SEARCH RESULTS
 
Showing 1-10 of 319 records
 
Expand article

Download: Server Core Potential Security Benefit

The Article has images
2008-06-12 16:16:00 by jrjones in Jeff Jones Security Blog
With Windows Server 2008, the Microsoft Windows Server team introduced a new installation option Server Core Server Core is a minimal install option of Windows Server that excludes much of the GUI and many applications such as Internet Explorer and Windows Media Player that would be present in a default installation In this very short report (...
 
Tags: server core, windows server, theoretical server core, security, short report, minimal install option, security progress, day vulnerability study, report
 
 
 
 
Expand article

Microsoft to Rate Exploit Potential

2008-08-11 07:30:39 by Editor in Computerworld Security News
 
Microsoft plans to begin rating the potential exploitability of security flaws in its software, based on an assessment of the likelihood that attackers will try to take advantage of them
 
Tags: potential exploitability, microsoft plans, security flaws, attackers, advantage, assessment, software, based, likelihood
 
 
 
 
Expand article

Homeland Security Cost-Benefit Analysis

2008-07-17 06:43:25 by schneier in Schneier on Security
 
...potential terrorist targets is essentially infinite. 2. The probability that any individual target will be attacked is essentially zero. 3. If one potential target happens to enjoy a degree of protection, the agile terrorist usually can readily move on to another one. 4. Most targets are "vulnerable" in that it is not very difficult to damage...
 
Tags: potential targets invulnerable, potential targets, targets, protection, invulnerable, protection measures, paper, paper attempts, potential terrorist targets
 
 
 
 
Expand article

Unauthorized access to the Stryker Corporation VPN

The Article has images
2008-04-17 12:45:57 by Evan Francen in The Breach Blog
...potential criminal investigation. Initially, the FBI asked Stryker not to give notice of the security incident, so as not to interfere with its investigation But on March 20, 2008, the FBI informed Stryker that based on current information, it would not pursue a criminal investigation Stryker will provide a notice of the security incident...
 
Tags: stryker, stryker corporation, stryker suspects, stryker immediately, immediately, stryker intends, stryker servers, servers, evan user
 
 
 
 
Expand article

Assessing the Security Benefits of Cloud Computing

The Article has images
2008-07-21 07:00:15 by Craig Balding in Cloud Security
...potential security benefits of Cloud Computing In my view, there are some strong technical security arguments in favour of Cloud Computing - assuming we can find ways to manage the risks With this new paradigm come challenges and opportunities. The challenges are getting plenty of attention - Im regularly afforded the opportunity to comment...
 
Tags: benefits, cloud, security, technical security benefits, based, virtualization based cloud, efficient security software, security software, cloud market
 
 
 
 
Expand article

KimsCrafts e-commerce breach affects 4,500

The Article has images
2007-12-14 16:08:39 by Evan Francen in The Breach Blog
...potential breach of the security on the KimsCrafts e-commerce site. The breach affects approximately 4,500 KimsCrafts customers Reference URL The New Hampshire State Attorney General breach notification Forum of Incident Response and Security Teams (FiRST) report Report Credit The New Hampshire State Attorney General Response From the...
 
Tags: kimscrafts, breach, e-commerce, credit file, credit, credit card data, kimscrafts e-commerce site, data, data security firm
 
 
 
 
Expand article

Oak Ridge National Laboratory visitor information exposed

The Article has images
2007-12-11 13:45:21 by Evan Francen in The Breach Blog
...Potential Identity Theft Page Report Credit Oak Ridge National Laboratory Response From the official breach notification site and sources cited above Oak Ridge National Laboratory has been bombarded by a coordinated phishing attack aimed at multiple national labs and may have unwittingly handed over to attackers the personal information of...
 
Tags: information, personal information, security, store social security, retrieve information, regular information security, security systems, cyber-security issues, security breach
 
 
 
 
Expand article

The Naval Surface Warfare Center warns employees

The Article has images
2008-01-16 09:51:41 by Evan Francen in The Breach Blog
...potential identity theft and to urge them to contact their creditor bureaus in the wake of a reported attempt to illegally obtain a credit card using an employees personal information NSWCDD officials were notified on Jan. 8 that four individuals had been arrested in Bensalem Township, Pa., on Jan. 5, 2008, for attempted identity fraud ...
 
Tags: company data destruction, company data, employees personal information, personal information, destruction, information, information security, employees, employment information
 
 
 
 
Expand article

Corporate Spying

2008-01-16 12:21:41 by schneier in Schneier on Security
 
...potential threats. It tracks customers who buy propane tanks, for example, or anyone who has fraudulently cashed a check, or anyone making bulk purchases of pre-paid cell phones, which could be tied to criminal activities. "If you try to buy more than three cell phones at one time, it will be tracked," he reportedly told the audience ...
 
Tags: agents, intelligence agents, wal-mart, off-duty police officers, officers, wal-mart employee fired, cell-phone calls, phone calls, obtain
 
 
 
 
Expand article

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle
 
...potential to introduce or exacerbate security weaknesses. These include buffer overflows, format string vulnerabilities, and type mismatch errors A deeper reading of the cryptographic concerns (page 29 in report) notes concerns (amongst others) over the use of a flawed implementation of the SHA hash algorithm and use of the Data Encryption...
 
Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system