SEARCH RESULTS
 
Showing 1-10 of 70 records
 
Expand article

What Is the Comprehensive National Cybersecurity Inititative?

2008-05-13 12:54:34 by schneier in Schneier on Security
 
The Department of Homeland Security has a new $200 million Comprehensive National Cybersecurity Inititative (CNCI). Congress is happy to fund it, but kind of wants to know what it's going to do I have to admit, I'm kind of curious myself
 
Tags: homeland security, fund, department, congress, cnci, curious, admit, happy
 
 
 
 
Expand article

Malware Serving Exploits Embedded Sites as Usual

The Article has images
2008-01-09 18:04:58 by HASH0x8957398 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...comprehensive multiple IFRAMES loading campaigns. qx13.cn/3.htm (61.174.61.94) (IE COM CreateObject Code Execution (MS06-042) which loads sp. 070808.net/23.htm , (75.126.3.218) where the following try to load as well sp.070808.net/in.htm wc.070808.net/37.htm az.sbb22.com/hh.htm um.uuzzvv.com/uu.htm fa.55189.net acc.jqxx.org/40.htm...
 
Tags: htm, load uc147, uc147, loads 8v8, 8v8, load 8v8, iframes, recent realplayer exploit, secondary iframes
 
 
 
 
Expand article

What If All Vulnerabilities Had This Disclosure Timeline?

2008-02-07 02:08:33 by Chris Wysopal in Zero in a bit
 
...comprehensive assessment. A cooperative solution also promotes good security hygiene on the vendor side. We have found that once vendors know that their big customers are using Veracodes Vendor SecurityReview service they are more likely to proactively start doing security testing within their SDLC. A vendor cant bluff their way out of a...
 
Tags: vulnerability finders, vulnerability, vulnerability exists, heap overflow vulnerability, gleg realplayer vulnerability, gleg customer, customer, gleg, exploit code
 
 
 
 
Expand article

What type of security do I need in my Virtual Network?

The Article has images
2008-02-24 14:18:29 by John Peterson in Security In The Virtual World
...comprehensive and secure solution vs. a single point solution Think about this for a moment. None of the following vendors really compete with each other, in fact they can complement each other Blue Lane - Provides Inline Patch Management Reflex Security - Provides Intrusion Prevention Montego Networks - Provides Secure Switching (Firewalling...
 
Tags: security, switch, virtual switch, security switch, comprehensive security solution, comprehensive, solution, reflex, reflex security
 
 
 
 
Expand article

Learn from the latest Internet Security Threat Report update

2008-04-17 13:00:00 by Editor in Computerworld Security News
 
...comprehensive sources of Internet threat data in the world. It includes more than 40,000 sensors monitoring networks in more than 180 countries, malicious code reports from more than 120 million client, server, and gateway systems and one of the world's most comprehensive vulnerability databases, consisting of more than 25,000 recorded...
 
Tags: webcast, webcast summary, malicious code reports, malicious code, free webcast, trends, current trends, data, internet threat data
 
 
 
 
Expand article

What type of security do I need in my Virtual Network?

The Article has images
2008-02-24 14:18:29 by John Peterson in Security In The Virtual World
...comprehensive and secure solution vs. a single point solution Think about this for a moment. None of the following vendors really compete with each other, in fact they can complement each other Blue Lane - Provides Inline Patch Management Reflex Security - Provides Intrusion Prevention Montego Networks - Provides Secure Switching (Firewalling...
 
Tags: security, switch, virtual switch, security switch, comprehensive security solution, comprehensive, solution, reflex, reflex security
 
 
 
 
Expand article

Laptop stolen from a Quest Diagnostics employee

The Article has images
2008-06-17 12:09:12 by Evan Francen in The Breach Blog
...comprehensive physical, technical and administrative processes and employee training designed to protect the privacy and security of data and minimize the risk of inappropriate access to sensitive information Evan] Nice! This statement sounds very impressive and uses some common information security best practices lingo. Did any of these...
 
Tags: information, personal information, sensitive confidential information, identifiable information, breach arose, breach, confidential information, breach description, security breach
 
 
 
 
Expand article

A Simple Situation Model for Complex Events

2008-07-15 09:29:06 by Tim Bass in The Complex Event Processing Blog
 
...Comprehensive model (a comprehensive collection of episodes Hence, in a nutshell, it is imperative that we have a situation model for representing complex events if we are going to move CEP forward. The simple model in this post may or may not be the right one to develop, but at least we have something to talk about. Ideally, the model should...
 
Tags: model, situation, situation model, workable model, simple model, complex events, situation models, events, comprehensive model
 
 
 
 
Expand article

Web Services and XML Security Training at OWASP

2008-08-28 08:55:59 by Gunnar Peterson in 1 Raindrop
 
...comprehensive web services security policy creation and enforcement, deploying decentralized security services Apache Ramparts modecurity Testing Soapbox - web services security testing WebScarab - web services fuzzing Static Analysis Fortify SC A - how to scan your web services code for security bugs *before* you deploy This is just a quick...
 
Tags: security, soa security standards, security standards, soa security, soa, security critical environment, information security, information, application security principles