Although the overall number of vulnerabilities being discovered in software appears to be leveling off or even dropping, two recent reports on Web security say that the overwhelming majority of Web sites studied still have unpatched vulnerabilities that could expose visitors to malicious code.
- By William Jackson
- 08/28/2008
Redmond responded on Wednesday to an independent security vendor's discovery of a hard-drive encryption vulnerability affecting Microsoft's BitLocker function, Intel/HP's BIOS and several other products and programs.
- By Jabulani Leffall
- 08/27/2008
A variety of technical flaws in an upgrade of the system that supports the government's terrorist watch list has drawn congressional fire and raised concerns that the entire system might be in jeopardy.
The writing's on the wall, it seems, for purveyors of security point solutions. Gone is the day of the best-of-breed anti-virus, firewall, e-mail security or encryption vendors. These days, it's a security suite play.
- By Stephen Swoyer
- 08/26/2008
Check Point Software Technologies today released a new solution to address Internet security woes.
- By Jabulani Leffall
- 08/25/2008
In a sign that hackers have no problem taking advantage of open source solutions, Linux-based product distributor Red Hat issued a "critical" security advisory on Friday, saying that its servers had been compromised.
- By Jabulani Leffall
- 08/22/2008
Microsoft on Thursday released an improved security filter for its Internet Information Service (IIS) Web server that is designed to help thwart SQL injection attacks.
Microsoft released an improved security filter for its Internet Information Service Web server that is designed to help thwart SQL injection attacks.
Companies can avoid attacks and minimize security cost overruns by practicing IT vulnerability management, according to a July study published by the Aberdeen Group.
- By Jabulani Leffall
- 08/19/2008
Microsoft rolled out the highest level of its enterprise support programs to date, adding a new offering called "Microsoft Services Premier Ultimate."
Security and integration are far from mutually exculsive. Which is why it might help to know a little something about password authentication, asymmetric cryptography, server security, IPsec...
- By Emmett Dulaney
- 08/15/2008
Yesterday, August 12, was a blow-out day for some users of VMware's ESX 3.5 and ESXi 3.5 virtualization products, especially if they had applied the latest product updates called "Update 2."
MessageLabs reports that the number of SQL injection attacks spiked sharply last month.
- By Stephen Swoyer
- 08/13/2008
Microsoft closed its investigation into an update blocking issue that affected users of Windows Server Update Service 3.0 or WSUS 3.0 Service Pack 1.
Microsoft's August patch, slated to be the largest patch rollout since 12 bulletins hit users in February of 2007, came up short by one.
- By Jabulani Leffall
- 08/12/2008
Microsoft released to manufacturing its widely touted first service pack (SP) of Visual Studio 2008 and .NET Framework 3.5.
- By John K. Waters
- 08/11/2008
We dodged a bullet last month -- the discovery of a fundamental flaw in the Domain Name System, Dan Kaminsky told a standing-room only (and some sitting on the floor) crowd at the Black Hat Briefings Wednesday.
- By William Jackson
- 08/07/2008
One fun thing about the interactive world of Web 2.0 is the online applications you can take advantage of, such as Google Gadgets.
- By William Jackson
- 08/07/2008
A cache of stolen data gathered from a botnet that has been quietly sweeping up information for years contained the user names and passwords for 8,485 bank accounts.
- By William Jackson
- 08/07/2008
IT Pros and system administrators will be mighty busy this month as Microsoft announced plans to release 12 patches.
- By Jabulani Leffall
- 08/07/2008