SEARCH RESULTS
 
Showing 1-10 of 61 records
 
Expand article

Recent Symantec and IBM vulnerabilities, giblets, banned APIs and the SDL

2008-01-04 23:37:00 by sdl in The Security Development Lifecycle
 
...significantly in Microsoft products, in the past we had many. Thankfully, the SDL's fuzzing requirements have significantly helped reduce the number of parsing-related vulnerabilities in our products As I mentioned, the vulnerabilities are not in Symantec code; they are in dependencies, in DLLs provided by another company. The SDL refers to...
 
Tags: linker sdl requirements, sdl requirements, ibm, sdl, requirements, symantec, bugs affect ibm, bugs, sdl refers
 
 
 
 
Expand article

IT GRC is the next evolution for the Enterprise Security Organization

2008-03-17 15:35:00 by Ryan Shopp in practical risk management
 
...significantly working on their IT-GRC strategy, was spending about 12% of their IT budget on IT-GRC snip Bottom line, the solutions in the IT-GRC space continue to mature and evolve, BUT the truth is - they can and will help save Fortune 500 IT Security organizations money through automation today! There is no reason a Fortune 500 company...
 
Tags: grc, it-grc strategy, it-grc, it-grc space continue, grc guru, fortune, save fortune, security organizations money, significantly
 
 
 
 
Expand article

Do you trust the merchants to protect your credit cards?

2007-12-11 09:01:26 by Khalid Kark in Security & Risk Management
 
...significantly reduce the risk of the security breaches, which is the ultimate goal of PCI The opponents of this proposal state that it will be a logistical nightmare and cost millions of dollars. To implement this proposal, all card processors (banks) would need to upgrade their infrastructure to process the new payment mechanism and provide...
 
Tags: card industry, card, payment card industry, credit card, merchants, credit card companies, provide merchants, merchants change, security
 
 
 
 
Expand article

Oracle misplaces computer containing personal information

The Article has images
2007-12-13 12:07:05 by Evan Francen in The Breach Blog
...significantly-sized security presence Oracle is notifying potentially affected individuals Evan] There's "potentially" again we have determined that the incident may have affected personal information relating to 132 individuals We have also engaged Kroll Inc., the world's leading risk consulting company, to provide you with access to its...
 
Tags: personal information, oracle, information, sensitive personal information, assume oracle, oracle corporation recently, breach, hampshire breach notification, oracle public relations
 
 
 
 
Expand article

Oak Ridge National Laboratory visitor information exposed

The Article has images
2007-12-11 13:45:21 by Evan Francen in The Breach Blog
...significantly reduced through regular information security training and awareness. People will be people, no matter what Final note, I am curious why ORNL needs to store Social Security numbers in the first place Past Breaches Unknown
 
Tags: information, personal information, security, store social security, retrieve information, regular information security, security systems, cyber-security issues, security breach
 
 
 
 
Expand article

Speaking of Security Podcast #72

2007-08-13 17:00:00 by Podcast Producers in Speaking of Security, the RSA Blog and Podcast
 
...significantly expand RSA's Data Security Strategy, adding key technologies to help discover, classify and protect sensitive information. Tom Corn, Vice President of Products for RSA's Data Security Group tell us more. And the RSA Web Seminar Series presents " Combining Network Access Control (NAC) and Strong Authentication " on with...
 
Tags: significantly expand rsa, rsa, data security, data security strategy, protect sensitive information, week rsa, network access control, juniper networks, vice president
 
 
 
 
Expand article

How effective is the wisdom of crowds as a security mechanism?

2007-12-21 15:26:10 by Tyler Moore in Light Blue Touchpaper
 
...significantly faster in confirming phishing websites. This is because companies can afford employees to verify their submissions We also found that users who vote less often are more likely to vote incorrectly, and that users who commit many errors tend to have voted on the same URLs Despite these problems, we do not advocate against...
 
Tags: phishtank, phishtank compare, leaves phishtank, users, phishtanks users, vote maliciously, vote, active users, urls
 
 
 
 
Expand article

Microsoft Security Intelligence Report - 1st Half 2007

The Article has images
2007-10-23 16:35:43 by jrjones in Jeff Jones Security Blog
...significantly, while the overall total flattened out. In the full report, you'll also note a trend reversal with complexity to exploit dropping as well There are a couple of other interesting results that I want to call out that you should examine with more detail in the full report Social engineering plays a growing role in overall malware...
 
Tags: total vulnerabilities, vulnerabilities, report, severity vulnerabilities continue, software vulnerabilities, malicious software, sir results, software, results
 
 
 
 
Expand article

MySpace, states team up for children's safety

2008-01-14 00:00:00 by HASH0x8b82cb0 in Network World on Security
 
An agreement between MySpace and most U.S. state attorneys general will significantly increase the safety of minors on the popular social network and boost the ability of police to catch and prosecute sexual predators who use the Web, said MySpace and several participating attorneys general Monday
 
Tags: myspace, prosecute sexual predators, popular social network, attorneys, safety, significantly increase, boost, police, monday