NEWS

Netgear unveils home gateways for broadband service providers
New D-Link 802.11n network camera for home and SMB monitoring
Data recovery portal for Apple Service Providers
LaCie 2big Quadra: two bays for performance and protection
First iPhone and iPod touch Internet filter

The Vulnerability Economy

REVIEWS

iPhone security software - SplashKey
Voice over IP Security
Security Power Tools
Network Warrior
Google Apps Hacks
Crimeware: Understanding New Attacks and Defenses
Big Book of Windows Hacks

WINDOWS

LANguard Network Security Scanner 9 ***
Eraser 6.03.847
Password Manager XP 2.3.453
File Encryption XP 1.5.127
AutoKrypt 8.14
CryptoExpert 2008 Professional 7.8.7
Tor, Privoxy and Vidalia bundle 0.2.0.32
JSch 0.1.41
Password Safe 3.15.1

ADVISORIES

Ubuntu Security Notice - openssl vulnerability (USN-704-1)
Debian Security Advisory - iceape (DSA-1697-1)
FreeBSD Security Advisory - OpenSSL incorrectly checks for malformed signatures (FreeBSD-SA-09:02.openss)
Articles

Audio (20)
Authentication (29)
Compliance (17)
Cryptography (9)
Database (15)
Editorials (314)
General Security (118)
Hacking History (30)
Interviews (125)
Intrusion Detection (20)
Linux (16)
Mac OS X (19)
Malware (42)
Opinions (148)
Podcasts (13)
Security Products (49)
Storage (20)
Various (71)
Video (25)
Web Security (73)
Wireless (22)


Last 10 added articles

SIEM: the Answer to Awkward Security Questions (Opinions)
How security information and event management solutions help to ensure your organization doesn’t get caught off-guard.
Security Trends of 2008 and Predictions for 2009 (General Security)
As a new year approaches we must prepare for new Internet security threats. Every year, new and innovative ways of attacking computer users emerge and continue to increase in volume and severity. To know where we are going it is helpful to look at where we have been. Finding trends in Internet security has become a valuable, if not necessary, action for companies developing software to protect computer users.
The Rise and Rise of Rogue Security Software (Malware)
Rogue security software is an application that appears to be beneficial from a security perspective but provides little or no security, generates erroneous alerts, or attempts to lure users into participating in fraudulent transactions. Some products defined as "rogue" simply fail to provide the reliable protection that a consumer paid for. Others are far more sinister, masquerading as legitimate security software, and using deceptive tactics to con users into buying the product.
What To Do About Social Networking In Your Company (Opinions)
The growing popularity of social networking sites such as Facebook, Bebo and MySpace is slowly developing into a massive headache for IT administrators as employees spend time updating their profiles and adding new friends during office hours.
Protecting Corporate Brands: One Keystroke at a Time (Opinions)
A company’s brand identity is one, if not the, most valuable asset that all organizations – from health care providers to financial institutions – seek to protect, but the ease of accessing information on the Web has created a false sense of security that can be exploited by business competitors using new and powerful tools at their disposal.
Safe Computing During The Holiday Season (General Security)
When consumers go online this time of year, they face the risk of running up against a range of cyber threats – threats that increase in number exponentially on a daily basis. This article includes a list of basic tips for safe computing.
Attacks On Banks (General Security)
This article provides an overview of the methods currently used by cyber criminals to attack financial institutions and banks in particular. It reviews general trends and takes how malicious programs targeting financial institutions are designed to evade detection by antivirus solutions. The article also covers phishing, money mules, the technical steps which cyber criminals may take when launching an attack (such as redirecting traffic, man-in-the-middle and man-in-the-endpoint attacks).
Trust No One (Opinions)
It’s easy to say what we’re all securing our systems and data against. But isn’t easy to say exactly who we need to secure against, nor who presents the biggest threat to our business. Certainly, the largest ever data breach – 45 million credit card records stolen from retailer TJX – was committed by criminals. But the second largest, last year’s loss of over 25 million child benefit records from Her Majesty’s Revenue & Customs in the UK, was caused by an ordinary public-sector employee putting two unencrypted CDs in the post.
Lavasoft and the antispyware industry (Video)
In this video, Lavasoft CEO Jason King offers a brief history of Lavasoft and its role in the antispyware industry, the growth of the company, the shift in the marketplace as well as details on the next generation of the Ad-aware product.
Q&A: Software Piracy (Interviews)
Jan Samzelius is the CEO and one of the founders of ByteShield, a company whose mission is protecting PC software applications and games against illegal copying. In this interview he discusses software piracy.




Qualys: This free security guide describes the scanning requirements for PCI-DSS and provides a quick-reference requirements matrix for both Merchants and Service Providers of all levels.










SABSA Foundation Training: make sure you can manage the most successful Security Architecture Certification!

RSA Conference 2009

Vulnerability Scanning

Network Vulnerabilities

Event Log Security