News

Business applications

• September 05, 2007 05 Sep'07

  Firefox security issues persist despite update

  Despite Mozilla's recent Firefox security update, researchers say there's another way attackers could exploit the browser for malicious purposes.

• September 05, 2007 05 Sep'07

  Critical flaw discovered in IBM DB2

  IBM's DB2 database management system contains a flaw that could be exploited remotely by an attacker to take control of a system.

• August 30, 2007 30 Aug'07

  Flaw found in MSN Messenger

  Attackers could exploit a flaw in MSN Messenger to run malicious code on targeted machines, according to Danish vulnerability clearinghouse Secunia.

• August 30, 2007 30 Aug'07

  Critical flaw found in Oracle developer tool

  A popular tool used by Oracle developers contains a critical flaw that could be used by an attacker to compromise a system.

• August 29, 2007 29 Aug'07

  Rootkit found in older Sony USB device

  F-Secure says it discovered rootkit technology in Sony's Micro Vault USM-F fingerprint reader software. The find comes two years after controversy over Sony's DRM technology.

• August 28, 2007 28 Aug'07

  Data archives overview

  When a file is lost due to user error, or data is corrupted because of system problems, the affected data can be restored from a backup. An archive is different from a backup because the data may not be used for months, even years, but must be ...

• August 28, 2007 28 Aug'07

  SANS: Attackers may be attempting Trend Micro exploits

  The SANS Internet Storm Center (ISC) warns that attackers may be attempting to exploit flaws in Trend Micro products to hijack computer systems.

• August 26, 2007 26 Aug'07

  IBM back in iSCSI SAN fray

  IBM is looking to take on HP's MSA and EMC's AX150, as well as EqualLogic and LeftHand, with a new iSCSI SAN product OEMed from LSI.

• August 22, 2007 22 Aug'07

  Trend Micro fixes flaws in ServerProtect, PC-cillin

  Attackers could tamper with servers and run malicious code by exploiting flaws in Trend Micro's ServerProtect, Anti-Spyware and PC-cillin products. But fixes are available.

• August 22, 2007 22 Aug'07

  Microsoft adds CA vets to anti-malware team

  Microsoft has hired Jakub Kaminski, one of CA's more talented and well-regarded antivirus researchers, and three of his colleagues from CA's Australian lab.

• August 22, 2007 22 Aug'07

  Attackers target two Microsoft security flaws

  Symantec warned customers about attacks targeting two Microsoft security flaws -- an unpatched DirectX Media vulnerability and the XML Core Services flaw patched in MS07-042.

• August 20, 2007 20 Aug'07

  Sourcefire acquires open source ClamAV

  Sourcefire, maker of the popular Snort open source IDS tool, has acquired ClamAV, an open source email gateway scanning tool.

• August 20, 2007 20 Aug'07

  VMware acquires HIPS provider Determina

  VMware, the leader in virtualization software, has acquired Determina, a provider of host IPS technology.

• August 19, 2007 19 Aug'07

  College campuses prepare for Microsoft Vista challenges

  With new Vista machines coming to campus, the IT shops of academia have no choice but to embrace the latest Windows OS and its security implications.

• August 17, 2007 17 Aug'07

  Wal-Mart deploys new data security system

  Wal-Mart Stores has deployed a data security and encryption system to secure data going over its global network.

• August 17, 2007 17 Aug'07

  HDS, HP simplify high-end disk array pricing

  Users of the new USP-V disk array from HDS and the XP24000 disk array from HP will now pay less for attaching external storage, as well as capacity.

• August 16, 2007 16 Aug'07

  TJX profit takes hit over data breach

  TJX says it has spent $256 million responding to the massive data breach that exposed 45 million customers to identity fraud, and the bottom line has suffered as a result.

• August 15, 2007 15 Aug'07

  Latest Microsoft flaws affect Windows, IE, Excel

  Microsoft released nine security updates Tuesday -- six of them critical -- for flaws in Internet Explorer, Excel and other programs within the Windows OS.

• August 14, 2007 14 Aug'07

  Novell to acquire Senforce for endpoint security

  Novell is acquiring Senforce, an early network access control supplier, to integrate its endpoint security features and develop an endpoint management suite.

• August 14, 2007 14 Aug'07

  Apple iPhone to provoke complex mobile attacks, expert warns

  Mikko Hypponen, director of antivirus research at F-Secure, said he expects mobile malware attacks to escalate thanks to interest in Apple's iPhone.

• August 10, 2007 10 Aug'07

  SMEs’ CRM needs catered for in Sage 200

  Accounting software specialist Sage has expanded its business automation software portfolio with the launch of a customer relationship management system, Sage 200.

• August 09, 2007 09 Aug'07

  Buying Guide for NAS management software

  Learn the key evaluation factors for purchasing NAS management software in this Buying Guide.

• August 09, 2007 09 Aug'07

  NAS appliance purchase considerations

  NAS appliances are frequently touted for bringing convenience and simplicity to network storage. Appliances include their own dedicated disks for storage and RAID, and most NAS appliances can be upgraded with more or larger disks for additional ...

• August 09, 2007 09 Aug'07

  Sun adds virtual tape library to Thumper

  Analysts say the combo of FalconStor's software, Solaris and Thumper is a good sign of integration from Sun after a disorganised year, but it's unclear if users will be convinced.

• August 09, 2007 09 Aug'07

  VoIP vulnerability threatens data

  VoIP vulnerabilities have now reached a level of sophistication that allows hackers to steal, view or delete data.

• August 09, 2007 09 Aug'07

  Immunity releases new exploit-writing tool

  Pen testing company says its Debugger tool offers researchers a new way to write exploits, analyse malware and reverse engineer binary files.

• August 08, 2007 08 Aug'07

  NAS appliance specifications

  NAS appliances are noted for their convenience, offering dedicated internal storage that is relatively straightforward to identify and manage. The biggest issue for NAS appliances is avoiding network bottlenecks and supporting expansion without ...

• August 08, 2007 08 Aug'07

  Cisco warns of critical IOS flaws

  Attackers could exploit multiple flaws in Cisco's IOS to cause a denial of service or remotely execute arbitrary code.

• August 08, 2007 08 Aug'07

  Wi-Fi simplicity edging out Wi-Fi security

  Experts say the standards are available to lock down Wi-Fi, but many network and security managers are taking an easier approach.

• August 07, 2007 07 Aug'07

  Application-aware storage promises intelligence and automation

  Storage professionals overbuy both performance and capacity in an effort to forestall potential storage problems. Tiered storage was one way to address this problem -- matching storage resources and costs with the value of data. Today, storage is ...

• August 07, 2007 07 Aug'07

  Subpar security compromises compliance

  Pressure to keep trading applications available has nudged security to the back of the development line.

• August 06, 2007 06 Aug'07

  Researchers wrangle petabytes of data storage with NAS, tape

  Scientists at Cern's LHC say dozens of petabytes require custom-built NAS systems and data migration software, but commercial tape drives are mostly up to snuff.

• August 03, 2007 03 Aug'07

  Discovery of malware cesspool triggers attack fears

  Trend Micro researchers say a malware-infested Web server in Russia, linked to several Italian Web sites, could lead to a large-scale attack.

• August 02, 2007 02 Aug'07

  Apple releases fixes for Mac OS X, iPhone vulnerabilities

  Apple Computer has released software patches fixing critical vulnerabilities in Mac OS X and its newly released iPhone.

• August 01, 2007 01 Aug'07

  Users make iSCSI Sans with USB keys

  Users say that Open-E's iSCSI San software, which is delivered on a USB stick, is more affordable than prepackaged systems and has more support than free iSCSI target products.

• August 01, 2007 01 Aug'07

  Mozilla fixes two critical Firefox flaws

  Firefox version 2.0.0.6 addresses critical flaws involving unescaped URLs passing to external programs and privilege escalation.

• July 31, 2007 31 Jul'07

  Riverbed extends WAFS to laptops

  Steelhead Mobile installs on workstations without an onsite appliance. Users say they'd like to see better integration between the mobile and data center versions of the product.

• July 30, 2007 30 Jul'07

  Warning issued over unpatched Firefox flaw

  Vulnerability clearinghouse Secunia and US-CERT have issued advisories about the input validation flaw

• July 30, 2007 30 Jul'07

  Most antispam technologies get failing grade

  An independent study finds that many enterprises are not satisfied with traditional antispam technologies.

• July 25, 2007 25 Jul'07

  EMC reports Clariion surge, data archiving slump

  EMC's revenues are up this quarter, attributed in part to a big boost in Clariion sales, but CEO Joe Tucci is critical of the company's execution in data archiving.

• July 25, 2007 25 Jul'07

  Serious flaw affects BIND Internet server software

  BIND DNS software, used in translating domain names into IP addresses for Internet traffic, has a flaw that could trick users into visiting a malicious Web site.

• July 25, 2007 25 Jul'07

  Cisco issues warning for wireless LAN controller flaws

  Cisco Systems is warning customers of flaws in its wireless LAN controllers that initially crippled a wireless network at Duke University.

• July 24, 2007 24 Jul'07

  Hifn buys Siafu for storage security, data reduction

  Chipmaker Hifn is looking to get into storage systems. It says OEMs are already lined up for encrypted iSCSI SAN and primary storage data reduction products.

• July 24, 2007 24 Jul'07

  XenSource embeds Symantec storage software

  Server virtualisation firm XenSource embeds Symantec's storage management software into its hypervisor

• July 24, 2007 24 Jul'07

  Apple iPhone crack discovered by security researchers

  Researchers have found a way to take complete control of the Apple iPhone by sending a user to a malicious Web site.

• July 24, 2007 24 Jul'07

  New hacking technique exploits common programming error

  Researchers at Watchfire Inc. say they discovered a new technique that exploits a common dangling pointer error.

• July 23, 2007 23 Jul'07

  PCI compliance costs often underestimated, study finds

  Companies are moving forward with PCI DSS projects, but many are underestimating the costs associated with compliance.

• July 23, 2007 23 Jul'07

  LeftHand refreshes iSCSI SAN software

  Version 7.0 of LeftHand's iSCSI SAN software contains dozens of new features, including support for four-way replication and brushed-up thin provisioning.

• July 23, 2007 23 Jul'07

  Core Security CEO to step down

  Paul Paget, the CEO of penetration testing software vendor Core Security Technologies said he is better-suited for start-ups

• July 22, 2007 22 Jul'07

  Black Hat Las Vegas 2007: Special news coverage

  SearchSecurity.com covers all the controversy at this year's show with news, features, podcasts, interviews, exploits and more direct from Las Vegas.