Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Content posted in September 2007
<<   <   Page 2 / 5   >   >>
Good News: Attacks Are Down; Bad News: Attacks Are Worse
Commentary  |  9/24/2007  | 
Fewer but fiercer attacks -- that's the word from a new study of business IT security trends over the past year. Today's breaches are reportedly twice as severe as those of just a couple of years ago.
TJX Proposes to Settle Customer Lawsuit for $6.5M
News  |  9/24/2007  | 
Customers promised a $30 voucher and a three-day discount sale
German Researchers to Test New Anti-Hacker Law
News  |  9/24/2007  | 
N.runs says it will risk arrest and prosecution by putting its hacking tool back online tomorrow
StillSecure Introduces Free NAC
News  |  9/24/2007  | 
StillSecure introduces free network access control solution based on StillSecure Safe Access
Encentuate Adds 'QuickStart' Authentication
News  |  9/24/2007  | 
Encentuate announces 'QuickStart' program at Digital ID World 2007
Shavlik Launches Free Google Gadget
News  |  9/24/2007  | 
Individual users can download free Google gadget for on demand patch assessment and remediation from Shavlik
Credit Unions Choose Imprivata's Appliance
News  |  9/24/2007  | 
Imprivata's Onesign solution solves password management, access, and compliance issues at credit unions nationwide
Breach Security Adds App Defect Detection
News  |  9/24/2007  | 
New version of Breach Security's WebDefend Web application firewall adds passive vulnerability detection
Secure Computing Intros New WebWasher
News  |  9/24/2007  | 
Secure Computing releases next generation Web gateway security solution
Lessons From a Security Breach
News  |  9/24/2007  | 
A hack at Vertical Web Media helps show what to do in the event of a breach - and what not to do
HID to Distribute Privaris Tokens
News  |  9/24/2007  | 
HID Global to distribute Privaris' plusID line of wireless identity verification products
Banks Adopt Entitlement Management
News  |  9/24/2007  | 
Securent milestones signal increasing demand as leading enterprises adopt Entitlement Management
ArcSight Debuts PCI Protection
News  |  9/24/2007  | 
ArcSight debuts industry-leading, comprehensive, scalable, and cost-effective PCI protection solution
P2P Leads to Major Leak at Citigroup Unit
Quick Hits  |  9/24/2007  | 
ABN Amro employee exposes personal data on 5,000 mortgagees by installing BearShare
Tizor Launches PartnerTrust Program
News  |  9/24/2007  | 
Tizor announces PartnerTrust program for resellers, ISVs, consultants, and systems integrators
Fortinet Provides UTM to Cook County
News  |  9/24/2007  | 
Fortinet provides advanced network security to second largest county in US
ClairMail, VeriSign Team Up
News  |  9/24/2007  | 
Verisign mobile banking solution to include two-way customer interaction platform fro Clairmail
AirMagnet Rolls Out Next-Gen Wireless IPS
News  |  9/24/2007  | 
AirMagnet Enterprise 8.0 revolutionizes wireless IDS intelligence
FireEye Fans Anti-Botnet Flame
News  |  9/24/2007  | 
FireEye today is rolling out the latest in a series of anti-botnet offerings from security vendors
Secure Computer Recycling II
Commentary  |  9/21/2007  | 
The first step (admittedly paranoid but also, I think, practical) in recycling computers is to physically remove any storage devices. The second is to smash those devices to smithereens. The third step is to find the right place to drop off the now storage-less (and business data-less) remains of the computer.
Security's School of Hard Knocks
News  |  9/21/2007  | 
Security pros share five of the toughest lessons they've ever learned, and they've got the scars to prove them
Researcher Raises Alarm Over PDFs
News  |  9/21/2007  | 
Adobe files could soon become attackers' favorite medium for malware delivery, experts say
Running the IR Gauntlet
News  |  9/21/2007  | 
There are lots of tools available for incident response, but they have flaws too
Signal Turns to Data Leak Protection
News  |  9/21/2007  | 
Signal Financial Credit Union's DLP architecture protects sensitive data - sometimes a little too well
TD Ameritrade Gambles and Loses
News  |  9/21/2007  | 
Brokerage company had all the warning signs of a breach last year, but held off disclosure in hopes of fixing the problem
Hackers Get the Lingo
Quick Hits  |  9/21/2007  | 
Lingo, a New Zealand VOIP service provider, accidentally sends out the email addresses of more than 14,000 customers
What ISPs Are Scared Of
Commentary  |  9/20/2007  | 
A new study of Internet service providers (ISP) and their top security concerns lets us know what they're most scared of: armies of zombie computers mounting huge distributed denial of service (DDoS) attacks.
Five Signs That You're Under a Targeted Attack
News  |  9/20/2007  | 
Clues that your organization is in the bull's eye might be right under your nose
Security Problems Linger at VA
News  |  9/20/2007  | 
Despite highly publicized breach, Veterans Affairs' IT efforts still coming up short, according to GAO report
Secure Elements, SignaCert Partner
News  |  9/20/2007  | 
Combined offering validates SCAP configurations and related binaries to fulfill Federal Desktop Core Configuration compliance
New App Delivers Dynamic Security Content
News  |  9/20/2007  | 
Secure Elements announces C5 content platform
Cyber Law Cuts Two Ways
News  |  9/20/2007  | 
Regional laws - such as Minnesota's credit card data legislation - create both benefits and hardships
Radware Adds Protection Against Trojan
News  |  9/20/2007  | 
Radware issues immediate protection against the 'Gangsta.exe' trojan horse
Secure Elements, Grant Thornton LLP Team
News  |  9/20/2007  | 
Secure Elements announces joint marketing agreement with Grant Thornton LLP Global Public Sector
Homeland Security's 'Virtual Fence' Has Holes
Quick Hits  |  9/20/2007  | 
Pilot program for US's new border-crossing system of cameras, sensors, and radar hits early snags
Former Bank of America CISO Joins PGP Board
News  |  9/20/2007  | 
Rhonda MacLean joins PGP Corporation's board of directors
Gemalto Minidriver Now Microsoft-Certified
News  |  9/20/2007  | 
SafesITe Classic Trusted PKI card minidriver provides deployment and management to protect digital identities and secure data
Third Brigade Offers Program for Healthcare
News  |  9/20/2007  | 
Third Brigade launches quick start program to help Healthcare Organizations shield vulnerabilities in EHR systems
Cybercrooks Outpacing Cybercops: McAfee
Commentary  |  9/19/2007  | 
It's that time of year when the major security vendors release updates, upgrades... and public statements. McAfee's CEO this week pointed out that cybercrime is now bigger than the illegal drug trade -- and continues to grow.
Reports: Threats More Sophisticated, More Costly Than Ever
News  |  9/19/2007  | 
Cybercrime has become a cottage industry, and companies are feeling it in their bank accounts, researchers say
Radware Offers Defense Against Gangsta
News  |  9/19/2007  | 
Radware issues immediate protection against the 'Gangsta.exe' trojan horse
VeriSign: Many Short of PCI Standards
News  |  9/19/2007  | 
VeriSign finds 53% of companies assessed fall short of mandatory security standards
ISPs Try on Anti-Botnet Services Model
News  |  9/19/2007  | 
Anti-botnet security services are on the rise, but ISPs still aren't coming over to clean up your machine
The Six Stages of Incident Response
News  |  9/19/2007  | 
Following these simple steps can help your organization handle a serious data breach
Verio to Deliver GlobalSign SSL Certs
News  |  9/19/2007  | 
Verio and GlobalSign announce strategic partnership
Mu Security Discovers DHCP Zero-Day
News  |  9/19/2007  | 
Mu Security discovers Dibbler DHCPv6 zero-day denial of service vulnerability
Yoggie Adds New Features
News  |  9/19/2007  | 
Yoggie Security Systems enhances its range of Yoggie security computers through firmware update
Hosting Vendor Suffers Major Security Breach
Quick Hits  |  9/19/2007  | 
Even the companies contracted to protect your data are losing it
Astaro Unveils PCI Reporting for UTM
News  |  9/19/2007  | 
Astaro announces new automated PCI compliance reporting for Astaro Unified Threat Management systems
Sophos Warns Users to Patch Bug
News  |  9/19/2007  | 
Network Access Control helps companies gain visibility and control over unpatched PCs
<<   <   Page 2 / 5   >   >>


News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-30485
PUBLISHED: 2021-04-11
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp() on a NULL pointer.
CVE-2021-30481
PUBLISHED: 2021-04-10
Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after one click.
CVE-2021-20020
PUBLISHED: 2021-04-10
A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.
CVE-2021-30480
PUBLISHED: 2021-04-09
Zoom Chat through 2021-04-09 on Windows and macOS allows certain remote authenticated attackers to execute arbitrary code without user interaction. An attacker must be within the same organization, or an external party who has been accepted as a contact. NOTE: this is specific to the Zoom Chat softw...
CVE-2021-21194
PUBLISHED: 2021-04-09
Use after free in screen sharing in Google Chrome prior to 89.0.4389.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.