Mobile application security risks

In this podcast recorded at the RSA Conference Europe 2011, Chris Eng, VP of Research at Veracode, talks about mobile application security & the encouraging trend of companies trying to understand the risks tied to their use. Security specialists have already agreed on the fact that the increased use of personal mobile devices & smartphones [...]

Most security administrators don’t think a breach will happen to them

New findings of a sustainable network security has been discovered “It’s not going to happen to me” mentality among security professionals. According to the study, over 90 percent of survey participants at the Gartner Security Summit 2011 and discussed risk management in large scale, high-profile breaches such as RSA, Citigroup and Sony with the top [...]

Identity verification future through keystroke dynamics

When someone mentions biometrics, the first (and sometimes the only) that comes to mind for many people is based on physical characteristics that people can be unequivocally identified and differentiated: DNA, fingers and finger the palms, the shape of the iris, and more. However, the characteristics that people have no control. But the most useful [...]

Simple security policy management

The consumer of IT can bring new labor efficiencies, as well as the safety of potentially devastating business and compliance risk. Dealing with the organizations of the new era of mobile device management, a one-size-fits-all approach to the management of security policies and compliance is not enough. Veracode announced a more effective approach with the [...]

Keep your Mac malware definitions up to date

After installing Security Update 2011-003 from Apple, the Mac should look for new malware definitions every 24 hours. But if you want to know precisely the last time Apple updated the definitions on your Mac, Tips joelbruner reader has a quick way to check. Launch Terminal and paste in the following command: defaults read /System/Library/CoreServices/CoreTypes.bundle/Contents/Resources/XProtect.meta [...]

Computer malware and spyware

Malware, also known as malicious code & malicious program, or computer malware refers to a program that is inserted in to a process, usually covertly, with the intent of compromising the confidentiality, integrity, or availability of the victim`s information, applications, or operating process or otherwise annoying or disrupting the victim. Malware has become the most [...]

Security auditing – part 3 how to

At this point, you have compiled a list of current threats, but what about security threats that have not come on to your radar yet, or haven’t even been developed? A lovely security audit ought to account not for those security threats that face your company today, but those that will arise in the future. [...]

Security auditing – part 2 how to

Creating a ‘Threats List’ You cannot protect assets basically by knowing what they are, you also must understand how each individual asset is threatened. So in this stage you will compile an overall list of threats which currently face your assets. What Threats to Include? If your threat list is broad, your security audit will [...]

Network security cryptography

CONTENTS 1. INTRODUCTION 2. THE PURPOSE OF CRYPTOGRAPHY 3. TYPES OF CRYPTOGRAPHIC ALGORITHMS 3.1. Secret Key Cryptography 3.2. Public-Key Cryptography 3.3. Hash Functions 3.4. Why Three Encryption Techniques? 3.5. The Significance of Key Length 4. TRUST MODELS 4.1. PGP Web of Trust 4.2. Kerberos 4.3. Public Key Certificates and Certification Authorities 4.4. Summary 5. CRYPTOGRAPHIC [...]

Windows 7 network security

Computer hаѕ аn іmрοrtаnt role іn communication аnd exchange οf data around thе world. Given thе high risk οf operations Internet, Microsoft hаѕ a bіg improvement іn thе security features οf thе latest Windows 7. So the following article is dedicated to Windows 7 network security. Microsoft hаѕ introduced four security features under Windows 7, [...]

How do I secure my network

I bet you have asked yourself this question before over and over again. “How do I secure my network ?” Or maybe you have asked yourself “How do I secure my wireless network connection ?” Well there are a lot of ways to do this, you can do it yourself, you can use network security [...]

Security auditing – part 1 how to

Each and every business, yours of course, possesses valuable IT assets like networks, computers across those networks, sensitive data, and more. In order to properly protect those assets one must conduct a proper IT security audit, so that it will return a complex picture of what are the threats those assets are exposed to and [...]

Millions of websites hit with LizaMoon Mass-Injection cyberattack

Hundreds of thousands — and possibly millions — of web-sites have been hit with a cyberattack that some are calling “one of the largest mass-injection assaults we have ever seen.” The method of using an injected script redirects users to a rogue AV site, which tries to get people to put in a fake anti-virus [...]

New Russian Tool Reveals Internet Passwords

A Russian software company today released a password cracking tool that instantly reveals cached passwords to Web sites in Microsoft Internet Explorer, mailbox and identity passwords in all versions of Microsoft Outlook Express, Outlook, Windows Mail and Windows Live Mail. Moscow based ElcomSoft, developer of the new password recovery tool, “Elcomsoft Internet Password Breaker,” says [...]

Adobe Warns of Targeted Assaults Exploiting Flash Player Vulnerability

According to the advisory, the vulnerability (CVE-2011-0609) could cause a crash and potentially permit an attacker to take control of the affected process. Adobe says it’s is not aware of assaults targeting Adobe Reader and Acrobat. Adobe has issued a warning of a newly identified critical vulnerability in its Flash Player, and that the vulnerability [...]

Next Page »