Security News


NSA Posts Secrets to Writing Secure Code

Tokeener case study serves as an example of writing low-defect, highly-reliable code, researchers claim.

11 Fixes Expected for Patch Tuesday

IT admins will see nearly a dozen security fixes on Tuesday, according to Microsoft.

UPDATED: Browser-Makers Seek Clickjacking Fix

Researchers found a browser security issue that could let hackers gain access to user profiles.

Card Use Can Stem ID Theft, Microsoft Says

Microsoft is promoting the use of software-based "information cards" to reduce identity theft.

Microsoft To Expand Security Lifecycle Expertise

New Security Development Lifecycle tools and services will be available in November.

SQL Injection Attack Hits Magazine Site

BusinessWeek's Web site was hit at the back end through SQL injection.

SQL Injection Attack Hits BusinessWeek Site

Security firm Sophos disclosed on Monday that BusinessWeek magazine's Web site had been hacked.

Privacy Uncertain With New IE8 Feature

A "suggested sites" feature in Internet Explorer 8 sends information to Microsoft, but it's not retained, Redmond contends.

Google's Chrome Browser Contains Microsoft Code

The newly launched Web browser uses Microsoft's Windows Template Library, and other open source code.

September Patch To Fix Windows GDI Exploit and More

Microsoft's Patch Tuesday release contains four critical security fixes.

Security Exploits to Google Chrome Browser Emerge

Two proof-of-concept bugs were identified in Google's new Chrome Web browser, which uses WebKit open source code.

Patch Tuesday To Address Four Critical Issues

Microsoft plans to address remote code execution vulnerabilities in next Tuesday's security patch.

Microsoft Announces SP-1 for Forefront Client Security

An update to Microsoft's enterprise client protection app is now available.

Web Sites Rife with Unpatched Vulnerabilities

Although the overall number of vulnerabilities being discovered in software appears to be leveling off or even dropping, two recent reports on Web security say that the overwhelming majority of Web sites studied still have unpatched vulnerabilities that could expose visitors to malicious code.

Security Software: How Suite It Is

The writing's on the wall, it seems, for purveyors of security point solutions. Gone is the day of the best-of-breed anti-virus, firewall, e-mail security or encryption vendors. These days, it's a security suite play.

Browser Security Gets Focus in ZoneAlarm 8.0 App

Check Point Software updated its Web security software suite.

Red Hat Hacked, Company Issues Security Advisory

A critical advisory was issued after hackers tampered with the open source Linux company's Web site.

UPDATED: Microsoft Tool Helps Filter SQL Injection Attacks

UrlScan 3.0, a security add-on to Microsoft's IIS Web server, is now available in its Release-to-Web version.

Vulnerability Management Needed for Security, Study Says

A study describes best practices for keeping down security costs and woes.

Coverity Offers Java Code Readiness Service

The new tool is designed to help managers assess code quality before it's shipped.

Upcoming Events

AppTrends

Sign up for our newsletter.

I agree to this site's Privacy Policy.