The BSIMM maturity model sheds light on how enterprises are implementing security initiatives in their internal software development efforts
A newly released maturity model could be the first to shed new light on how enterprises are implementing security initiatives in their internal software development efforts.
Search engine optimization techniques are being used to divert Web surfers to malicious sites.
A March DNS security patch doesn't work on compromised servers, according to nCircle.
Adobe Reader 9 bug allows for remote exploitation by hackers.
Microsoft is issuing a security patch for three bugs, but an Excel flaw will have to wait.
The fixes will address spoofing and remote code execution attacks.
Microsoft's chief security advisor blamed the spread of the Conficker worm on laggard IT staff.
Microsoft plans to issue three fixes in its March security patch rollout, with one deemed "critical" and two labeled "important."
The bug drops a Trojan-horse binary when users open an affected Excel file.
CEO says most vulnerabilities in Windows systems can be reduced by simply removing certain user privileges.
Earlier this month, BeyondTrust released a report on security threats to IT shops running Microsoft software.
Exploits for a serious cache-poisoning vulnerability discovered in the DNS last year have begun to appear in the wild, and they have made security researcher Dan Kaminsky a believer in DNS Security Extensions.
Trend Micro said hackers are targeting a hole in Internet Explorer 7 that was addressed in Microsoft's February security patch issued last week.
The exploit's quick appearance suggests IT professionals need to patch, and patch quickly.
Microsoft is putting up $250,000 for information leading to the arrest of the Conficker worm's author.
Microsoft issued its monthly security patch, addressing four critical fixes and two important ones.
Microsoft expects to fix Internet Explorer, SQL Server and Visio in its upcoming February security patch.
Execs said that two security changes will be implemented in the Release Candidate version of the OS.
The UNIX-like server solution adds some extra security features beyond what you'd find with typical Linux OSes.