Date: 08/22/07     Keywords: security

Add Trend Micro, Check Point Zone Labs and ClamAV to the long list of security products that put end users at risk of malicious hacker attacks.The three vendors have all acknowledged various security vulnerabilities in a range of desktop and server products that could lead to arbitrary code execution, privilege...

Source: http://blogs.zdnet.com/security/?p=466

Date: 08/22/07     Keywords: security

Workers at many companies surveyed by security firm Sophos say access to Facebook is blocked over productivity, security concerns.

Source: http://news.zdnet.com/2100-1009_22-6203889.html

Date: 08/22/07     Keywords: no keywords

 Most major VoIP-centered conferences see a fair amount of announcements for new products and services. An exhibit floor walk also helps clarify and reinforce what's interesting.The VoiceCon show I am now attending here in San Francisco is heavily oriented toward enterprise (as opposed to consumer) VoIP. Natural, then, that what I'm...

Source: http://blogs.zdnet.com/ip-telephony/?p=2236

Date: 08/21/07     Keywords: no keywords

I was just going through the slides from Joanna Rutkowska's Black Hat talk (127-page .ppt file) and discovered that there's another unpatched driver flaw that exposes Windows Vista to kernel tampering.This flaw, in NVIDIA nTune, is similar to the recent ATI Technologies driver issue that provides a foolproof way to...

Source: http://blogs.zdnet.com/security/?p=447

Date: 08/21/07     Keywords: security

San Francisco International Airport CIO, John Payne explains his security role at SFO airport and how the airport responds to hacker attacks and terrorist threats. by Andrew Mager

Source: http://video.zdnet.com/CIOSessions/?p=190

Date: 08/21/07     Keywords: security

Some security experts are not entirely buying into Skype's explanations of what caused the nearly two-day sign-in outage.Writing on the SANS Internet Storm Center site, John Bambanek initially commented in part:Skype is apparently fully functional and has released an explanation of the problem that attributes the failure to Patch Tuesday. ...

Source: http://blogs.zdnet.com/ip-telephony/?p=2229

Date: 08/17/07     Keywords: security, linux, hosting

The Gentoo Project has removed a server hosting several sites and services after the discovery of a potentially serious command injection vulnerability.The open-source group, which produces a popular Linux distribution, said the security hole was verified within http://packages.gentoo.org."The Infrastructure team verified the vulnerability and the server was immediately taken...

Source: http://blogs.zdnet.com/security/?p=456

Date: 08/16/07     Keywords: security

Worries over Ubuntu's security following the shutdown of Canonical-sponsored community-run servers are misplaced, says the company.

Source: http://news.zdnet.com/2100-9584_22-6202988.html

Date: 08/16/07     Keywords: web, yahoo

Exploit code for a potentially serious vulnerability in Yahoo Messenger has been posted on the Internet, putting millions of computer users at risk of code execution attacks.The flaw, confirmed in fully-patched versions of Yahoo Messenger, causes a heap overflow to be triggered when the target accepts a webcam invitation.The exploit,...

Source: http://blogs.zdnet.com/security/?p=454

Date: 08/16/07     Keywords: security, spam

No hard evidence that PDF spam exposes users to security risks, claims the company, which nonetheless recommends user caution.

Source: http://news.zdnet.com/2100-1009_22-6202909.html

Date: 08/16/07     Keywords: linux

One question that I get asked on almost a daily basis is why I don't abandon the Windows platform and shift over to using Mac.  When I posted my "30 things I've learned from using Linux …" post, the point that raised the most discussion was #27:The more I use...

Source: http://blogs.zdnet.com/hardware/?p=689

Date: 08/15/07     Keywords: security

More than half of Ubuntu's production servers had to be pulled offline after a security breach caused those servers to actively attack other machines.According to a notice in the Ubuntu weekly newsletter, 5 of the 8 servers that are loco hosted had to be shut down after an investigation showed...

Source: http://blogs.zdnet.com/security/?p=453

Date: 08/15/07     Keywords: technology, security

Symantec and Intel are jointly developing security appliances that work with virtualization technology built directly into Intel's microchips, according to a Reuters news report.The partnership, called "Project Hood," is part of an effort by the two companies to expand their use of virtualization technology. Instead of designing the...

Source: http://blogs.zdnet.com/security/?p=450

Date: 08/15/07     Keywords: technology

The program is part of an effort by both companies to expand their use of virtualization technology.

Source: http://news.zdnet.com/2100-1009_22-6202645.html

Date: 08/13/07     Keywords: security

Or more specifically, where is the security industry going? When faced with this question Rotham's and Newby's security blogs read like the ramblings of ecclesiastical old men who are tired of their own industries. They are too close to it to scent the excitement maybe?First of all there...

Source: http://blogs.zdnet.com/threatchaos/?p=466

Date: 08/13/07     Keywords: security

A new German law that makes it a crime to build, sell, distribute or obtain so-called "hacking tools" went into effect over the weekend, InfoWorld reports.The new law defines hacking as penetrating a computer security system and gaining access to secure data, without necessarily stealing data. Offenders are defined as...

Source: http://government.zdnet.com/?p=3356

Date: 08/13/07     Keywords: software, security

A screenshot taken this morning from the Secunia home page:When the security software installed on your system exposes you to code execution attacks, can you really trust them? by Ryan Naraine

Source: http://blogs.zdnet.com/security/?p=446

Date: 08/13/07     Keywords: php, software, security

Security professionals in Germany have started removing exploits and hacking tools from the Internet in response to a new German law that expressly forbids the distribution of any software that can be used in computer/network attacks.Stefan Esser (left), the PHP security guru behind the recent Month of PHP Bugs project,...

Source: http://blogs.zdnet.com/security/?p=444

Date: 08/09/07     Keywords: security

EMC's security division RSA announces plans to buy Tablus, in a move to bolster its intelligent information management offerings.

Source: http://news.zdnet.com/2100-9595_22-6201723.html

Date: 08/09/07     Keywords: software

On the same day Cisco released patches for multiple operating system and software vulnerabilities, the network routing and switching vendor suffered an outage that knocked the Cisco.com offline for about three hours.The outage, blamed on "human error [that] caused an electrical overload on the systems," affected support services, including access...

Source: http://blogs.zdnet.com/security/?p=436