SEARCH RESULTS
 
Showing 1-10 of 33 records
 
Expand article

Microsoft to improve Vista's problematic UAC in Windows 7

2008-10-09 00:00:00 by HASH0x8472bc8 in Network World on Security
 
Microsoft plans to improve the much-maligned user account control (UAC) feature in the next version of its Windows client OS, acknowledging that the new security feature it built into Windows Vista has caused unnecessary problems for users
 
Tags: security feature, user account control, feature, windows vista, improve, uac, microsoft plans, windows client, version
 
 
 
 
Expand article

Minimizing the Attack Surface, Part 1

2008-06-24 19:09:34 by Chris Eng in Zero in a bit
 
...unnecessary services from being launched at startup. Next, maybe you configured the Xserver to disallow remote connections or moved on to removing setuid permissions from files. As you worked, youd periodically re-scan the box to gauge progress, asking yourself have I removed everything I dont need? The underlying motivation, of course, is...
 
Tags: attack surface, custom web applications, web, services, prevent unnecessary services, unnecessary services, security, third-party libraries, fix security holes
 
 
 
 
Expand article

40,000 BlueCross BlueShield members notified of lost laptop

The Article has images
2008-03-11 15:31:27 by Evan Francen in The Breach Blog
...unnecessary worry until we knew the potential of what we were dealing with," she said. "With all of the factors and orchestrating credit monitoring, we do believe our response time has been reasonable Evan] "We didn't want to have to reach out to our members and cause them unnecessary worry until we know the potential of what we were dealing...
 
Tags: sensitive personal information, personal information, information, confidential information, laptop, information owners, breach description, breach, security breach
 
 
 
 
Expand article

BNY Mellon Shareowner Services loses backup tape

The Article has images
2008-03-27 15:52:10 by Evan Francen in The Breach Blog
...unnecessary risk here? Unnecessary and likely unacceptable Now let's assume that the information was encrypted and the keys are managed well. Risk of exposure is minimal. In most states there isn't even a requirement to go through the expense of notification Past Breaches Unknown
 
Tags: tapes, tapes held, bank, possibly bank account, computer data tapes, information, personal information, data, assists clients
 
 
 
 
Expand article

Stolen account firm laptop contained personal information

The Article has images
2008-04-28 09:50:55 by Evan Francen in The Breach Blog
...unnecessary and unacceptable risk We informed them of the actions they and their employees needed to take. Due to the nature of our work and our internal policies, no client information other than audit data is ever stored on a laptop, so there is no concern that any other client information might be on the stolen laptop The firm has since...
 
Tags: information, clients personal information, clients, personal information, specific information, store confidential information, client information, confidential information, personal information inside
 
 
 
 
Expand article

Google Spamming Us

2007-12-20 22:11:11 by RSnake in ha.ckers.org web application security lab
 
...unnecessary. The countless and senseless bandwidth waste-age. I started using Google because it was light on my personal bandwidth - so much for that idea
 
Tags: google, html http1, http1, html, google likes viagra, referrer spam, spam, google spam, con google
 
 
 
 
Expand article

Maryland Department of Assessments & Taxation web exposure

The Article has images
2008-01-05 14:02:15 by Evan Francen in The Breach Blog
...unnecessary risk nonetheless While it is technically possible there was some sort of compromise, it is logistically unfeasible," Mr. Brooks said Evan] It is logistically infeasible for a single attacker to capture all of the information sent in the clear officials shut down the site on Monday at about 4 p.m. and added the extra protection....
 
Tags: maryland, sensitive personal information, personal information, secure server hadhas, server, web application server, application, information, information security
 
 
 
 
Expand article

The Trouble with Threat Modeling

2007-09-26 19:11:00 by sdl in The Security Development Lifecycle
 
...unnecessary pain. You want expert advice, and you want the experts to agree Most of the threat modeling processes previously taught at Microsoft were long and complex, having as many as 11 steps. Thats a lot of steps to remember. There are steps which are much easier if youre an expert who understands the process. For example, asset...
 
Tags: threat, threat models, threat model, reasons threat, service threat, term threat, threat effectively, playsound threat model, development process
 
 
 
 
Expand article

Firms are still testing with live customer data, study warns

2008-01-09 00:00:00 by HASH0x846fd70 in Network World on Security
 
A majority of organizations are creating unnecessary risks by using actual customer data for the development and testing of applications, according to a survey by Compuware and the Ponemon Institute
 
Tags: actual customer data, unnecessary risks, ponemon institute, applications, compuware, organizations, survey, majority, development
 
 
 
 
Expand article

lcms speed

2008-01-15 18:01:23 by Liudvikas Bukys in Liudvikas Bukys
 
...unnecessary if you assume that thread-local caches on the stack are just fine. Forget the locking, and inline the cache comparisons. I had no need to implement it though, so this is only theoretical If you found this by search engine and it helped you out, drop me a note
 
Tags: one-entry cache cuts, one-entry cache, lcms, thread-safe memory, thread-local caches, cache comparisons, inline, equivalents cuts, lcms-1