it isn't growing very fast. What is growing is the amount of data that you now hold on to. If you could eliminate that data, your ongoing investment in primary storage would be minimal.
Gmail Account Blockages Show Service Problem With Free Services
Commentary  |  10/6/2008  | 
Forgot or (mistyped) your Gmail password? Be careful how many times you try and fail to get it right. You just might find your account cut off. And then you'll find just how hard it is to get service from the service.
Fed Stiffens ID Theft Penalties, Schwarzenegger Kills California Breach Bill
Commentary  |  10/3/2008  | 
Identity thieves, if a new federal ID theft law is enforced, will now face stiffer federal penalties for their crimes. Federal prosecutors also will have increased leeway to pursue more ID theft cases. Also, for the second time in 12 months, California Gov. Arnold Schwarzenegger vetoed a new California Data Breach Bill. Was that a good idea?
Cookie-Cutter Security Doesn't Work: Report
Commentary  |  10/3/2008  | 
It's all well and good to be concerned about information security and data breaches, but a one-size-fits-all approach may not be the best way to go.
Replications On A Theme - Host-Based Replication
Commentary  |  10/3/2008  | 
Disaster recovery is certainly more than getting the data out of your data center and having it land in a remote facility, but that isn't a bad pace to start. Problem is, there are now 800 different ways to replicate data.
Crook Hires Decoys For Bank Robbery Through Craigslist
Commentary  |  10/2/2008  | 
About a dozen men who answered a job ad on Craigslist discovered too late that their employer was a bank robber who had hired them to assist his getaway by dressing as decoys.
National Cyber Security Awareness Month: Do You Know Where Your Protection Is?
Commentary  |  10/2/2008  | 
October is Cyber Security Awareness Month -- an official name for what every month should be. And, like every month, cyber-monickered or not, this month looks to be a bit worse than last on most security fronts. Raising cyber security awareness is more necessary than ever. Cyber Security Month may not be the way to do it.
Authorities May Know Identity Of Gpcode Author
Commentary  |  10/1/2008  | 
The author of the so-called ransomware virus Gpcode may have made a serious mistake when he or she recently approached Kaspersky Lab to attempt to sell a tool that would decrypt victims' files.
HP Acquires LeftHand Networks - Here We Go Again
Commentary  |  10/1/2008  | 
I had a nice blog planned on host-based replication this morning but then I received an e-mail about Hewlett-Packard's plans to purchase LeftHand Networks and I thought "Here we go again." Good thing I cleaned out my in-box, because I have a feeling this entry might fill it back up again.
<<   <   Page 2 / 2


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Improving Enterprise Cybersecurity With XDR
Enterprises are looking at eXtended Detection and Response technologies to improve their abilities to detect, and respond to, threats. While endpoint detection and response is not new to enterprise security, organizations have to improve network visibility, expand data collection and expand threat hunting capabilites if they want their XDR deployments to succeed. This issue of Tech Insights also includes: a market overview for XDR from Omdia, questions to ask before deploying XDR, and an XDR primer.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-32411
PUBLISHED: 2022-07-01
An issue in the languages config file of HongCMS v3.0 allows attackers to getshell.
CVE-2022-32412
PUBLISHED: 2022-07-01
An issue in the /template/edit component of HongCMS v3.0 allows attackers to getshell.
CVE-2022-34903
PUBLISHED: 2022-07-01
GnuPG through 2.3.6, in unusual situations where an attacker possesses any secret-key information from a victim's keyring and other constraints (e.g., use of GPGME) are met, allows signature forgery via injection into the status line.
CVE-2022-32324
PUBLISHED: 2022-07-01
PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src/pdfalto.cc.
CVE-2022-32325
PUBLISHED: 2022-07-01
JPEGOPTIM v1.4.7 was discovered to contain a segmentation violation which is caused by a READ memory access at jpegoptim.c.