Browse by Tags
All Tags »
Vulnerabilities (RSS)
In today's story of immense irony , we find a vendor taking time to bash another vendor for a security flaw, only to have diligent 3rd parties point out that the flaw exists for the bashing vendor as well. What a waste of time. If folks would focus more
Read More...
It's been a while since we've had a massive worm outbreak, but the potential for such an occurrence has increased significantly over the weekend with word that a wormable exploit has been made available for the recent animated cursor vulnerability in
Read More...
As if we needed another reason... A security researcher has found a way hackers can make PCs of unsuspecting Web surfers do their dirty work, without having to actually commandeer the systems . That's possible with a new security tool called Jikto. The
Read More...
This has been a fun month with all the Daylight Saving Time patching from a myriad of vendors. (I wonder if anyone has done a study to see how much energy we burned preparing to save three more weeks of daylight?) Although Microsoft is the favorite whipping
Read More...
The folks at eEye Digital Security have put together a website that tracks various zero-day vulnerabilities, and offers analysis and remediation recommendations. The site is called Zero-Day Tracker , and can be found at the following URL: http://research.eeye.com/html/alerts/zeroday/index.html
Read More...
One of the hardest concepts to emphasize concerning Information Security is that people and processes are more critical to your overall security posture than products are. That is not to say that products are unimportant. Certainly, any deficiency in
Read More...
October 2006 is going to be a major month for Oracle . First, the database and middleware powerhouse has made some significant changes to its patch management process . Secondly, it released its quarterly set of database and application patches on October
Read More...