SEARCH RESULTS
 
Showing 1-10 of 1000 records
 
Expand article

Poor security quality in software. Someone is watching over me.

The Article has images
2008-07-30 14:51:49 by Chris Wysopal in Zero in a bit
Last week, Ben Worthen of the Wall Street Journal had a conversation with Howard Schmidt about the vulnerabilities in purchased software while Howard was waiting on line to have his iPhone upgraded Howard Schmidt, who was once the CSO of Microsoft, knows a thing or two about vendors shipping insecure software. He offers this advice relating to...
 
Tags: software, approach insecure software, insecure software, repeatable software security, secure online environment, environment, secure, secure software, software assurance
 
 
 
 
Expand article

Poor Security Quality In Software; Someone Is Watching Over Me

The Article has images
2008-07-30 14:51:49 by Chris Wysopal in Zero in a bit
Last week, Ben Worthen of the Wall Street Journal had a conversation with Howard Schmidt about the vulnerabilities in purchased software while Howard was waiting on line to have his iPhone upgraded Howard Schmidt, who was once the CSO of Microsoft, knows a thing or two about vendors shipping insecure software. He offers this advice relating to...
 
Tags: software, approach insecure software, insecure software, repeatable software security, secure online environment, environment, secure, secure software, software assurance
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software - Part Thirteen

The Article has images
2008-11-12 16:57:26 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
What is the difference between a reactive and proactive threat intell? A reactive threat intell is assessing a campaign, individual, a group of individuals, how are they related to one another, and what have they been doing in the past, based exclusively on a lead that's been found within the past couple of hours Try the very latest rogue...
 
Tags: security software, software, fake security software, popular software, diverse portfolio, wordpress, wordpress accounts, proactive threat intell, net
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software - Part Seven

The Article has images
2008-09-30 16:35:15 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
In case you haven't heard - Microsoft and the Washington state are suing a U.S based -- naturally -- "scareware" vendor Branch Software We won't tolerate the use of alarmist warnings or deceptive 'free scans' to trick consumers into buying software to fix a problem that doesn't even exist," Washington Attorney General Rob McKenna said. "We've...
 
Tags: software, fake security software, vendor branch software, vendor, diverse portfolio, fake porn sites, software bundles, branch software, norton antivirus
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software - Part Fourteen

The Article has images
2008-11-27 07:47:55 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
You didn't even think for a second that the supply of typosqutted domains serving packed and triple crypted to the point where the binary is not longer executing, fake security software domains is declining? With the upcoming holidays and the usual peak of web traffic, malicious activity on all fronts is prone to increase during December....
 
Tags: fake security software, diverse portfolio, sawert alliance, road town, martti seodancergmail, upper flat, city, road, sl3270 lasko
 
 
 
 
Expand article

Contributing To Open Source Software Security

2008-05-05 11:38:00 by Niels Provos in Google Online Security Blog
 
Written by Will Drewry From operating systems to web browsers , open source software plays a critical role in the operation of the Internet. The security of open source software is therefore quite important, as it often interacts with personal information -- ranging from credit card numbers to medical records -- that needs to be kept safe....
 
Tags: security, source software, software, additional security contributions, background, operational security background, security professionals, security vulnerability mediation, manual security analysis
 
 
 
 
Expand article

Software Security Market

2008-08-25 13:18:59 by Gunnar Peterson in 1 Raindrop
 
Information Security budgets are pretty crufty , they are an accumulation of decisions but the analysis that led to these decisions is rarely revisited, it just snowballs. So the normal Information Security budget is just a legacy artifact of when the network was the greatest vulnerability. Gary McGraw took a pass at reviewing the numbers in...
 
Tags: software, software security market, software security sectors, space, tools space, compare software security, software security sherpas, software security space, software security
 
 
 
 
Expand article

Contributing To Open Source Software Security

2008-05-05 11:38:00 by Niels Provos in Google Online Security Blog
 
Written by Will Drewry From operating systems to web browsers , open source software plays a critical role in the operation of the Internet. The security of open source software is therefore quite important, as it often interacts with personal information -- ranging from credit card numbers to medical records -- that needs to be kept safe....
 
Tags: security, source software, software, additional security contributions, background, operational security background, security professionals, security vulnerability mediation, manual security analysis
 
 
 
 
Expand article

A Diverse Portfolio of Fake Security Software - Part Five

The Article has images
2008-09-02 05:04:58 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...software-for-me08 .com - (78.157.143.250 software-for-me-08 .com softwarefor-me2008 .com softwarefor-me-2008 .com software-forme08 .com doctor2antivirus .com - (217.112.94.226; 87.248.163.56 doctor5antivirus .com doctor6antivirus .com doctor7antivirus .com doctor8antivirus .com doctorantivirus2008a .com doctor-antivirus .com bcodecnow .net ...
 
Tags: fake security software, net, diverse portfolio, introduce client-side exploits, malicious isps, exploits, sql injection attack, lazy summer days, domains