Date: 09/19/07     Keywords: yahoo

Zero-day vulnerabilities in two popular instant messaging products could put millions of computer users at risk of malicious hacker attacks. Exploit code has been released for the more serious of the two flaws -- a gaping hole in Yahoo Messenger -- that could expose users to code...

Source: http://blogs.zdnet.com/security/?p=523

Date: 09/19/07     Keywords: microsoft

This post is something of an apology. And an explanation of the picture at right. While I've been writing about IBM and Microsoft, about the the biggest trees in the open source forest, thousands of little shoots have been growing, ignored. Zoho has been...

Source: http://blogs.zdnet.com/open-source/?p=1443

Date: 09/19/07     Keywords: no keywords

Avast, government scalliwags are blind as me 25 year ol' pup when it comes to spying land on the antitrust seas. If government scoundrels showed two pence worth of good sense, I'd be wining and dining them in the captain's stateroom rather than keelhauling those bilge rats the length of...

Source: http://blogs.zdnet.com/carroll/?p=1751

Date: 09/19/07     Keywords: no keywords

Notable headlines: Ed Bott: Everything you've read about Vista DRM is wrong (Part 2). David Berlind: If true, Jobs quote of "A 3G iPhone later next year" should kill demand for iPhone 1.0. Matthew Miller: Steve Jobs confirms that a 3G iPhone will be...

Source: http://blogs.zdnet.com/BTL/?p=6306

Date: 09/18/07     Keywords: software, web, microsoft

Petko D. Petkov's ongoing research into malicious rigging of media files is now taking aim at Microsoft's ubiquitous Windows Media Player (WMP) software. The latest discovery revolves around manipulating ".asx" files to display a Web page within the standalone media player. [The] page will be opened...

Source: http://blogs.zdnet.com/security/?p=518

Date: 09/18/07     Keywords: technology, security

The eHealth Vulnerability study released today sounds self-serving, but does make clear that health IT is something of a technology backwater where security and patching has yet to catch up with supply or demand. The group represents existing players in health care, security and IT, rather than the groups...

Source: http://healthcare.zdnet.com/?p=272

Date: 09/18/07     Keywords: technology, security

A pair of security surveys were released Tuesday and the findings aren't pretty. First up, the Computing Technology Industry Association (CompTIA) released a survey on information security breaches. Among the findings: Among companies that reported a security breach in the last year, the...

Source: http://blogs.zdnet.com/BTL/?p=6300

Date: 09/18/07     Keywords: software, security, google

Google's security team has released a fuzz testing tool that was used internally to find multiple vulnerabilities in Internet-critical software products. The fuzzer, called Flayer, is an analysis and flow alteration tool that has been used to find errors in real software. In the past...

Source: http://blogs.zdnet.com/security/?p=517

Date: 09/17/07     Keywords: software, security

Company has started sharing some APIs with security vendors, in a bid to create better ways of securing virtual machines. Virtualization vendor VMware has quietly begun sharing some of its software secrets with the IT security industry under an unannounced plan to create better ways of securing virtual machines. ...

Source: http://news.zdnet.com/2100-3513_22-6208354.html

Date: 09/14/07     Keywords: software, security, virus, antivirus

Customers are getting more demanding, while security market is seeing a gradual consolidation around fewer players. Spending on security software across Europe is expected to top 2.4 billion euros ($3.3 billion) this year, with antivirus software continuing to form the largest slice of the pie. Antivirus software will account...

Source: http://news.zdnet.com/2100-1009_22-6207989.html

Date: 09/13/07     Keywords: no keywords

The Electronic Frontier Foundation reveals that FBI abuses of "exigent circumstances" letters not only illegally sought information on individual customers but also were used to obtain information on people they frequently called. A Freedom of Information Act request from EFF uncovered the new revelations, staff lawyer Kurt Opsahl...

Source: http://government.zdnet.com/?p=3400

Date: 09/13/07     Keywords: security, microsoft

Microsoft instant-messaging users who aren't yet running version 8.1 (or higher) of Windows Live Messenger, take note: Your days are numbered. As reported by LiveSide.net, some time in the next few weeks, Microsoft is going to require all Messenger users to upgrade, in the name of security....

Source: http://blogs.zdnet.com/microsoft/?p=714

Date: 09/12/07     Keywords: no keywords

Forty-four research projects are to be funded, including a technique for video detection of abnormal behavior in crowds. The European Commission will commit $212.16 million to research on counterterrorism technologies. The funding was granted in response to a call from the European Union's Seventh Framework Programme, a research program...

Source: http://news.zdnet.com/2100-1009_22-6207585.html

Date: 09/11/07     Keywords: no keywords

Every now and then, a press release or pitch crosses my desk about the so-called idea of "strong factor" authentication. It makes me want to roll my eyes because the US has got to be the only place in the world that actually knows better than to fall for...

Source: http://blogs.zdnet.com/Berlind/?p=771

Date: 09/10/07     Keywords: no keywords

UC Berkeley is remaking its engineering program to attract new students. On the agenda: nanotech, biology, social engineering. A correction was made to this story. Read below for details. Engineering and social sciences--it sounds like a bad mix for a dinner party. But S. Shankar Sastry, the dean...

Source: http://news.zdnet.com/2100-9595_22-6206799.html

Date: 09/09/07     Keywords: no keywords

Repercussions from the biggest reported data breach incident in history are still being felt. Last month's arrest of a dealer in stolen credit cards in Istanbul is just one example of how information stolen from TJX Companies is still being used by criminals. As I prepare for a talk...

Source: http://blogs.zdnet.com/threatchaos/?p=474

Date: 09/07/07     Keywords: security

Congress recently revised the USA Patriot Act to allow the FBI to use "national security letters" to compel companies - including Internet service providers and telecom companies - to produce customer records -- and forbid them from telling customers or anyone else about it. The law also severely limited the...

Source: http://government.zdnet.com/?p=3389

Date: 09/06/07     Keywords: software, security

Apple today shipped an iTunes software refresh to add support for all its shiny new toys but, unless you're following security announcements closely, you'd never know that iTunes 7.4 contains a fix for a pretty nasty code execution vulnerability. Here's what Mac users see: ...

Source: http://blogs.zdnet.com/security/?p=496

Date: 09/06/07     Keywords: software, security

RSA president says his division of data storage giant is working on products for virtualization software of recent IPO standout. EMC is working on security products that would work with VMware software, EMC Executive Vice President Arthur Coviello said Thursday. Coviello, who is president of EMC's RSA security business, said...

Source: http://news.zdnet.com/2110-1009_22-6206454.html

Date: 09/06/07     Keywords: software, security

RSA president says his division of data storage giant is working on products for virtualization software of recent IPO standout. EMC is working on security products that would work with VMware software, EMC Executive Vice President Arthur Coviello said Thursday. Coviello, who is president of EMC's RSA security business, said...

Source: http://news.zdnet.com/2100-1009_22-6206454.html