SEARCH RESULTS
 
Showing 1-10 of 143 records
 
Expand article

Woule the Do not Track registry work like the Do not call registry?

2008-04-16 14:21:05 by Doug Woodall in The Spyware Biz Blog
 
Im not sure how good an idea this is. Im on every do not call list I can find and I still get calls. I do believe if you use my data to make a profit, you should reimburse me a lil clipped from news.yahoo.com Consumer groups urge do not track registry WASHINGTON (Reuters Two consumer groups asked the Federal Trade Commission on Tuesday...
 
Tags: track registry, track, list, call list, federal trade commission, computer users, consumer, bar advertisers, lil
 
 
 
 
Expand article

Grayware?

2007-03-07 07:11:45 by RaviC in Musings on Information Security
 
Very interesting definitions that I found on www.dqchannels.com which I would like to highlight Grayware' is a term that regularly appears on IT and security professionals' radar screens today. An umbrella term applied to a wide range of applications that are installed on a user's computer to track and/or report certain information back to some...
 
Tags: grayware, dangerous grayware applications, joke, joke grayware, p2p grayware, toolbar grayware applications, bho grayware applications, applications, toolbar
 
 
 
 
Expand article

SQL Server - Fact Checking Recent Vulnerability History

2008-03-05 22:53:36 by jrjones in Jeff Jones Security Blog
 
Last week a web-based news story comes to my attention - Microsoft's glasnost on interoperability means more bugs . The article poses an interesting question of whether Microsoft's recent changes to expand interoperability will make it easier for researchers to find new vulnerabilities. I don't personally agree with the theory that sharing APIs...
 
Tags: server, claim sql server, sql, sql server team, sql vulnerabilities, vulnerabilities, sql server, vulnerability, sql team
 
 
 
 
Expand article

Virtualization and security - are we missing the wood for the trees?

2008-03-31 12:05:40 by Paul Stamp in Security & Risk Management
 
I've sat through a number of presentations and sessions about security and virtualization in recent times and can't help thinking that people are falling into the old trap of going after the possible rather than the probable Most discussions I've seen around security and virtualization center around subtle threats to the hypervisor layer, and...
 
Tags: security, virtualization, security business model, options virtualization introduces, subtle virtualization threats, business, security services, virtual machine, virtualization center
 
 
 
 
Expand article

Hannaford Supermarkets

The Article has images
2008-03-22 12:27:00 by Random InfoSec Guy in Security Coin
This is going to get very interesting. Hannaford Supermarkets announced on Mar 17 that they lost 4.2 million card numbers to a hacker (Began Dec 7, discovered on Feb 27) . They also claim to be certified as compliant with PCI DSS. So what value does the certification hold Instead of saying PCI is worthless, lets step back for a minute and think...
 
Tags: card, debit card, pci, track data, pci dss, data, hannaford supermarkets, hannaford, pci compliant
 
 
 
 
Expand article

Metrics and Audience

2008-04-19 09:52:00 by Security Retentive in Security Retentive
 
There has been some chatter recently about a post Pete Lindstrom made about Microsoft's SDL and their publicly disclosed metrics. I chimed in on Pete's blog as well as on the Microsoft SDL blog , here is a little more The fundamental confusion here is about the audience for the vulnerability numbers, and metrics in general There are several...
 
Tags: software, software metric, software security folks, security folks, software security initiatives, security, measure software security, measure, metrics
 
 
 
 
Expand article

Network Security It Takes a Village

2008-05-14 13:05:15 by Louis DiMeglio in ScienceLogic
 
Something that should not be a surprise it turns out that securing the worlds largest temporary network takes a variety of vendors working together For three days, InteropNet is one of the largest hacking targets on the planet. Attacks and threats come from both inside and outside the network. While the external attacks are certainly more...
 
Tags: network, degrade network, temporary network takes, internal devices, enterasys dragon ids, devices, enterasys, network segment, dragon
 
 
 
 
Expand article

Myrcurial gets placed in the Leaders Quadrant - Gartner Days 1&2

The Article has images
2008-06-03 14:23:04 by Myrcurial in Liquidmatrix Security Digest
Gartner IT Security Summit - June 1-3, 2008 - Washington, DC Alright - call this an omnibus posting I had planned to do a better job of intra-day postings, but the schedule here is hectic and as anyone who knows me can attest, I really do work to get maximum value out of any conference that I go to Highlights here - much more detail available if...
 
Tags: security, gartner, security blogger, security conferences, security architecture, security summit, gartner analysts, food, commercial grade food
 
 
 
 
Expand article

.. and now - PIN stealing..

2008-06-19 10:38:00 by Random InfoSec Guy in Security Coin
 
Once the bad guys figured out how easy it was to sniff unencrypted ATM and card authorization traffic to steal track data, and after making a killing with stolen card numbers, they began setting their sights on bank PINs. PIN numbers - thanks to ANSI's TG3 - are encrypted with a half decent algorithm (and they are looking to strengthen that even...
 
Tags: pin, pin reaches, pin offsets, fake pin pads, atm location, atm, bank pins, atm crime spree, access
 
 
 
 
Expand article

Over 80 percent of Storm Worm Spam Sent by Pharmaceutical Spam Kings

The Article has images
2008-07-29 03:29:54 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge