| Tech Grad |
|
|
Security NewsThe "out of band" emergency update addresses a Windows vulnerability that is being exploited by attackers using a "highly virulent strain" of malware.
Martin Roesch expressed disappointment with the Open Information Security Foundation's efforts, and touted Razorback, Sourcefire's open source analysis and detection engine, as truly innovative.
OpenAppMkt.com offers a place to distribute and sell Web apps without an Apple-style approval process.
TenCube, developer of the WaveSecure mobile security service platform, will be acquired by McAfee, the company announced, to broaden its security capabilities.
"Meaningful personal details" weren't disclosed when Google's cars collected publicly broadcast Wi-Fi network names and MAC addresses, finds British government authorities.
Shoppers with iOS devices may soon have access to an Apple Virtual Closet that will facilitate buying, sharing, and washing clothes.
The legislation would replace the 2006 Unlawful Internet Gambling Enforcement Act, which has proven to be unenforceable.
To mark an increase in allowable running time for non-partner videos, YouTube says it will promote a handful of video makers.
A survey of mobile app security for iPhone and Android reveals that information disclosure isn't always obvious.
Adding SMobile's Junos Pulse software platform for smartphones, tablets, netbooks and notebooks, helps position Juniper to better compete in the mobile client security market.
Expanding on its social media, instant message and email archiving offerings, Smarsh has launched a mobile message archiving module for BlackBerry, Android and Windows with iPhone support due later this year.
Developer of the malware, used to create almost 10,000 unique pieces of malicious software, was busted in Slovenia.
Barnaby Jack of IOActive demonstrated attacks that would allow a criminal to compromise ATMs.
This broad variety of platforms and applications provides many holes for hackers to get through, says the US-CERT Director.
A new licensing service for Android apps aims to limit misuse.
The Bouncer client enforces a whitelist of approved applications at the kernel level and provides list administration through a central management application.
Researchers from Lookout will present their findings thus far in study of freebie Android, iPhone apps.
Lawmakers are concerned about the tech companies' practice of collecting information about people's online activity and sharing it with third parties.
An update to Apple's Safari Web addresses longstanding complaints about the difficulty of Safari plugin development.
Fewer than 2% have seen serious incidents caused by employee mobile device or social network use, finds RSA survey.
Adobe will soon be distributing security information through MAPP, the Microsoft Active Protections Program.
Governments will always face the twin challenges of balancing the need for secrecy with the need to collaborate, say experts.
Verizon's 2010 Data Breach Investigations Report reveals some surprising shifts in cybercrime.
Companies that rely on third-party Web content place themselves at the mercy of their partners' security practices.
Malware protection tool doesn't blank out shortcut icons like Microsoft's proposed workaround for the active exploit.
Quantum mechanics used to encrypt and decrypt data at a secure location without pre-sharing any cryptographic keys.
Securing your business in the cloud can offer substantial savings and resources balanced by large and unexpected risks. In this review of cloud security silver linings and storms warnings, we look at some of the brightest and darkest security clouds.
To accelerate adoption of cloud computing in the public sector, Google has launched a version of Google Apps that meets government regulatory requirements.
Mobile banking customers in the U.S. who use Citibank's Citi Mobile app have been advised to update the app.
The Library of Congress Copyright Office ruling refutes Apple's contention that iPhone buyers are licensees of the technology, not owners, and thereby bound by the company's licensing agreement.
Zbot financial malware only works when executed on one specific machine and from one specific path, similar to hardware-based licensing systems employed by major software companies.
Auctioning off prime wireless spectrum to help pay for a public safety network versus giving public safety providers priority access to the D-block is the crux of the battle.
U.S. consumers remain reluctant to conduct financial transactions on their phones, finds KPMG survey.
Online consultations between doctors and patients will become essential as more people access doctors under health reform, says Forrester Research.
By launching a secure "cloud isolation layer," CloudSwitch says it can maintain enterprise ties and monitoring to workloads sent to the cloud.
Cybercriminals can create attacks spoofing 16 sites, including Facebook, RapidShare and Skype, using the next-generation phishing toolkit.
Microsoft and Siemens released tools to combat the zero-day exploits which autorun malicious code from USB drives.
Many people admit changing settings on business devices to access prohibited sites from the workplace, finds Cisco.
Record keeping, privacy, and freedom of information are also concerns as agencies adopt new Internet technologies, says federal auditor.
The Public Safety Spectrum and Wireless Innovation Act Senator John "Jay" Rockefeller plans to introduce will likely call for setting aside 10 MHz of the D-Block for a nationwide wireless network.
But a California district court judge's ruling leaves open the question of whether bypassing IP blocking is a criminal act.
As security professionals converge in Las Vegas for Black Hat USA 2010, conference founder Jeff Moss says interest in mobile vulnerabilities is growing.
The security of a virtualization solution is "heavily dependent" on the security of each of its components, according to the National Institute of Standards and Technology.
Schedule A expedited hiring authority will allow the Air Force to fill almost 700 new cybersecurity positions without posting and publicizing the positions.
With its transcoding technology, Glide lets iPad users view Flash and Windows video.
The service provides daily data backup for Google's Gmail, Docs, Calendar, Contacts and Sites applications using Amazon's secure cloud storage.
Demand for consumer-oriented devices in the workplace causing IT leaders to rethink how they procure and secure technology, finds IDG survey.
Suricata, developed by the Department of Homeland Security-funded Open Information Security Foundation, is available under the GPLv2 license.
Java security suite provides administration of user identity, password management, strong authentication and authorization, workflow, and auditing.
W32.Spybot worm discovered in flash memory on some replacement PowerEdge server motherboards.
|
TechGrad.com © 2005-06