Is the cloud a viable tool in the fight?
It's been a tough week and a half for Oracle and its Java crew.
A recent phishing campaign that employs a Microsoft e-mail template has been spotted in the wild by researchers.
While Microsoft's dedication to software security should be the gold standard for others, it's a war that the company will never win.
Oracle released an update for Java 7 that addresses "3 distinct but related vulnerabilities and one security-in-depth issue affecting Java running in desktop browsers," said the company.
Security firm FireEye released information yesterday on a Java flaw that has been seen in targeted attacks in the wild, and has been tested to work on most major Web browsers for both Mac and PC.
Remember that "Pandora's box" that security bloggers and experts were warning about once it was reported that Stuxnet might have come from a government body?
Microsoft issued Security Advisory 2743314 on Monday to warn users of two tools readily available that can be used to steal passwords from wireless networks and virtual private networks (VPNs).
Microsoft released a security advisory this week warning about an issue that could cause VPN passwords to be stolen, thanks to the work of a couple of hackers.
Security researchers have identified a virus that can steal data from a targeted machine and then rewrite over the master boot record of a computer to make it inoperable.
While malware will have to use a new trick to infect systems, Microsoft's solution may hurt those who have dealings overseas.
Big brother asks Microsoft for some assistance.
Microsoft's monthly Security Update arrived today with nine bulletins addressing 26 vulnerabilities. As with the past few months, remote code execution flaws are targeted in the majority of items.
Microsoft's August Patch Tuesday release will feature nine bulletin items, with five being rated "critical", according to Microsoft's Security Bulletin Advance Notification.
Microsoft has announced it has partnered with the New York Police Department (NYPD) to develop a crime prevention and counterterrorism system.
Not only does it not save enterprises money, but it adds a ton of security issues. What's not to like?
According to a recent poll, cloud security still isn't up to the level to handle the data of many enterprises.
According to a study, 67 percent of IT pros say that bring your own device (BYOD) policies in the enterprise increases the cost to companies.
Keeping data secure in the cloud requires a new approach to authentication and authorization.
- By Jeffrey Schwartz
The safety of data remains the key reason many enterprises won't use cloud hosting services.
- By Jeffrey Schwartz