News

IT risk management

October 10, 2006 10 Oct'06
Google Code Search gives security experts a sinking feeling

The new search tool from Google can help developers find useful code examples. But security experts worry that it also will make attackers' jobs that much easier.
October 09, 2006 09 Oct'06
Banking on the future

As the banking landscape changes and global competition takes hold, IT offers banks a way of differentiating themselves from the competition, so how do they balance innovation and imitation in this tough market sector?
October 09, 2006 09 Oct'06
Midmarket IT pros have NAC for identity, access management

Midmarket firms may not have the budgets of large companies, but IT pros can build identity and access management programs that are as effective as what the big guys have.
October 09, 2006 09 Oct'06
Symantec unveils Security 2.0 initiative

As part of Security 2.0, Symantec unveiled new products and partnerships with VeriSign and Accenture to help customers secure their databases, manage risk and fight ID theft.

October 04, 2006 04 Oct'06
Tiered storage becoming tried and true

Tiered storage matches the value of data with the performance (and expense) of storage. Ideally, tiered storage can save money, while easing the access demands to any single storage tier. While tiered storage has clearly brought storage costs and ...
September 26, 2006 26 Sep'06
Stration worm targets Windows machines

The worm uses several fake email messages, including one claiming to be a security update. Users are advised to avoid unsolicited email attachments.
September 25, 2006 25 Sep'06
IT pros worried about unsecured devices

IT admins keep working to make networks secure even as more unsecured personal gadgets their way into companies.
September 24, 2006 24 Sep'06
Hijacked consumer machines target the enterprise

Attackers continue to strike gold by targeting consumers who lack the security savvy to address desktop application flaws, according to Symantec Corp. Enterprises ultimately pay the price.
September 14, 2006 14 Sep'06
Secure network perimeter to result from Symantec-Juniper deal

Juniper and Symantec announced a deal to integrate Symantec's client security software with Juniper's security hardware. The result will allow endpoint compliance and access control platforms to secure the enterprise perimeter.
September 14, 2006 14 Sep'06
Three ways to create clustered storage

Clustered storage systems run on storage servers, NAS gateways and hosts. Here's how to determine which clustered file-system architecture is best for your needs and storage environment.

September 12, 2006 12 Sep'06
Dell and EMC: Five more years

Dell leans on EMC for support in the face of an SEC investigation and possible delisting from NASDAQ.
September 11, 2006 11 Sep'06
Data storage compliance's impact on storage product choices

Data storage compliance is having a tremendous impact on the storage organization, as well as the management practices employed to retain, search, certify and destroy data. It's not just regulations like SOX or HIPAA that influence storage -- there ...
September 11, 2006 11 Sep'06
Security Bytes: Hackers target the Terminator

In other news, Symantec upgrades its Norton product line and the Anti-Phishing Working Group says phishing activity soared this summer.
September 06, 2006 06 Sep'06
Fast Guide: VoIP encryption

A guide to encryption within VoIP networks
September 06, 2006 06 Sep'06
Security Bytes: New flaw in Cisco IOS

Security news including Cisco, Mozilla hires a former Microsoft strategist to bolster security, a new "pump-and-dump" stock spam campaign is discovered and TippingPoint lists info on new flaws.
September 05, 2006 05 Sep'06
ControlGuard targets rogue devices

ControlGuard Access Manager is an effective tool for controlling what devices users can add to their workstations and how they are used.
September 05, 2006 05 Sep'06
Proofpoint delivers strong messaging security

Proofpoint Messaging Security Gateway is a highly recommended, affordable solution for big enterprises that need protection from email-based attacks.
September 04, 2006 04 Sep'06
Revamped Cisco WAFS worth the wait, users say

Months late, Cisco has finally released a combined Wan optimisation and WAFS product, while startups like Riverbed have been snapping up the customers. But some Cisco beta testers say it has been worth the wait.
August 31, 2006 31 Aug'06
Attacks against MS06-040 on the rise

Six pieces of malware are now going after the Windows Server Service flaw outlined in MS06-040, and a spike in attacks has led Symantec to raise its ThreatCon to Level 2.
August 31, 2006 31 Aug'06
Emulex acquisition could cloud future of FC-SATA spec

New Emulex subsidiary Sierra Logic's strength is in FC-SATA bridging technology. Meanwhile, ONStor launches midrange clustered NAS, and Quantum shareholders withhold votes.
August 30, 2006 30 Aug'06
Survey: Data breaches difficult to spot, prevent

IT pros worry that false positives and a lack of resources are preventing them from blocking data breaches
August 30, 2006 30 Aug'06
Symantec CIO vies with virtualization, device policy

Symantec CIO David Thompson says virtualization is a big part of the security giant's future and it has developed a policy to mitigate virtualization security risks.
August 30, 2006 30 Aug'06
Malware database access sparks debate

Should an emerging database of more than 300,000 malware samples remain a walled community for trusted users, or is open access the best way to fight off digital desperados?
August 29, 2006 29 Aug'06
AT&T breach affects 19,000 customers

Online outlaws hacked into an AT&T computer system and stole credit card data on thousands of customers. AT&T has offered to pay for credit monitoring services for those affected.
August 29, 2006 29 Aug'06
An era ends as Tandberg buys Exabyte

The once-dominant player in the tape market has ended a long downward spiral by selling off its assets. At least customers can now count on continued support, analysts say.
August 28, 2006 28 Aug'06
Microsoft probes alleged Internet Explorer flaw

A research group claims attackers could launch malicious code using a flaw in the way Internet Explorer instantiates certain COM objects' ActiveX controls.
August 27, 2006 27 Aug'06
Third-party patching: Prudent or perilous?

Security patches issued by third parties have become more prevalent in recent months, and while some security pros endorse them, others say they're more trouble than they're worth.
August 24, 2006 24 Aug'06
Are tape backups a thing of the past when it comes to disaster recovery?

I guess we have to look at disaster recovery, when it comes to tapes, in order of priorities. So, if we're talking about your most critical applications nowadays -- your most critical data -- tape backup is actually losing favor to disk backup or ...
August 24, 2006 24 Aug'06
Security Blog Log: Opinions abound on IBM/ISS deal

Bloggers ponder what IBM's acquisition of ISS says about the industry as a whole. Is the end in sight for independent security vendors?
August 24, 2006 24 Aug'06
How do I identify what data to replicate and what data to simply backup?

It goes back again to the value of the data to your organization -- or the impact of losing access to this data. Typically, from a business continuity perspective, the best way to establish this is through what we call a "business impact analysis," ...
August 24, 2006 24 Aug'06
What is the difference between RPO and RTO (from a backup perspective)?

The recovery point objective (RPO) and the recovery time objective (RTO) are two very specific parameters that are closely associated with recovery. The RTO is how long you can basically go without a specific application. This is often associated ...
August 24, 2006 24 Aug'06
What is the most important aspect of data protection when it comes to DR?

You could answer that with one word really, and I would have to say "testing." Just "testing." Whatever you do when you're protecting data, whether it's a backup, whether it's replication, whatever it is, make sure that you test what you put in ...
August 24, 2006 24 Aug'06
Weekly compilation of storage news

Symantec peddles enterprise vault toolT and the new features developed because of a recent update to the US Federal Rules of Civil Procedure.
August 24, 2006 24 Aug'06
Aren't backups and archives essentially the same thing?

The answer to that can be a "yes" and "no." If we look at a very high level, a copy of data is a copy of data, and that's where a lot of people confuse both as being somewhat the same -- one copy is just kept longer. When we start digging into what ...
August 24, 2006 24 Aug'06
What do tiered storage and ILM have to do with disaster recovery?

That idea ties back into the topics of data growth, data control, data management and recoverability. Once you start categorizing your data based on criticality and recovery priority, it gives you an indication of your data segments. We have our ...
August 24, 2006 24 Aug'06
How far apart should my production and alternate recovery sites be?

As a good consultant, I would have to use the typical answer; it depends. We have a few things to consider here. First, what kind of disaster are you trying to protect yourself (or your organization) from? Second, what is your geography like?
August 21, 2006 21 Aug'06
IBM spruces up storage line

IBM floated a raft of announcements across its storage line, but analysts say they are still waiting for the updates stuck in the research phase.
August 20, 2006 20 Aug'06
AOL data spill leads to dismissals, resignation

AOL has fired two employees and its CTO has left the company after search data from 658,000 customers was accidentally exposed earlier this month.
August 15, 2006 15 Aug'06
Cisco says it can't reproduce PIX flaw

Ever since a researcher at Black Hat outlined a flaw in the PIX firewall, Cisco has been trying to reproduce the security hole. So far, the company has been unsuccessful.
August 14, 2006 14 Aug'06
EMC sheds light on RSA integration plans

As the dust begins to settle on EMC's $2.1 billion acquisition of RSA Security, the hard work of integration begins. What's EMC strategy here?
August 14, 2006 14 Aug'06
Mocbot update targets MS06-040 flaw

Security experts raised the red flag Sunday as new malware targets the Windows flaw addressed in the MS06-040 patch. Attackers are using the flaw to expand IRC-controlled botnets.
August 10, 2006 10 Aug'06
Security Blog Log: Israeli-Hezbollah war spills into cyberspace

This week blogosphere warily watches online attacks inspired by the Mideast conflict and rants over the latest security incidents at AOL and the VA.
August 10, 2006 10 Aug'06
Vista kernel limits have security vendors on edge

Microsoft's PatchGuard feature will prevent extension of Windows Vista kernel, and antivirus vendors say it'll make it harder for them to produce good security products.
August 09, 2006 09 Aug'06
Xiotech resurfaces with data compliance focus

Xiotech has been busy acquiring a legal discovery software vendor and building a data compliance practice, but what about storage?
August 08, 2006 08 Aug'06
Cheat sheet: Access management solutions and their pros and cons

Popular authentication methods such as passwords, biometrics and two-factor are assessed in this chart.
August 06, 2006 06 Aug'06
Security Bytes: CA fixes eTrust Antivirus flaws

Online thieves steal $700,000 from personal accounts, researchers expose e-passport vulnerability; and arrests are made in the VA security breach case.
August 03, 2006 03 Aug'06
Ajax threats worry researchers

Black Hat: While it makes smooth Web applications like Google Maps possible, the rush to adopt Ajax may fuel haphazard development and a feeding frenzy among hackers.
August 03, 2006 03 Aug'06
Vendors reject preferential knowledge sharing

While Cisco continues to investigate a potential PIX firewall flaw, it and other vendors say sharing security information quickly and indiscriminately is always the best policy.
August 03, 2006 03 Aug'06
EMC updates SAN Advisor design tool

EMC's SAN design tool now recognises zones and allows users to customise rules; HP and EMC sign five-year cross-licensing deal.
August 02, 2006 02 Aug'06
Twelve Microsoft fixes coming on Patch Tuesday

Microsoft Tuesday will release a dozen new security bulletins for its Windows and Office products, likely including fixes for several outstanding PowerPoint flaws.