Date: 02/20/08     Keywords: software, microsoft

Microsoft outlined what it does with incoming vulnerability research, how it designates flaws and playing the cloak-and-dagger game with hackers. In a Q&A with Ryan Naraine, Jonathan Ness, the lead software engineer on Microsoft's SWI Defense team, addressed a big emerging issue between the software giant and...

Source: http://blogs.zdnet.com/security/?p=892

Date: 02/20/08     Keywords: microsoft

Notable headlines: Ed Bott: Another take on Vista vs. XP benchmarks Larry Dignan: HP: No tech slowdown here AT&T matches Verizon: Welcome to the wireless price wars Mary Jo Foley: Microsoft suspends distribution of Vista SP1 prerequisite update ...

Source: http://blogs.zdnet.com/BTL/?p=8049

Date: 02/19/08     Keywords: shopping

44% of low-income Americans say they strongly agree that they don’t like sending personal information or credit card numbers over the internet, according to Pew Internet. 22% of Americans with household incomes below $25,000 annually, strongly agree that online shopping is convenient. For upper income Americans - household where the...

Source: http://blogs.zdnet.com/ITFacts/?p=13972

Date: 02/19/08     Keywords: security, web

Gene Hodges, CEO of Websense, has had a busy year. The company has integrated the acquisition of SurfControl, built out its security suite and delivered strong financial results. "Last year was one of rapid change," said Hodges, referring to the integration of SurfControl and removing 50 percent...

Source: http://blogs.zdnet.com/security/?p=890

Date: 02/19/08     Keywords: technology, security, virus, spyware, spam

D-Link generated a lot of buzz when it unveiled the SecureSpot Internet Security Device at CES in 2007. The unit sits between your broadband modem and router, acting as a hardware shield against spam, viruses, and spyware. Now D-Link has integrated an updated version of the SecureSpot technology into its...

Source: http://blogs.zdnet.com/soho-networking/?p=145

Date: 02/16/08     Keywords: web

Amazon has issued a statement that adds a little more clarity to its Web services outage on Friday. Here's Amazon's explanation of the S3 outage, which wreaked havoc on startups and other enterprises relying on Amazon's cloud. Early this morning, at 3:30am PST, we started seeing...

Source: http://blogs.zdnet.com/BTL/?p=8010

Date: 02/15/08     Keywords: security

Hard to believe that a SIM (Security Information Management) company has made it "out".  Arcsight went public yesterday at $9/share. Pure play security company IPO's are few and far between.   Managing  alerts  and looking for abnormal behavior has been a difficult market to crack.  But, based on their S-1, Arcsight...

Source: http://blogs.zdnet.com/threatchaos/?p=539

Date: 02/15/08     Keywords: no keywords

Update 12/16/08, 2:30PM EST: Nick Carr wrote a good post-mortem. So did Larry Dignan. Update 12/16/08, 11:00AM EST: Amazon reports the cause of the problem: Early this morning, at 3:30am PST, we started seeing elevated levels of authenticated requests from multiple users in one of our...

Source: http://blogs.zdnet.com/projectfailures/?p=602

Date: 02/15/08     Keywords: security, web

In a blog posted yesterday on Opera's website, blogger Claudio Santambrogio tells us that he isn't happy about the way Mozilla handled an Opera security disclosure.  Here's what Claudio had to say: Mozilla notified us of one security issue ( ) the day before they published their public...

Source: http://blogs.zdnet.com/security/?p=884

Date: 02/14/08     Keywords: google

Ben Edelman has created a nice Valentine's day post.  I am sure the folks behind C-NetMedia are swooning over it even now.  Ben eviscerates these guys.  First he tracks all of the deceptive Google ads that make C-NetMedia's product appear to be "official" and attempt to associate them with Spybot...

Source: http://blogs.zdnet.com/threatchaos/?p=537

Date: 02/14/08     Keywords: no keywords

Cisco on Wednesday delivered patches to plug multiple overflow and denial of service vulnerabilities. In an advisory Cisco said multiple IP phone devices running the Skinny Client Control Protocol (SCCP) firmware were impacted. The vulnerabilities range from arbitrary code executions on a phone to forced phone reboots....

Source: http://blogs.zdnet.com/security/?p=882

Date: 02/14/08     Keywords: web

Adobe has delivered three new bulletins warning about a critical code injection vulnerability that could allow an attacker to take over a system. The two primary platforms affected--Flash Media Server 2.0.4 and Adobe Connect Enterprise Server--are enterprise applications. As Adobe increasingly becomes a Webtop standard via Flash,...

Source: http://blogs.zdnet.com/security/?p=881

Date: 02/13/08     Keywords: security

Ryan Naraine has cooked up a list of the most influential people in security. Here's the list packaged in a slideshow, which is annoyingly set on fast forward. For instance, I viewed two slides, went to bathroom and by time came back the gallery was over (and...

Source: http://blogs.zdnet.com/security/?p=880

Date: 02/13/08     Keywords: software, security

Bain Capital, the private equity firm trying to engineer a takeover of 3Com with Huawei Technologies, is reportedly offering to divest security software firm TippingPoint to win U.S. approval. According to Reuters, Bain offered up TippingPoint and other proposals to safeguard national security interests. ...

Source: http://blogs.zdnet.com/security/?p=879

Date: 02/13/08     Keywords: browser, security

Mozilla launched the third beta of its Firefox 3 browser Tuesday night with enhanced security features. Firefox 3 Beta 3 contains more than 1,300 changes from the second beta to improve performance. Meanwhile, Mozilla improved some of the security features in Firefox 3 Beta 3. Among the...

Source: http://blogs.zdnet.com/security/?p=878

Date: 02/12/08     Keywords: microsoft

Updated: Microsoft delivered 11 patches on Tuesday addressing 17 vulnerabilities. Six updates fix critical flaws and five address important vulnerabilities, but an already exploited Excel zero day was left unpatched. Microsoft's advisory last week noted 12 patches fixing 7 critical vulnerabilities. One critical Windows vulnerability was cut...

Source: http://blogs.zdnet.com/security/?p=877

Date: 02/12/08     Keywords: no keywords

There is a reason you're reading a lot of stories right now about heart health. It's American Heart Month. (Picture from Yale New Haven Hospital.) But the news isn't good. Some if it is as serious as, well, a heart attack. As this blog...

Source: http://healthcare.zdnet.com/?p=707

Date: 02/12/08     Keywords: software

George Ou highlights problems with Vista's speech recognition software and wonders why the issue hasn't been fixed for more than a year. The reason: Risk management. Here's George's description of what he calls a flaw in Vista's speech recognition--some folks debate whether it's a flaw or not....

Source: http://blogs.zdnet.com/security/?p=876

Date: 02/12/08     Keywords: security

This is a note to all my readers.  All of my future security-related content will be appearing on the ZDNet Zero Day blog instead of here in "Real World IT".  Some of you may have wondered why I haven't posted any security-related content in a while because I've been posting on Zero Day for quite...

Source: http://blogs.zdnet.com/Ou/?p=999

Date: 02/12/08     Keywords: no keywords

Not quite, but an interesting post on Ars Technica suggests that they might finally be turning a corner in terms of providing digital content, instead of relying on traditional paper publishing. Why do we care here in Ed Tech? Because paper publishing costs schools exorbitant sums in textbooks...

Source: http://education.zdnet.com/?p=1521