News & Commentary

Content posted in May 2007
Page 1 / 5   >   >>
Why Catching The 'Spam King' Won't Save Your In-Box
Commentary  |  5/31/2007  | 
Even if a judge and jury lock up Robert Alan Soloway for the rest of his natural born life, your in-box will still be inundated with tons of offers for HGH, porn, and penny stocks.
Guerrilla Storage
News  |  5/31/2007  | 
Hackers could use your computers to house their data, Symantec researchers say
Spamless in Seattle
News  |  5/31/2007  | 
My spam filter didn't get the memo
Beware of the Quiet Ones
News  |  5/31/2007  | 
Vulnerability report for '06 shows XSS still number one, but lesser-known bugs making inroads
Compromised Site Causes Trouble
News  |  5/31/2007  | 
Malicious Java Script makes user's browser download, execute Trojan
How to Stop Political Attacks
News  |  5/30/2007  | 
Experts advise users on how to defend themselves against cyber-terrorism, cyber wars, and hacktivism
BeCrypt to Talk Securing Workers
News  |  5/30/2007  | 
BeCrypt will be debuting its latest product Trusted Client in the US at the Gartner IT Security Summit
Monty Python's Flying Backup
News  |  5/30/2007  | 
If all vendors' presentations were this funny, we'd invite them over more often
Finjan CTO to List Web Threats
News  |  5/30/2007  | 
Finjan CTO to list latest Web threats at Gartner IT Security Summit
UPMC Taps TriCipher
News  |  5/30/2007  | 
Medical center taps TriCipher to protect patient health information
CDW Readies for Buyout
News  |  5/30/2007  | 
Tentative agreement to sell out to private equity firm will open 30-day bidding process
Securify Adds Identity-Based Discovery
News  |  5/30/2007  | 
Securify announced general availability of the next version of its identity-aware monitoring solution
AppGate Supports Windows Mobile 6
News  |  5/30/2007  | 
AppGate provides a truly mobile solution that enables users of mobile devices to securely access all resources inside an internal network
Bug Disclosures Decline
News  |  5/30/2007  | 
The rate of vulnerabilities disclosed publicly has dropped drastically so far this year, but don't exhale yet
SecureMac Rolls Anti-Spyware Tool
News  |  5/30/2007  | 
SecureMac released MacScan 2.4.1, the latest version of the company's industry leading anti-spyware package for Macintosh computers
Data Security: You're Not Learning From Others' Mistakes
Commentary  |  5/29/2007  | 
As I was catching up on some e-mail last night, I came across a message that's become all too familiar to me. It was textbook: A company was apologizing that one of its laptops had been stolen and that the laptop contained customer account and credit card information. A real yawner, until I considered that this e-mail was delivered to my personal e-mail account and that it was my customer account and credit card info that may have been compromised. Companies just aren't getting the messag
TSCP Chooses CertiPath
News  |  5/29/2007  | 
TSCP selects CertiPath to manage joint public- and private-sector alliance
VeriSign's CEO Signs Off
News  |  5/29/2007  | 
Analysts say company could get fresh start as Sclavos walks after 12-year tenure
New Laws Don't Solve Global Problems
News  |  5/29/2007  | 
US, Germany advance legislation against spyware, spam - but can't do much to stop foreign exploits
Security With a Native Touch
News  |  5/29/2007  | 
Outsourcing overseas is a great idea, as long as a native-born local can bridge the cultural - and legal - gaps
Study: 80% Plan Network-Based NAC
News  |  5/29/2007  | 
Eighty percent plan to enforce NAC in the network, says Infonetics in new study
VeriSign CEO Steps Down
News  |  5/29/2007  | 
VeriSign said Tuesday Chief Executive and director Stratton D. Sclavos stepped down from his positions for undisclosed reasons
KACE, GuardianEdge Integrate Platforms
News  |  5/29/2007  | 
KACE and GuardianEdge announce integration between KBOX family of appliances and GuardianEdge data protection platform
Akonix Intros IM Security Appliance
News  |  5/29/2007  | 
Akonix addresses instant messaging security and compliance concerns of smaller businesses
Cryptomathic Intros Key Management System
News  |  5/29/2007  | 
Cryptomathic launched a Key Management System that enables organizations to manage the lifecycle of cryptographic keys using a central approach
FlexiSPY Spills BlackBerry Secrets
News  |  5/29/2007  | 
Vervata has released new versions of its controversial FlexiSPY mobile phone spy software
GFI Releases PCI Compliance White Paper
News  |  5/29/2007  | 
GFI has launched a white paper to explain what the PCI DSS are, how they affect different companies, and the repercussions of non-compliance
Webroot Cautions Online Betters
News  |  5/29/2007  | 
Webroot Software advises caution for online betters during Epsom Derby
New Security Suite on a USB Stick
News  |  5/29/2007  | 
Yoggie revolutionizes computer security by launching the world's first full security suite on a USB stick
Fed Workers Still in the Dark
News  |  5/27/2007  | 
Despite completing awareness courses, majority of government workers say they've never heard of key guidelines
Blogging With Security
News  |  5/25/2007  | 
Common sense - and a mind for what's fit for public consumption - should be your guideposts
Users' Most Hated Sales Pitches
News  |  5/25/2007  | 
What ticks you off about security vendors' sales pitches? Exasperated customers offer their un-favorites
Microsoft Takes Aim at Endpoint
News  |  5/25/2007  | 
Microsoft says Network Access Protection (NAP), SSL VPN gateway will play nicely together
Wireless: Fix, Not Flaw
News  |  5/25/2007  | 
New applications help WiFi shed its image as enterprises' biggest network vulnerability
Vegas BBQ -- Burn, PC, Burn
Commentary  |  5/24/2007  | 
Picture a beautiful sunset over the desert, the glow of the Vegas skyline in the distance. Then a towering wave of flames leap into the air that crackles with the heat -- a man just set his computer on fire.
CryptoCard to Hold Workshop
News  |  5/24/2007  | 
CryptoCard's 'It Takes More Than Technology' reseller workshop explains that technology alone cannot solve real business security issues
NAC Vendors in the Hot Seat
News  |  5/24/2007  | 
Cisco, Microsoft shared the dais, and their thoughts on NAC, here yesterday at Interop
SophosLabs Launches 24-Hour Blog
News  |  5/24/2007  | 
Sophos announced the launch of a new security blog designed to provide breaking news, insight, and commentary on emerging security threats
Spooks in the Booth
News  |  5/24/2007  | 
You never know who you'll see at Interop Las Vegas - even a certain spy agency
At Interop, Security Talk Is Largely About Network Access Control
Commentary  |  5/23/2007  | 
Here at Interop, there's a lot of focus on security and a lot of that security attention is aimed right at network access control. It's a hot-button topic here. The question plaguing many IT and security managers, though, might be where to get started.
New Spec Could Cut Phishing, Spam
News  |  5/23/2007  | 
IETF approves email signature standard pioneered by Yahoo!, Cisco
StillSecure Bets on Embedded Security
News  |  5/23/2007  | 
Cobia platform spurs debate over 'open source'
Check Point Protects Minnesota
News  |  5/23/2007  | 
State of Minnesota selects Check Point's data security solutions to protect sensitive data
Open Source Pitfalls
News  |  5/23/2007  | 
Innovation abounds with open source, but some code gets left behind on a virtual compost heap
Identity Engines Upgrades, Partners
News  |  5/23/2007  | 
Identity Engines harnesses user, posture, and policy in end-to-end 802.1X solution; industry standard now integrated with Ignition Server
SonicWall Unveils Security App
News  |  5/23/2007  | 
SonicWall unveiled the SonicWall Network Security Appliance (NSA) E7500
Startup to Ship Sweetened Honeypot
News  |  5/23/2007  | 
New, real-time, AI-based forensics appliance uses virtualized honeypot technology and interfaces with IDS/IPSes
Cisco, EMC Team on Fabric Encryption
News  |  5/23/2007  | 
Cisco unveils plans for switch fabric encryption, skeptical users may take some convincing
RTTS, SPI Dynamics Join Forces
News  |  5/23/2007  | 
RTTS announced its new strategic partnership with SPI Dynamics
Spyware Hides in Plain Sight
News  |  5/23/2007  | 
Those innocuous little toolbars could be leaking your corporate data
Page 1 / 5   >   >>


Facebook Aims to Make Security More Social
Kelly Sheridan, Associate Editor, Dark Reading,  2/20/2018
SEC: Companies Must Disclose More Info on Cybersecurity Attacks & Risks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  2/22/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
How to Cope with the IT Security Skills Shortage
Most enterprises don't have all the in-house skills they need to meet the rising threat from online attackers. Here are some tips on ways to beat the shortage.
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.