SEARCH RESULTS
 
Showing 1-10 of 312 records
 
Expand article

Clickjacking causing Browser woes

2008-10-12 23:16:28 by Doug Woodall in The Spyware Biz Blog
 
...similar Cross Site Request Forgery (CSRF) vulnerability How clickjacking works: when you visit a compromised web site, your browser loads an invisible button that hovers below the mouse pointer. When you visit a legitimate site like online banking or e-mail, when you click on a link, youre actually clicking the invisible button placed there...
 
Tags: browser, site, similar cross site, invisible button, web site, browser loads, whitehat security, malicious code, visit
 
 
 
 
Expand article

July 2007 - Operating System Vulnerability Scorecard

The Article has images
2007-08-16 22:47:26 by jrjones in Jeff Jones Security Blog
...similar but different move, created a new psdb page for their version Enterprise Linux v10 SP1 products. At first, I thought they had not released any patches since mid-June. Nope. Let me give you details. If you want to see Patches for SLES10 for 2007, they're here: http://support.novell.com/linux/psdb/i386SUSESLES10.html Patches for prior...
 
Tags: server, linux server builds, server charts, charts, ytd charts, non-linux products, linux products, linux products comments, common server roles
 
 
 
 
Expand article

Chipotle Mexican Grill employee information on USi stolen laptop

The Article has images
2008-04-26 22:39:08 by Evan Francen in The Breach Blog
...similar) appears in each of the three breach notifications that I have read about this incident. You could almost copy and paste it, eh? It is probably too early for any evidence of misuse (a smart fraudster would wait until the identity theft protection runs out, or would sell the information to someone else). Password protection (likely...
 
Tags: information, information security, confidential information, usi, information security improvement, chipotle, information security policies, chipotle information, evan
 
 
 
 
Expand article

How Secure is Secure?

2008-05-08 16:46:00 by sdl in The Security Development Lifecycle
 
...similar in that the threats and risks each of them must protect against are reasonably well understood and relatively static (meaning the threats dont change much over time). Computer security is still evolving with new classes of attacks still being discovered, and while hackers understand how to exploit known types of vulnerabilities...
 
Tags: security metrics, software security metrics, implementation vulnerabilities, potential implementation vulnerabilities, metrics, secure, software, discretionary security protection, security protection
 
 
 
 
Expand article

Boston Court's Meddling With 'Full Disclosure' Is Unwelcome

2008-08-21 04:00:00 by Bruce Schneier in Wired Security
 
...similar cases in the Netherlands and the United States, courts have recently grappled with the computer-security norm of "full disclosure," asking whether researchers should be permitted to disclose details of a fare-card vulnerability that allows people to ride the subway for free The "Oyster card" used on the London Tube was at issue in the...
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
Expand article

Full Disclosure and the Boston Farecard Hack

2008-08-26 06:04:49 by schneier in Schneier on Security
 
...similar cases in the Netherlands and the United States, courts have recently grappled with the computer-security norm of "full disclosure," asking whether researchers should be permitted to disclose details of a fare-card vulnerability that allows people to ride the subway for free The "Oyster card" used on the London Tube was at issue in the...
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
Expand article

Good to Great, Built to Last Whats Next for Creating Great Companies

2008-09-22 18:16:23 by David Link in ScienceLogic
 
...similar economic conditions, similar competition for top human resources, and a similar set of huge unknowns What is the single biggest element of difference Not a function of the cards you are dealt, or circumstance it is conscious choice and discipline Jims key principles & disciplines that have come from the studies we have worked on...
 
Tags: companies, people, collins, collins quantitative style, average companies, manage people, exceptional companies, jim collins author, conference keynote presentations
 
 
 
 
Expand article

Skype Clarifies: The Bug Has Been Fixed

2007-08-22 12:54:28 by Editor in Cheap Hack
 
...similar situations should be handled. Once we found the algorithmic fix to ensure continued operation in the face of high numbers of client reboots, the efforts focused squarely on stabilising the P2P core. The fix means that we've tuned Skype's P2P core so that it can cope with simultaneous P2P network load and core size changes similar to...
 
Tags: skype, tuned skype, p2p core, core, bug, similar situations, similar, fix, tuned
 
 
 
 
Expand article

Identity Framework Probable Feature List

The Article has images
2007-12-16 06:42:00 by Keith Brown in Security Briefs
...similar These are a rather concise set notes that I've taken while looking over his code more closely. I created a wiki page to quickly hack up this list. Here's what it looks like now Fx helps you implement a custom STS STS can issue managed cards (see below Fx provides a base class for your STS, (it's currently called SecurityTokenService...
 
Tags: informationcard login control, login control, information card serializer, information, control, user authentication methods, user, custom sts, card