Date: 03/27/08     Keywords: software, security

EMC said Thursday that it is partnering with Verint to offer physical security services.Verint provides IP video security software and dashboards. EMC will offer services for companies looking to design and manage physical security information management. The move by EMC and Verint highlight how information and physically...

Source: http://blogs.zdnet.com/security/?p=982

Date: 03/26/08     Keywords: software, asp, web

Acquia, KnowledgeTree and JasperSoft touted new open source web publishing, social software, content management and business intelligence products at the Open Source Business Conference this week. Acquia, of Andover, Mass., said it is on track this fall t ship a new social web publishing platform...

Source: http://blogs.zdnet.com/open-source/?p=2181

Date: 03/26/08     Keywords: no keywords

Cisco patched multiple vulnerabilities on Wednesday with the most important fixes covering data-link switching, IPv6 and VPN flaws. Among the highest rated patches (all rated 7 or above on a 10 scale): Cisco patched multiple vulnerabilities in the Data-link Switching (DLSw) feature in its...

Source: http://blogs.zdnet.com/security/?p=981

Date: 03/26/08     Keywords: java

Mozilla has patched 10 vulnerabilities in Firefox 2.0 with update 2.0.0.13. In an update early Wednesday Firefox addressed the following: MFSA 2008-19  XUL popup spoofing variant (cross-tab popups) MFSA 2008-18 Java socket connection to any local port via LiveConnect MFSA 2008-17 Privacy issue with...

Source: http://blogs.zdnet.com/security/?p=980

Date: 03/26/08     Keywords: no keywords

Considering my previous posts on my experiences at Black Hat Federal received pretty good reviews, I thought it would make sense to again highlight a Black Hat trip. This time it was all the way out to Amsterdam, where Rob Carter and I will be speaking about URI Use...

Source: http://blogs.zdnet.com/security/?p=978

Date: 03/26/08     Keywords: google

Google filed its proxy statement with the SEC on Tuesday and detailed an attempt to get the search giant to stand up to Internet censorship abroad. Google recommended shareholders vote against the effort. The Internet censorship proposal was raised by the Office of the Comptroller of New...

Source: http://blogs.zdnet.com/BTL/?p=8303

Date: 03/25/08     Keywords: no keywords

One of the questions coming out of last week's wintel vs lintel discussions asked which one is generally more secure. As it turns out that's an easy question to answer -unless, of course, you want to demonstrate that your answer is correct, because then it turns out that virtually nothing...

Source: http://blogs.zdnet.com/Murphy/?p=1101

Date: 03/25/08     Keywords: java

In my first post in this series, I discussed the Same Origin Policy and how it protects us from some very serious attacks, the dangers of domain name based trust, and how to attack implementations of the Same Origin Policy within the Java Virtual Machine (JVM).  In order to demonstrate...

Source: http://blogs.zdnet.com/security/?p=974

Date: 03/24/08     Keywords: browser, web

Last summer, I looked at Apple's announced plans for its Safari web browser and wondered out loud, Is Steve Jobs planning a hostile takeover of the Windows desktop? Apple's decision last week to begin aggressively pushing Safari to any Windows user running iTunes (in other words, anyone with an iPod or an...

Source: http://blogs.zdnet.com/Bott/?p=405

Date: 03/24/08     Keywords: security

In the PC community "security" just means defending against attacks aimed at destroying or misusing all or part of a computer system. In that context most of the complexities associated with trying to decide whether wintel or lintel will expose you to less security risk arise from the absense of...

Source: http://blogs.zdnet.com/Murphy/?p=1100

Date: 03/24/08     Keywords: database, microsoft

Microsoft has confirmed reports of vulnerability in Word that allows an attacker to exploit a system via the Microsoft Jet Database Engine, which shares data with Access, Visual Basic and third party applications. Microsoft in its advisory said the potential for attack is "very limited." Reports of...

Source: http://blogs.zdnet.com/security/?p=973

Date: 03/24/08     Keywords: microsoft, google

Notable headlines: Adrian Kingsley-Hughes: First look: Hardy Heron Beta. Gallery: Installation. Screen shots: OS tour Mary Jo Foley: ‘Albany': New Microsoft ‘home office' in the works? Michael Krigsman: Is IT becoming extinct? Garett Rogers: New Google Mobile feature...

Source: http://blogs.zdnet.com/BTL/?p=8283

Date: 03/22/08     Keywords: software, security, web

Yesterday Apple pushed out a Safari 3.1 update via Software Update on Windows. In a blog post, Mozilla CEO John Lilly describes why Mozilla feels Apple's decision is wrong -- and how moves like it can endanger the security of the Web. From John Lilly's blog: What Apple...

Source: http://blogs.zdnet.com/Apple/?p=1451

Date: 03/21/08     Keywords: security

One big hole for open source lies in security. It's not a real hole. It's a meta-hole. But we still view it as a hole, so it's a hole. That hole opened up again in Australia this week, where a "loud minority" got personal...

Source: http://blogs.zdnet.com/open-source/?p=2156

Date: 03/21/08     Keywords: no keywords

Notable headlines: Ed Bott: Your turn: Readers choose their 10 favorite Windows programs Gallery (right) Mary Jo Foley: Why Windows 7 might go to pieces Michael Krigsman: Billion-dollar IT failure at Census Bureau George Ou: HDMI survival guide...

Source: http://blogs.zdnet.com/BTL/?p=8277

Date: 03/20/08     Keywords: security

Apple on Friday shipped a security update for Aperture 2, iPhoto 7.1.2 with iLife Support 8.2. Here's what Apple had to say in an advisory about CVE-2008-0987: Viewing a maliciously crafted image may lead to an unexpected application termination or arbitrary code execution Description: ...

Source: http://blogs.zdnet.com/security/?p=969

Date: 03/20/08     Keywords: software

Silicon Valley entrepreneur Rod A. Beckstrom has been tapped to join the Bush Administration to help secure federal networks against attack, the Post reported today. Beckstrom most recently founded Twiki.net, an enterprise Wiki support company, and previously created CATS Software and Mergent Systems. He's also coauthor of a...

Source: http://government.zdnet.com/?p=3725

Date: 03/20/08     Keywords: no keywords

Environmental scientists and policy makers have done some deep brainstorming sessions about our future, according to this article in New Scientist. 35 representatives from organizations involved in environmental policy, academia, scientific journalism in the UK have used what they call 'horizon scanning.' They've established a list of 25 future novel...

Source: http://blogs.zdnet.com/emergingtech/?p=869

Date: 03/20/08     Keywords: security, microsoft

It's been a while since Microsoft has shared information on "Stirling," the all-in-one security suite the company is assembling. Microsoft is planning to release a public beta of Stirling -- the suite of Forefront client, server and edge security products, wrapped in a unified management and reporting...

Source: http://blogs.zdnet.com/microsoft/?p=1284

Date: 03/20/08     Keywords: software, technology, security, microsoft

Microsoft on Thursday acquired Komoku, which provides rootkit detection software, for an undisclosed sum. Komoku's technology will be added to Microsoft's enterprise-focused Forefront and Windows Live OneCare security software. Komoku counts the Department of Homeland Security and the Department of Defense as customers and gives Microsoft's anti-malware...

Source: http://blogs.zdnet.com/security/?p=968