News

Enterprise software

• January 15, 2007 15 Jan'07

  Core Security offers powerful testing tool

  We highly recommend Core Impact 6.0 to security engineers to verify the vulnerability of their networks.

• January 15, 2007 15 Jan'07

  Apere's IMAG 500 a tough sell

  Product review: Apere says many of the issues we encountered are addressed in its next release, but mid-enterprise businesses may not have the tolerance for this product.

• January 11, 2007 11 Jan'07

  Oracle emulates Microsoft with advance patch notice

  Oracle will patch 52 security flaws across its product line Tuesday, according to its inaugural CPU advance notification bulletin.

• January 10, 2007 10 Jan'07

  Out-of-cycle Microsoft patch likely, experts say

  Patch specialists and IT administrators were surprised Microsoft didn't fix much-publicised Word zero-day flaws Tuesday. But they don't fault the company for holding back.

• January 10, 2007 10 Jan'07

  Sophos acquires Endforce to add NAC

  Antivirus vendor Sophos is rounding out its email Web and desktop security software with Endforce's network access control (NAC) software.

• January 09, 2007 09 Jan'07

  Remote flaw in Vista could earn finder $8,000

  VeriSign Inc.'s iDefense Labs is offering an $8,000 bounty to any researcher who finds a remotely exploitable flaw in Windows Vista.

• January 09, 2007 09 Jan'07

  Network configuration management key to VoIP success

  While companies spend millions on upgrading infrastructure for VoIP, little attention is given to solving the largest source of downtime – configuration-related outages due to human error.

• January 08, 2007 08 Jan'07

  How far apart can SAN locations be?

  Storage locations can potentially be very far apart, separated by thousands of miles, even around the globe. The real consideration in selecting distance is that of latency...

• January 08, 2007 08 Jan'07

  What has been the impact of storage virtualization on SAN deployments?

  I really have not seen storage virtualization driving storage area network (SAN) deployment...

• January 08, 2007 08 Jan'07

  Critical fixes for Excel, Outlook and Windows

  Microsoft starts the year with security updates for Excel, Outlook and Windows. Three of the fixes are rated critical.

• January 08, 2007 08 Jan'07

  Convergence, interoperability key in disaster planning

  Convergence and interoperability are major factors in ensuring communications continuity in a disaster.

• January 08, 2007 08 Jan'07

  Attackers hide malicious code using new method

  Attackers have designed a new way to thwart virus signatures from antivirus vendors, says a new report.

• January 08, 2007 08 Jan'07

  What guidelines should our listeners use for oversubscribing or under subscribing?

  Oversubscription has long been a contentious topic...

• January 08, 2007 08 Jan'07

  What are some best practices when it comes to designing a SAN?

  First, design for growth. Next, design for maintenance, which may include...

• January 07, 2007 07 Jan'07

  Bug Briefs: OpenOffice vulnerable to attack

  Other flaws were reported in Apple QuickTime, Mac OS X, Adobe Flash Player, VideoLAN VLC, the Opera Web browser, and Cisco Access Control Server.

• January 07, 2007 07 Jan'07

  Microsoft nixes four patch bulletins

  Eight security updates were originally scheduled for Patch Tuesday , but Microsoft has decided to hold back on half of them.

• January 03, 2007 03 Jan'07

  Cisco bolsters security with IronPort buy

  Cisco Systems agreed Thursday to buy Internet gateway security vendor IronPort Systems Inc. for $830 million.

• January 03, 2007 03 Jan'07

  Cisco software vulnerable to attack

  Cisco's Clean Access software and Clean Access Manager are at risk to attack. A malicious user can access a database snapshot and download it without authentication.

• January 02, 2007 02 Jan'07

  Security pros grumble over spam increase

  Spim and spam from unexpected sources is challenging enterprises in 2007. Some enterprises are taking action.

• December 26, 2006 26 Dec'06

  Looking back at information security in 2006

  In this special edition of Security Wire Weekly, senior news writer Bill Brenner reviews his top interviews of 2006.

• December 21, 2006 21 Dec'06

  Microsoft investigates Windows Vista flaw

  Local users could gain elevated system privileges and run malicious commands by exploiting an error within the Windows server library. Vista is among the OS versions affected.

• December 20, 2006 20 Dec'06

  Top 10 storage acquisitions of 2006

  Industry consolidation was fast and furious this year. We rank the deals by quality, not quantity.

• December 19, 2006 19 Dec'06

  Microsoft releases Vista APIs to security vendors

  Microsoft released a draft set of programming interfaces allowing security vendors to develop software using the Windows kernel on 64-bit systems.

• December 19, 2006 19 Dec'06

  Mozilla fixes multiple Firefox flaws

  Digital miscreants could exploit flaws in Mozilla's popular Firefox browser to bypass security programs, access sensitive information and conduct cross-site scripting attacks.

• December 18, 2006 18 Dec'06

  VoIP hacking exposed in new book

  VoIP hacking is a reality, and in a new book, two VoIP security experts outline the tools and tricks to avoid a system-crushing hack.

• December 17, 2006 17 Dec'06

  Criminals find safety in cyberspace

  A new report from McAfee shows how criminals are enjoying a sense of safety and anonymity in cyberspace that they never had on the street. And they're making more money.

• December 13, 2006 13 Dec'06

  Review: Sky's the limit with Skybox View 3.0

  Hot Pick: Skybox View 3.0 offers a unique and flexible approach for assessing and managing specific threats and overall risk to your digital assets.

• December 13, 2006 13 Dec'06

  Third zero-day found in Microsoft Word

  For the third time in a week, a zero-day flaw has been found in Microsoft Word. Users should be cautious when opening attachments from unknown sources.

• December 13, 2006 13 Dec'06

  Sun updates Java Standard Edition

  Sun Microsystems has launched version six of its Java Standard Edition platform, which supports the integration of Java technology with other programming languages

• December 13, 2006 13 Dec'06

  Eclipse adoption rate on the increase

  The adoption rate of the open source Eclipse integrated development environment has more than doubled in Europe, the Middle East and Africa, industry analysts have revealed.

• December 12, 2006 12 Dec'06

  Symantec issues NetBackup security alert

  Symantec issues an alert and patch to vulnerabilities in NetBackup 6.0, 5.1 and 5.0.

• December 11, 2006 11 Dec'06

  Microsoft fixes two zero-day flaws

  The December security update from Microsoft includes patches for zero-day flaws in Visual Studio and Windows Media Player, but two zero-day flaws in Word remain unfixed.

• December 11, 2006 11 Dec'06

  IT pros look for ways to lock down IM

  Special Report: To control growing IM threats, administrators are trying to limit which programs can be used or ban the technology altogether. But that's not always possible.

• December 11, 2006 11 Dec'06

  Vendors to crank up SaaS offerings to SMBs next year

  SMBs will outpace enterprises when it comes to IT spending in 2007 -- and vendors will delve deeper into SaaS to reach them.

• December 11, 2006 11 Dec'06

  SIP desktop phone blends functionality, style

  VoIP desktop phones are no longer the clunky hunks of plastic that take up space on your desk. Siemens yesterday launched a new family of SIP phones that are as slick as they are functional.

• December 10, 2006 10 Dec'06

  Zantaz buys data classification partner Singlecast

  Email archiving player Zantaz has purchased data classification startup Singlecast, which can categorise and apply policies to data before an email takes up storage space.

• December 10, 2006 10 Dec'06

  Inside the numbers: Messaging (in)security

  In August, SearchSecurity.com surveyed 250 IT pros from a variety of industries about messaging security programs. Here are some of the questions we asked and their responses.

• December 10, 2006 10 Dec'06

  Microsoft suffers third zero-day in a week

  A second zero-day flaw in Word has been uncovered, Microsoft said Sunday. It's the software giant's third zero-day in a week.

• December 10, 2006 10 Dec'06

  Storage Decisions in the wild, wild west

  Dedupe, iSCSI, backup, virtualisation and cowboys in Stetson hats -- Storage Decisions Las Vegas 2006 had it all.

• December 07, 2006 07 Dec'06

  Dell, Microsoft tout joint NAS product

  The new NX1950 product is vastly more expensive than its counterparts from HP and NetApp, but it scales higher, supports clusters and has redundant controllers.

• December 06, 2006 06 Dec'06

  Microsoft to fix Visual Studio, Windows flaws

  Microsoft plans to release five security updates to address vulnerabilities in Windows and a flaw in Visual Studio as part of its monthly security bulletin release cycle.

• December 06, 2006 06 Dec'06

  Zero-day flaw found in Windows Media Player

  Attackers could exploit a new zero-day flaw in Windows Media Player to cause a denial of service or launch malicious code. The threat is Microsoft's second zero-day flaw in a week.

• December 06, 2006 06 Dec'06

  MP3 search site pushes spyware, watchdogs say

  A Web site that gives users the ability to search for MP3s contains programs that behave like spyware, according to the Center for Democracy and Technology and StopBadware.org.

• December 05, 2006 05 Dec'06

  New zero-day affects Microsoft Word

  Microsoft confirmed reports of "limited" zero-day attacks and warned customers to be cautious when opening unsolicited Word attachments.

• December 04, 2006 04 Dec'06

  IBM to acquire compliance software firm

  IBM plans to acquire Consul Risk Management Inc., a Delft, Netherlands-based firm whose software tracks non-compliant behavior of employees.

• December 03, 2006 03 Dec'06

  Security Bytes: Phishing worm spreads through MySpace

  Round up of security news

• November 30, 2006 30 Nov'06

  Terrorists may target financial sites

  The U.S. government is warning of an al-Qaida call for a cyberattack against online stock trading and banking Web sites

• November 30, 2006 30 Nov'06

  Symantec blames piracy for Veritas licensing snafu

  Weekly compilation of storage news: Symantec says that software counterfeiting is throwing a wrench in tech support ; FRCP rules take effect.

• November 30, 2006 30 Nov'06

  Oracle responds to security critics

  Security Blog Log: Oracle takes on researchers who have criticised its security procedures in recent weeks. Meanwhile, Symantec warns of new zombie malware.

• November 29, 2006 29 Nov'06

  Video conferencing brings desktop VoIP, app sharing

  Voice, video and Web conferencing vendor Genesys adds desktop VoIP and enhanced application sharing to its collaboration lineup.