Security managers often describe their efforts to protect corporate data from being compromised as a full-fledged battle of wits against cybercrooks who are continually arming themselves with innovative tools and methods of attack.
Is your company's Web site hacked? Today, it can be hard to tell. Online crooks who successfully break into a site often sneak in small bits of code that leave no visible trace but can attack visitors who simply view
Seagate Technology filed a potentially far-reaching patent infringement lawsuit against STEC on Monday, over flash memory-based solid state drives (SSDs).
An ongoing effort with the National Center for Missing and Exploited Children (NCMEC) by Google produced video tools for use in finding exploitative images and videos.Google research scientist Shumeet Baluja described the search giant's work on the company blog in
Corporations are woefully unprepared to counter attempts at corporate espionage, say experts who perform vulnerability assessments designed to uncover security weaknesses. U.S. corporations lose as much as $300 billion a year to hacking, cracking, physical security breaches, and other criminal
Microsoft's system to thwart automatic registrations of e-mail accounts leads to "a false sense of security," according to two researchers who have developed a low-cost way to break the security mechanism.
Check Point Software is introducing a set of security appliances for midsize businesses and branch offices of larger businesses bent on reducing the clutter of devices and the cost and hassle of dealing with multiple vendors.
LinuxSecurity.com: Sqlninja is a tool to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. Its main goal is to provide a remote shell on the vulnerable DB server, even in a very
The-0utl4w has reported a vulnerability in Dating Club, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the parameter "age_to" in browse.php is not properly sanitised before being used in SQL queries. This can
José Luís Zayas has reported some vulnerabilities in OSI Affiliate, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "login", "profile", "profile2", and "ref" parameters in login.php is not properly sanitised before being
The-0utl4w has reported a vulnerability in phpHotResources, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the parameter "kind" in cat.php is not properly sanitised before being used in SQL queries. This can be
Segway on Tuesday unveiled a social site where it customers can get together and share tips, places and photos. Finally, a place where mall security guards can connect online. Disclosure: Mall security--and the occasional cop--is the only place where I've
Windows security is a good gig. (Picture from BuyersMLS, which has many other old TV mash-ups.) McAfee Inc. is worth over $5 billion and Symantec (which also does other things) is worth over $14 billion. Both have risen to prominence
