Date: 08/13/07 (Security)    Keywords: software, security

A screenshot taken this morning from the Secunia home page:When the security software installed on your system exposes you to code execution attacks, can you really trust them? by Ryan Naraine

Source: http://blogs.zdnet.com/security/?p=446

Date: 08/13/07 (Security)    Keywords: php, software, security

Security professionals in Germany have started removing exploits and hacking tools from the Internet in response to a new German law that expressly forbids the distribution of any software that can be used in computer/network attacks.Stefan Esser (left), the PHP security guru behind the recent Month of PHP Bugs project,...

Source: http://blogs.zdnet.com/security/?p=444

Date: 08/13/07 (Security)    Keywords: security

Or more specifically, where is the security industry going? When faced with this question Rotham's and Newby's security blogs read like the ramblings of ecclesiastical old men who are tired of their own industries. They are too close to it to scent the excitement maybe?First of all there...

Source: http://blogs.zdnet.com/threatchaos/?p=466

Date: 08/15/07 (Security)    Keywords: technology, security

Symantec and Intel are jointly developing security appliances that work with virtualization technology built directly into Intel's microchips, according to a Reuters news report.The partnership, called "Project Hood," is part of an effort by the two companies to expand their use of virtualization technology. Instead of designing the...

Source: http://blogs.zdnet.com/security/?p=450

Date: 08/15/07 (Security)    Keywords: security

More than half of Ubuntu's production servers had to be pulled offline after a security breach caused those servers to actively attack other machines.According to a notice in the Ubuntu weekly newsletter, 5 of the 8 servers that are loco hosted had to be shut down after an investigation showed...

Source: http://blogs.zdnet.com/security/?p=453

Date: 08/09/07 (Security)    Keywords: security

EMC's security division RSA announces plans to buy Tablus, in a move to bolster its intelligent information management offerings.

Source: http://news.zdnet.com/2100-9595_22-6201723.html

Date: 08/17/07 (Security)    Keywords: security, linux, hosting

The Gentoo Project has removed a server hosting several sites and services after the discovery of a potentially serious command injection vulnerability.The open-source group, which produces a popular Linux distribution, said the security hole was verified within http://packages.gentoo.org."The Infrastructure team verified the vulnerability and the server was immediately taken...

Source: http://blogs.zdnet.com/security/?p=456

Date: 08/16/07 (Security)    Keywords: security

Worries over Ubuntu's security following the shutdown of Canonical-sponsored community-run servers are misplaced, says the company.

Source: http://news.zdnet.com/2100-9584_22-6202988.html

Date: 08/16/07 (Security)    Keywords: security, spam

No hard evidence that PDF spam exposes users to security risks, claims the company, which nonetheless recommends user caution.

Source: http://news.zdnet.com/2100-1009_22-6202909.html

Date: 08/21/07 (Security)    Keywords: security

Some security experts are not entirely buying into Skype's explanations of what caused the nearly two-day sign-in outage.Writing on the SANS Internet Storm Center site, John Bambanek initially commented in part:Skype is apparently fully functional and has released an explanation of the problem that attributes the failure to Patch Tuesday. ...

Source: http://blogs.zdnet.com/ip-telephony/?p=2229

Date: 08/21/07 (Security)    Keywords: security

San Francisco International Airport CIO, John Payne explains his security role at SFO airport and how the airport responds to hacker attacks and terrorist threats. by Andrew Mager

Source: http://video.zdnet.com/CIOSessions/?p=190

Date: 08/22/07 (Security)    Keywords: security

Add Trend Micro, Check Point Zone Labs and ClamAV to the long list of security products that put end users at risk of malicious hacker attacks.The three vendors have all acknowledged various security vulnerabilities in a range of desktop and server products that could lead to arbitrary code execution, privilege...

Source: http://blogs.zdnet.com/security/?p=466

Date: 08/23/07 (Security)    Keywords: security

Notable headlines:David Morgenstern: The real question about Mac security. Ryan Naraine: Trend Micro, Zone Labs, ClamAV join list of insecure security products. Richard Stiennon : Not Constantinople. Again!Mary Jo Foley: Bill Gates seeks patent for ad-rebate program. Windows Live suite debuts ... on cell phones.AMD's sales chief to leave companyDan...

Source: http://blogs.zdnet.com/BTL/?p=6019

Date: 08/23/07 (Security)    Keywords: java, security, linux, google

Ten months ago (October 2006), a member of Google's security team discovered and reported two code execution vulnerabilities in Sun's Java ICC (image) profile parsing code.Seven months later (May 2007), Sun issued an update (JDK 1.5.0_11-b03) that was available for Window, Solaris, and Linux.One big problem. It's August 2007...

Source: http://blogs.zdnet.com/security/?p=469

Date: 08/23/07 (Computer Help)    Keywords: security, virus, spyware

Hello. I have a Windows XP Professional system that is FUBAR.

* When I try to launch a shortcut from the desktop, start menu, or control panel, I get the following error:
"WINDOWS CANNOT ACCESS THE SPECIFIED DEVICE, PATH, OR FILE. YOU MAY NOT HAVE THE APPORPRIATE PERMISSIONS TO ACCESS THE ITEM."

* I can not launch regedit, and I get the same error
* I can not install applications, even as Administrator. (I tried installing AdAware 2007).

* I can navigate the hard drive and some things open, some things do not.
* I checked the Sharing & Security tab and set the EVERYONE account to FULL ACCESS
* I checked the Local Security Policy for anything that prevents me from installing applications, but I can't seem to find this setting.
* The computer is "protected" with TrendMicro PC-Cillin 2007 and nothing was detected as far as virus/spyware.

THANKS for any help.

Source: http://community.livejournal.com/computer_help/809722.html

Date: 08/22/07 (Security)    Keywords: security

Workers at many companies surveyed by security firm Sophos say access to Facebook is blocked over productivity, security concerns.

Source: http://news.zdnet.com/2100-1009_22-6203889.html

Date: 08/24/07 (Computer Help)    Keywords: security

After two days of hell of trying to figure this problem out. Windows decides to do an updated, and after it restarted there was no longer a blue screen.

But... I am still having problem installing my Norton Internet Security 2007, Does anyone know how to fix this problem.

Thank you once again.

Source: http://community.livejournal.com/computer_help/810437.html

Date: 08/24/07 (Security)    Keywords: software, security, yahoo

Eight days after the release of exploit code for code execution holes in the Yahoo Messenger IM client, Yahoo has shipped a new version with patches for its Windows user base.The latest security makeover, which is being distributed via the software's auto-update mechanism, covers two separate vulnerabilities that can be...

Source: http://blogs.zdnet.com/security/?p=473

Date: 08/24/07 (Security)    Keywords: security, web

IT managers in small, midsize companies believe staff members are responsible for online-security problems, survey finds. IT managers in small and midsize businesses blame their fellow workers for online security breaches--despite the fact many small enterprises still don't enforce Web usage policies.More than a fourth of European IT managers in...

Source: http://news.zdnet.com/2100-1009_22-6204295.html

Date: 08/27/07 (Security)    Keywords: software, security, google

It's a bit ironic that Vint Cerf is touting Google's infrastructure and warning users about unreliable software and poor security when both Blogger and Google Analytics were reported unavailable this week. To top it off, Google also recently pulled the plug on their paid video content services -- causing...

Source: http://blogs.zdnet.com/Google/?p=704