News

Antivirus, firewall and IDS products

  • July 30, 2007 30 Jul'07

    Most antispam technologies get failing grade

    An independent study finds that many enterprises are not satisfied with traditional antispam technologies.

  • July 24, 2007 24 Jul'07

    Apple iPhone crack discovered by security researchers

    Researchers have found a way to take complete control of the Apple iPhone by sending a user to a malicious Web site.

  • July 23, 2007 23 Jul'07

    PCI compliance costs often underestimated, study finds

    Companies are moving forward with PCI DSS projects, but many are underestimating the costs associated with compliance.

  • July 23, 2007 23 Jul'07

    Core Security CEO to step down

    Paul Paget, the CEO of penetration testing software vendor Core Security Technologies said he is better-suited for start-ups

  • July 22, 2007 22 Jul'07

    Black Hat Las Vegas 2007: Special news coverage

    SearchSecurity.com covers all the controversy at this year's show with news, features, podcasts, interviews, exploits and more direct from Las Vegas.

  • July 18, 2007 18 Jul'07

    For Boeing, data security, network access still hazy

    Boeing is trying to reshape its network security architecture to better protect sensitive systems from threats without degrading employee productivity.

  • July 17, 2007 17 Jul'07

    CDP platform purchase considerations

    Busy IT organizations are employing continuous data protection (CDP) technologies to guard data on the fly, essentially eliminating the backup window and allowing granular file and system restoration -- sometimes down to the individual disk write ...

  • July 16, 2007 16 Jul'07

    Oracle's July 2007 CPU has 45 security fixes

    Oracle stuffed 45 security updates into its July 2007 CPU, fixing flaws across its product line attackers could exploit remotely to compromise corporate databases.

  • July 13, 2007 13 Jul'07

    Symantec fixes flaws in AntiVirus, Backup Exec

    Symantec fixed flaws attackers could exploit in AntiVirus Corporate Edition and Backup Exec to launch malicious code, gain elevated user privileges or cause a denial of service.

  • July 13, 2007 13 Jul'07

    Antispyware legislation gets tepid reviews

    Congress is debating three different bills that would punish spyware pushers, but some IT professionals have their doubts about legislation as a solution to the problem.

  • July 12, 2007 12 Jul'07

    Web security gateways meet rising malware threats

    Web security gateways combine layered defense against the rising tide of Web-based malware with URL filtering and application control.

  • July 05, 2007 05 Jul'07

    Security Metrics: Replacing Fear, Uncertainty, and Doubt

    In this chapter excerpt from "Security Metrics: Replacing Fear, Uncertainty and Doubt," author Andrew Jaquith reveals ways to present security data in a clean and elegant manner.

  • July 05, 2007 05 Jul'07

    Zero-day auction site opened by Swiss lab

    Swiss start-up WabiSabiLabi is offering zero-day findings for qualified buyers. The site could fuel new debate over flaw disclosure.

  • July 04, 2007 04 Jul'07

    Cisco users upbeat about security direction

    Cisco customers say the vendor's security strategy is headed in the right direction, which is why they believe the networking giant's IronPort integration will be smooth sailing.

  • July 02, 2007 02 Jul'07

    Are PCI auditors pitching products?

    Auditors shouldn't be pitching remediation services or products to bring a company into compliance with PCI DSS rules, but some merchants are reporting the practice

  • July 01, 2007 01 Jul'07

    SearchSecurity.com Blogs

  • June 29, 2007 29 Jun'07

    Vendors admit more cooperation needed on security

    Security leaders from large software vendors pledge to cooperate on embedding more security into their products.

  • June 27, 2007 27 Jun'07

    Cisco vows to maintain IronPort tech, talent

    As it completes the purchase of IronPort Systems, Cisco vows to maintain IronPort's talent base and make investments to keep its newly-acquired technology fresh.

  • June 25, 2007 25 Jun'07

    PCI Council hears complaints, suggestions for changes

    Companies with the most stringent security technologies endure hurdles to comply with PCI DSS. Some firms are turning to the upcoming Burton Group Catalyst Conference for answers.

  • June 19, 2007 19 Jun'07

    Endpoint fears drive PatchLink-SecureWave merger

    Experts say the PatchLink-SecureWave merger makes sense since IT pros want a better way to protect their endpoint devices. But PatchLink's market supremacy is far from assured.

  • June 17, 2007 17 Jun'07

    VoIP security testing fundamentals

    Testing your VoIP security system against all the threats that exist on the network can be a full time job. This guide documents how a VoIP system can be tested and suggest some of the available tools to use -- with a focus on fuzzing tools and ...

  • June 10, 2007 10 Jun'07

    Connecting for Health briefing claims much of NHS NPfIT complete

    A confidential Connecting for Health briefing paper for the prime minister has claimed that much of the NHS's £12.4bn National Programme for IT (NPfIT) is complete - although an integrated national care record system has yet to materialise, and ...

  • June 01, 2007 01 Jun'07

    Top spammer indicted on email fraud, identity theft

    The arrest may reduce the volume of spam in the short-term, say experts and analysts, but the real spam threat comes from criminal gangs based in Asia and Russia.

  • June 01, 2007 01 Jun'07

    Check Point promises more VoIP security, fewer slowdowns

    Check Point's enhanced Open Performance Architecture is designed for deeper security of technologies like VoIP without the network performance problems that often come with it.

  • June 01, 2007 01 Jun'07

    Springing leaks: Getting smart about data loss prevention

    Companies are showing increased interest in data loss prevention (DLP) products, but they won't work well unless the business needs are understood and well defined.

  • June 01, 2007 01 Jun'07

    HDS adds SAN muscle to archive

    Hitachi Data Systems integrates its archive software across its product line and adds important new features, including replication, data deduplication and security.

  • May 24, 2007 24 May'07

    Microsoft NAP-TNC compatibility won't speed adoption, users say

    Users hail the new compatibility of Microsoft NAP and the Trusted Computing Group's TNC architecture. But they say it won't speed up their adoption timetables.

  • May 24, 2007 24 May'07

    Sourcefire, Nmap deal to open vulnerability scanning

    Sourcefire and Insecure.org have inked an agreement to develop open source vulnerability scanning tools based on Insecure's Nmap scripting engine.

  • May 24, 2007 24 May'07

    IETF approves new weapon to fight spam, phish

    DomainKeys Identified Mail specification (DKIM) gained approval as an official IETF standard. The approval is seen as a major step in the fight against spam and phishing attacks.

  • May 17, 2007 17 May'07

    VoIP security fundamentals

    VoIP security is a challenge for IT staff because IP telephony brings with it not only the security problems of data networks but also new threats specific to VoIP. In this fundamentals guide, learn about network security threats and emerging IP ...

  • May 16, 2007 16 May'07

    When signature based antivirus isn't enough

    Zero-day exploits, targeted attacks and increasing demands for endpoint application controls are driving the rapid metamorphosis from signature-based antivirus and antispyware to HIPS-based integrated products.

  • May 09, 2007 09 May'07

    Symantec fixes flaws in Norton, pcAnywhere

    Attackers could exploit flaws in Symantec's Norton AntiVirus and pcAnywhere to launch malicious code or compromise a user's session credentials.

  • May 03, 2007 03 May'07

    Quiz: Enterprise strategies for protecting data at rest

    A five-question multiple-choice quiz to test your understanding of the e-discovery content presented by expert Perry Carpenter in this lesson of SearchSecurity.com's Data Protection Security School.

  • May 03, 2007 03 May'07

    Quiz: Demystifying data encryption

    A five-question multiple-choice quiz to test your understanding of the data encryption content presented by expert Tom Bowers in this lesson of SearchSecurity.com's Data Protection Security School.

  • May 03, 2007 03 May'07

    Microsoft users sticking with third-party security vendors

    IT pros are pleased with Microsoft's security advances, including those found in Forefront. But don't expect them to drop their third-party security vendors.

  • April 26, 2007 26 Apr'07

    New image spam sneaks into inboxes

    Researchers at Secure Computing Corp. have discovered a new form of image spam that is sneaking into corporate systems and clogging inboxes.

  • April 26, 2007 26 Apr'07

    Websense to acquire SurfControl

    Websense says its planned $400 million acquisition of SurfControl will allow it to better compete in the global security market.

  • April 24, 2007 24 Apr'07

    Apple fixes 25 Mac OS X flaws

    Attackers could exploit about two dozen flaws in Mac OS X to cause a denial of service, bypass security restrictions, disclose sensitive data and run malicious code.

  • April 15, 2007 15 Apr'07

    Malware outbreak 'largest in almost a year'

    Security firm Postini and the SANS Internet Storm Center said they are tracking a significant malware outbreak. Postini calls it the biggest email attack in almost a year.

  • April 12, 2007 12 Apr'07

    Microsoft investigates DNS server flaw

    Attackers could exploit a DNS flaw in Microsoft Windows 2000 Server and Windows Server 2003 and run malicious code on the system. A workaround is suggested until a patch is issued.