Date: 09/06/07     Keywords: web, spam

Commentary: Mass e-mail malware is yesterday’s news. Today's attacks increasingly involve malware hidden on Web sites, says Secure Computing's Paul Henry.Commentary--Mass e-mailing is no longer hip for hackers. Spam attacks are now yesterday’s news and have been replaced with targeted attacks. There are two predominant reasons for the switch: ...

Source: http://news.zdnet.com/2424-9595_22-163227.html

Date: 09/04/07     Keywords: no keywords

Analyst firm suggests that Apple might add enterprise devices or applications to make phone more adaptable, secure. Apple might start making enterprise-class iPhones or incorporate more enterprise-friendly features into existing models, a Gartner analyst has predicted. Gartner previously dismissed the idea of iPhones becoming business tools, but the analyst...

Source: http://news.zdnet.com/2100-1035_22-6205910.html

Date: 09/04/07     Keywords: browser, security, web

Mozilla has not quite fixed the security hiccups with URI protocol handling in Firefox. According to Billy Rios and Nate McFeters, the two security researchers behind the exposure of protocol abuse in popular Web browsers, Firefox is still vulnerable to a remote command injection flaw that...

Source: http://blogs.zdnet.com/security/?p=489

Date: 08/31/07     Keywords: security

In one form or another I have heard this question posed hundreds of times. It is always an expression of frustration on the part of some IT security practitioner. This time the question was posed to an IDC analyst at an event I attended this week in Zurich. The...

Source: http://blogs.zdnet.com/threatchaos/?p=471

Date: 08/31/07     Keywords: no keywords

McAfee joins ranks of those criticizing Sony over rootkit-like behavior of device driver used to run its Micro Vault USB. Sony says the rootkit-like behavior of a device driver used to run its biometric Micro Vault USM-F thumb drive was unintentional. Sony Sweden spokesman Fredrik Fagerstedt told local press...

Source: http://news.zdnet.com/2100-1009_22-6205494.html

Date: 08/29/07     Keywords: no keywords

CEO says number of those affected "could easily be in the millions," much greater than the 1.3 million individuals reported earlier.

Source: http://news.zdnet.com/2100-1009_22-6205236.html

Date: 08/29/07     Keywords: no keywords

Following disclosure of an eavesdropping vulnerability, the Jericho Forum says VoIP tech is not ready for business deployment.

Source: http://news.zdnet.com/2100-1009_22-6205178.html

Date: 08/29/07     Keywords: microsoft

As reported by Mary Jo Foley and Ed Bott, Microsoft has finally confirmed that Windows Vista SP1 actually exists and will serve as a cumulative roll-up of patches and bug fixes released over the last six months. This white paper written by Microsoft's Brandon LeBlanc, spells...

Source: http://blogs.zdnet.com/security/?p=480

Date: 08/28/07     Keywords: no keywords

Two incidents in Hyderabad unlikely to dissuade Indian businessmen, but some worry foreign investors will be scared off. Two bombings within three months that killed dozens in India's prominent IT city of Hyderabad have set off alarm bells for many companies who worry investor sentiment could start to sour. ...

Source: http://news.zdnet.com/2100-1009_22-6204879.html

Date: 08/27/07     Keywords: browser, security

A study by the non-profit Honeynet Project has come up with a strange answer to the Firefox versus Internet Explorer security question.During the experiment, conducted in May 2007, the group compared three browsers -- Internet Explorer 6 SP2, Firefox 1.5.0 and Opera 8.0.0 -- to determine whether using an alternative...

Source: http://blogs.zdnet.com/security/?p=474

Date: 08/27/07     Keywords: microsoft

Notable headlines:George Ou: Best storage strategies for the multimedia PC.Robin Harris: Why aren't small drives cheaper?Top 10 reviews of the week (left).'Second Life': The promise and paradoxMary Jo Foley: Microsoft WGA servers are fixed, but no word on what went wrong. Microsoft Windows Genuine Advantage system down for the count?...

Source: http://blogs.zdnet.com/BTL/?p=6040

Date: 08/27/07     Keywords: software, security, google

It's a bit ironic that Vint Cerf is touting Google's infrastructure and warning users about unreliable software and poor security when both Blogger and Google Analytics were reported unavailable this week. To top it off, Google also recently pulled the plug on their paid video content services -- causing...

Source: http://blogs.zdnet.com/Google/?p=704

Date: 08/24/07     Keywords: no keywords

A couple of weeks ago, I paid a visit to Nike.com in search of some specific sunglass frames to replace Nike ones of mine that broke. The broken pair included some prescription lenses and I was hoping to find the same frames so that I didn't have to bear...

Source: http://blogs.zdnet.com/Berlind/?p=756

Date: 08/24/07     Keywords: software, security, yahoo

Eight days after the release of exploit code for code execution holes in the Yahoo Messenger IM client, Yahoo has shipped a new version with patches for its Windows user base.The latest security makeover, which is being distributed via the software's auto-update mechanism, covers two separate vulnerabilities that can be...

Source: http://blogs.zdnet.com/security/?p=473

Date: 08/24/07     Keywords: security, web

IT managers in small, midsize companies believe staff members are responsible for online-security problems, survey finds. IT managers in small and midsize businesses blame their fellow workers for online security breaches--despite the fact many small enterprises still don't enforce Web usage policies.More than a fourth of European IT managers in...

Source: http://news.zdnet.com/2100-1009_22-6204295.html

Date: 08/24/07     Keywords: no keywords

Almost two years ago I predicted that Sun's then pending T1 and subsequent T2 CMT machines would offer throughput levels roughly comparable to x86 machines producing the number of cycles you'd get multiplying Sun's CMT megahertz by their thread count -i.e that a T1 would produce roughly the throughput...

Source: http://blogs.zdnet.com/Murphy/?p=946

Date: 08/23/07     Keywords: java, security, linux, google

Ten months ago (October 2006), a member of Google's security team discovered and reported two code execution vulnerabilities in Sun's Java ICC (image) profile parsing code.Seven months later (May 2007), Sun issued an update (JDK 1.5.0_11-b03) that was available for Window, Solaris, and Linux.One big problem. It's August 2007...

Source: http://blogs.zdnet.com/security/?p=469

Date: 08/23/07     Keywords: security

Notable headlines:David Morgenstern: The real question about Mac security. Ryan Naraine: Trend Micro, Zone Labs, ClamAV join list of insecure security products. Richard Stiennon : Not Constantinople. Again!Mary Jo Foley: Bill Gates seeks patent for ad-rebate program. Windows Live suite debuts ... on cell phones.AMD's sales chief to leave companyDan...

Source: http://blogs.zdnet.com/BTL/?p=6019

Date: 08/23/07     Keywords: no keywords

While on a quick trip this week to New York City (to see my daughter in a FringeNYC Festival musical theater production), I spent a good while cooling my heels in various coffee shops around the Village. Counting the laptops plopped on tables, I figured that more than 70 percent...

Source: http://blogs.zdnet.com/Apple/?p=805

Date: 08/22/07     Keywords: no keywords

The company launches a suite of products intended to make converged voice and data networks as secure as traditional telephony.

Source: http://news.zdnet.com/2100-1009_22-6203960.html