SEARCH RESULTS
 
Showing 1-10 of 92 records
 
Expand article

What Is the Comprehensive National Cybersecurity Inititative?

2008-05-13 12:54:34 by schneier in Schneier on Security
 
The Department of Homeland Security has a new $200 million Comprehensive National Cybersecurity Inititative (CNCI). Congress is happy to fund it, but kind of wants to know what it's going to do I have to admit, I'm kind of curious myself
 
Tags: homeland security, fund, department, congress, cnci, curious, admit, happy
 
 
 
 
Expand article

Hack Forces Twitter Into 'Full Security Review'

2009-01-07 00:00:00 by HASH0x8b418dc in Network World on Security
 
Twitter Inc. has launched a comprehensive review of the defenses in its popular social network and microblogging service after hackers last week hijacked the accounts of several high-profile users
 
Tags: popular social network, twitter, comprehensive review, high-profile users, week, service, defenses, accounts, hackers
 
 
 
 
Expand article

Applying SDL Principles to Legacy Code

2008-10-27 17:24:00 by sdl in The Security Development Lifecycle
 
...comprehensive identification and remediation of design flaws across legacy features. Even so, improving code quality through the use of secure coding standards offers a unique combination of high impact, applicability to features, and ability to be carried out by a core team that makes it a sensible first step 2. The security team might...
 
Tags: legacy code, mature security processes, security processes, cross-component security requirements, security requirements, processes, code, requirements, legacy code poses
 
 
 
 
Expand article

Malware Serving Exploits Embedded Sites as Usual

The Article has images
2008-01-09 18:04:58 by HASH0x8957398 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...comprehensive multiple IFRAMES loading campaigns. qx13.cn/3.htm (61.174.61.94) (IE COM CreateObject Code Execution (MS06-042) which loads sp. 070808.net/23.htm , (75.126.3.218) where the following try to load as well sp.070808.net/in.htm wc.070808.net/37.htm az.sbb22.com/hh.htm um.uuzzvv.com/uu.htm fa.55189.net acc.jqxx.org/40.htm...
 
Tags: htm, load uc147, uc147, loads 8v8, 8v8, load 8v8, iframes, recent realplayer exploit, secondary iframes
 
 
 
 
Expand article

What If All Vulnerabilities Had This Disclosure Timeline?

2008-02-07 02:08:33 by Chris Wysopal in Zero in a bit
 
...comprehensive assessment. A cooperative solution also promotes good security hygiene on the vendor side. We have found that once vendors know that their big customers are using Veracodes Vendor SecurityReview service they are more likely to proactively start doing security testing within their SDLC. A vendor cant bluff their way out of a...
 
Tags: vulnerability finders, vulnerability, vulnerability exists, heap overflow vulnerability, gleg realplayer vulnerability, gleg customer, customer, gleg, exploit code
 
 
 
 
Expand article

What type of security do I need in my Virtual Network?

The Article has images
2008-02-24 14:18:29 by John Peterson in Security In The Virtual World
...comprehensive and secure solution vs. a single point solution Think about this for a moment. None of the following vendors really compete with each other, in fact they can complement each other Blue Lane - Provides Inline Patch Management Reflex Security - Provides Intrusion Prevention Montego Networks - Provides Secure Switching (Firewalling...
 
Tags: security, switch, virtual switch, security switch, comprehensive security solution, comprehensive, solution, reflex, reflex security
 
 
 
 
Expand article

Learn from the latest Internet Security Threat Report update

2008-04-17 13:00:00 by Editor in Computerworld Security News
 
...comprehensive sources of Internet threat data in the world. It includes more than 40,000 sensors monitoring networks in more than 180 countries, malicious code reports from more than 120 million client, server, and gateway systems and one of the world's most comprehensive vulnerability databases, consisting of more than 25,000 recorded...
 
Tags: webcast, webcast summary, malicious code reports, malicious code, free webcast, trends, current trends, data, internet threat data
 
 
 
 
Expand article

What type of security do I need in my Virtual Network?

The Article has images
2008-02-24 14:18:29 by John Peterson in Security In The Virtual World
...comprehensive and secure solution vs. a single point solution Think about this for a moment. None of the following vendors really compete with each other, in fact they can complement each other Blue Lane - Provides Inline Patch Management Reflex Security - Provides Intrusion Prevention Montego Networks - Provides Secure Switching (Firewalling...
 
Tags: security, switch, virtual switch, security switch, comprehensive security solution, comprehensive, solution, reflex, reflex security
 
 
 
 
Expand article

Laptop stolen from a Quest Diagnostics employee

The Article has images
2008-06-17 12:09:12 by Evan Francen in The Breach Blog
...comprehensive physical, technical and administrative processes and employee training designed to protect the privacy and security of data and minimize the risk of inappropriate access to sensitive information Evan] Nice! This statement sounds very impressive and uses some common information security best practices lingo. Did any of these...
 
Tags: information, personal information, sensitive confidential information, identifiable information, breach arose, breach, confidential information, breach description, security breach