SEARCH RESULTS
 
Showing 1-10 of 1000 records
 
Expand article

Security Matters: Lesson From the DNS Bug: Patching Isn't Enough

2008-07-23 19:00:00 by Bruce Schneier in Wired Security
 
Despite the best efforts of the security community, the details of a critical internet vulnerability discovered by Dan Kaminsky about six months ago have leaked. Hackers are racing to produce exploit code, and network operators who haven't already patched the hole are scrambling to catch up. The whole mess is a good illustration of the problems...
 
Tags: security, security engineer, security engineer brings, security holes, smart design choice, design, security engineers, kaminsky, dan kaminsky
 
 
 
 
Expand article

Matt Asay again shows that he doesn't know much about open source security

2008-05-15 22:43:17 by HASH0x8b563c4 in StillSecure, After All These Years
 
I often comment or blog disagreeing with Matt Asay and his views on open source and security. Frankly from the comments Matt leaves back, I think he views me as a pain in his butt and why if I don't agree with him do I read his blog. I read Matt's blog because I often do agree with him, but I also read it because I think it important that just...
 
Tags: matt, matt asay, matt sticks, matt talks, comments matt leaves, source, reason matt, scripts, word scripts
 
 
 
 
Expand article

35,000 T. Rowe price plan participants alerted

The Article has images
2008-01-29 12:51:35 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 1/28/07 Organization T. Rowe Price Contractor/Consultant/Branch T. Rowe Price Retirement Plan Services CBIZ Benefits and Insurance Services Inc Victims Participants in various T. Rowe Price retirement plans Number Affected 35,000 Types of Data Names and Social Security numbers Breach...
 
Tags: sensitive personal information, personal information, information, confidential information, rowe price, insurance, identity theft insurance, cbiz benefits, cbiz
 
 
 
 
Expand article

700 MHz Winners Talk: Google, AT&T, Verizon

2008-04-04 11:45:52 by Glennf in Wi-Fi Networking News
 
Even the losers win in this auction: The gag order from the FCC over the bidding and results of the 700 MHz spectrum auction were lifted yesterday, and everyone is jabbering. Verizon and AT&T have announced they'll build LTE (Long Term Evolution) cell data networks, a GSM standard, in the 700 MHz band. AT&T says their network will come online...
 
Tags: verizon, mhz spectrum auction, mhz spectrum, verizon wireless, google, auction, ensure verizon lives, spectrum, att
 
 
 
 
Expand article

We can't write secure code

2008-05-16 07:00:00 by Stuart King in Stuart King's Security and Risk Management Blog
 
David Lacey makes the important point that writing secure software is "not just about cutting secure code or developing better testing tools. We need to get things right much earlier in the development process." It's a subject I've been harping on about for some time, with many references to excellent resources such as OWASP , and great leaders...
 
Tags: code, secure, code secure, secure code, secure software, security, security holes, security requirements, security patches
 
 
 
 
Expand article

If you can't tell a booth babe from a real girl, you got problems!

The Article has images
2008-04-10 23:10:00 by HASH0x8471d50 in StillSecure, After All These Years
OK, I know my next post was supposed to be a continuation of my Shimel's theory of security company relativity but I have to do this first. Sorry, you will have to wait for part 2 of the theory tomorrow. I did want to comment on InfoSec Events post about " Battle of the Booth Babes ". Even though I know the author of the blog, I feel compelled...
 
Tags: booth, real booth babe, stillsecure booth, male booth babes, booth babe, booth babes, company, security company relativity, security
 
 
 
 
Expand article

I guess wireless IPS didn't cut it

2008-04-22 09:48:49 by ashimmy in StillSecure, After All These Years
 
For a long time I have heard rumors that the companies in the wireless IDS/IPS space were having a tough time getting a lot of traction. There were battles around who had what patent and so forth, lots of partnerships and OEMs, but at the end of the day I don't think it led to a lot of revenue. Confirmation for me on this came last night at the...
 
Tags: wireless ips, wireless ips system, views wireless ips, wireless, wireless ips companies, security solution, wireless security solution, address wireless, wireless vulnerability management
 
 
 
 
Expand article

McAfee Partner isn't McAfee Secure either

2008-05-20 21:04:00 by Russ McRee in HolisticInfoSec.org
 
Winferno.com is an authorized distributor of McAfee Software. OK They use Verisign 128-bit SSL to secure your transaction. Can't take issue with that All good so far...but wait Shouldn't a McAfee Partner be McAfee Secure Apparently not, and being one wouldn't have cured the XSS blues anyway Next in our video series, a supposedly secure shopping...
 
Tags: mcafee, mcafee secure, mcafee partner, secure, mcafee software, verisign 128-bit ssl, bad, bad business practices, ssl
 
 
 
 
Expand article

How Can I Find Them? They Haven't Gone Missing!

The Article has images
2008-07-09 12:45:35 by Christopher Boyd in SpywareGuide Greynets Blog
I've often highlighted the utterly worthless spam messages that seem to endlessly circulate on Facebook, usually warning not to add (insert random name here) because they're an evil hacker and will destroy your PC, kill your family and so on Well, today I came across another such message insert gag about them being related to Chuck...
 
Tags: contact email address, email address, real world, facebook, facebook confirms, girl hoax, facebook generation, girl, evil hacker