News & Commentary

Content posted in January 2007
Page 1 / 4   >   >>
Sound the Alarm
News  |  1/31/2007  | 
But how do you do it in a way that's meaningful to computer users of different stripes?
Vendors Prep for Database Security War
News  |  1/31/2007  | 
New products set to roll as enterprises look to safeguard their most sensitive data
Clear as Spam
News  |  1/31/2007  | 
Real-world case of unwanted email makes you wonder if businesses, users are on the same (Web) page
TriGeo 4.0 to Debut at RSA
News  |  1/31/2007  | 
TriGeo announced that TriGeo SIM version 4.0 will extend TriGeo's lead in active response technology
Context Releases Warning
News  |  1/31/2007  | 
False confidence in IT security exposes business to attack, warns Context Information Security
Reveleus Unveils GRC Framework
News  |  1/31/2007  | 
Reveleus unveils the first governance, risk, and compliance framework for the financial services industry
Symantec CEO to Keynote at RSA
News  |  1/31/2007  | 
Symantec announced that John W. Thompson will keynote at the RSAR Conference 2007
Luxair Standardizes on Aventail
News  |  1/30/2007  | 
Luxair standardized on Aventail's award-winning remote access controllers to provide its employees with secure remote access
DeepNines Acquires Captus
News  |  1/30/2007  | 
Deep Nines announced that it has acquired Captus Networks
Sipera Boosts VOIP Security
News  |  1/30/2007  | 
Sipera Systems debuted the Sipera IPCS 410 and the IPCS 510 for the enterprise
Vormetric to Demo CoreGuard 3.2
News  |  1/30/2007  | 
Vormetric will demonstrate CoreGuard 3.2, the latest version of its flagship data security product, at next week's RSA Conference 2007
Outer Limits of IPS
News  |  1/30/2007  | 
Anomaly- and rules-based protections are nice, but they have their limitations
More Thefts From TJX Breach
News  |  1/30/2007  | 
Retail giant out of compliance with PCI security requirements, according to Visa alert
US Military Roadmap: 'Fight the Net'
News  |  1/30/2007  | 
Declassified Defense Department document reveals US military's strategy for using information as a weapon
Shavlik Makes Acquisition
News  |  1/30/2007  | 
Shavlik acquires UpdateExpert from St. Bernard Software
MessageLabs Reports Findings
News  |  1/30/2007  | 
MessageLabs announced the results of its MessageLabs Intelligence Report for January 2007
IBM Reports Survey Results
News  |  1/30/2007  | 
IBM announced the highlights of its 2006 security statistics report
Radware Unveils Security Strategy
News  |  1/30/2007  | 
Radware unveils advanced behavioral security strategy for enterprises and carriers
Security Firms Establish Alliance
News  |  1/30/2007  | 
Eight leading data security companies announced the formation of The Payment Card Industry Security Vendor Alliance - (PCI SVA)
Command Labs, Cryptolex Partner
News  |  1/30/2007  | 
Command Labs announced a development deal with Cryptolex Trust Systems
Symantec, HP Extend Relationship
News  |  1/30/2007  | 
Symantec announced the signing of a multi-year extension to its existing contract with HP, the worldwide PC sales leader
Savant Unveils Hybrid Malware Solution
News  |  1/29/2007  | 
Savant Protection unveils the industry's first hybrid malware solution
Sophos Relocates North American HQ
News  |  1/29/2007  | 
Sophos announced the relocation of its North American headquarters to Burlington
A Free Database Scanner
News  |  1/29/2007  | 
Imperva's new free Scuba database scanner tool dives deep into the database to pinpoint weaknesses
Protegrity Joins PCI Council
News  |  1/29/2007  | 
Protegrity is pleased to announce that the company has been accepted as a participating member of the PCI Security Standards Council
Tizor Announces Mantra V5
News  |  1/29/2007  | 
Tizor Systems announces Mantra V5 with enhanced capabilities for detecting data theft at the source
FBI Faces Fresh Cyber Threats
News  |  1/29/2007  | 
Deputy director talks terrorists and teenagers, warning US firms of new cyber threats
UPEK Delivers Biometric Software
News  |  1/29/2007  | 
UPEK announced the delivery of the first biometric security software solution for the Windows Vista operating system
Postini Releases Report
News  |  1/29/2007  | 
Postini releases annual security and intelligence report
SPI Releases WebInspect 7.0
News  |  1/29/2007  | 
SPI announced the release of WebInspect 7, delivering faster scanning capabilities, broader assessment coverage, and accurate results
QuickTree Adds to XML Security
News  |  1/29/2007  | 
QuickTree, a leading provider of XML Aware Security software has announced the latest release of XSM
ScanSafe Reports Spyware Surge
News  |  1/29/2007  | 
ScanSafe, the leading global provider of Web Security-as-a-Service, issued its Annual Global Threat Report
Symantec Buys Altiris for $830M
News  |  1/29/2007  | 
Security giant plans to take on Microsoft in desktop management, end-point security
EDS Chooses RSA EnVision
News  |  1/29/2007  | 
EDS has been successfully using a suite of RSA solutions
Seven Ways to Be Mistaken for a Spammer
News  |  1/29/2007  | 
How to keep your organization's mail from being caught in the spam filter
SPI Unveils Phoenix Architecture
News  |  1/29/2007  | 
SPI Dynamics announced the company's Phoenix architecture
Diversinet Signs Agreement
News  |  1/29/2007  | 
Diversinet announced it has signed a licensing agreement with BCNEPA for Diversinet's MobiSecure' Wallet and Vault security products
Brasil Telecom Taps Widevine Security
News  |  1/29/2007  | 
Widevine Technologies announced that Brasil Telecom has chosen Widevine to protect its IP video service
NTT Deploys ConSentry NAC
News  |  1/29/2007  | 
ConSentry Networks announced that NTT Data Intellilink is using ConSentry to secure its LAN and control network access
Array Launches v8.80
News  |  1/29/2007  | 
Array Networks announced the availability of its new Version 8.0 SSL VPN software
Bioscrypt, Labcal Team Up
News  |  1/29/2007  | 
Bioscrypt announced that CATSA has selected a handheld rugged biometric reader from Labcal Technologies
Symantec Adds to Board
News  |  1/29/2007  | 
Symantec appoints Frank E. Dangeard to the board of directors
Perimeter eSecurity Gets Message Secure
News  |  1/29/2007  | 
Perimeter eSecurity announced their acquisition of Message Secure
EEye Adds AV to Blink
News  |  1/28/2007  | 
EEye Digital Security incorporates antivirus protection into Blink Professional, its endpoint security product
Is Bharosa Acquisition Bait?
News  |  1/28/2007  | 
Authentication specialist may be for sale, but its CEO is not looking to pair up with another security pure-play
YouTube Simpsons Subpoena Spotlights Copyright Insanity
Commentary  |  1/26/2007  | 
No, this isn't another legal tussle or media mess involving O.J. or Judith Regan. It's a Web copyright battle touched off by that overrated weekly animated series starring Homer and Marge. And, as with most copyright disputes, the online data path leads directly to YouTube.
IBM's 'Need to Know' Software
News  |  1/26/2007  | 
IBM's Idemix application lets consumers do business on the Web without giving away unnecessary personal data
Microsoft's 'Secret' Security Summit
News  |  1/26/2007  | 
Microsoft hosts meeting of security experts, who are plotting to wrest control of the Internet back from the bad guys
Should IT Block iPhone?
News  |  1/26/2007  | 
Developing hardware policies is an important part of the security organization's strategic role
SIM/Net Management Combo on Tap
News  |  1/26/2007  | 
eIQnetworks is about to release a new tool that integrates security and network management info
Page 1 / 4   >   >>


One in Three SOC Analysts Now Job-Hunting
Kelly Jackson Higgins, Executive Editor at Dark Reading,  2/12/2018
Encrypted Attacks Continue to Dog Perimeter Defenses
Ericka Chickowski, Contributing Writer, Dark Reading,  2/14/2018
Can Android for Work Redefine Enterprise Mobile Security?
Satish Shetty, CEO, Codeproof Technologies,  2/13/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: One agent too many was installed on Bob's desktop.
Current Issue
How to Cope with the IT Security Skills Shortage
Most enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.