News

IT security

  • July 17, 2007 17 Jul'07

    CDP platform specifications

    Continuous data protection (CDP) products track changes to files and data -- typically in real time -- recording activity and allowing recovery to an extremely granular level. This effectively reduces backup windows and restore points, allowing busy...

  • July 16, 2007 16 Jul'07

    Oracle's July 2007 CPU has 45 security fixes

    Oracle stuffed 45 security updates into its July 2007 CPU, fixing flaws across its product line attackers could exploit remotely to compromise corporate databases.

  • July 13, 2007 13 Jul'07

    Symantec fixes flaws in AntiVirus, Backup Exec

    Symantec fixed flaws attackers could exploit in AntiVirus Corporate Edition and Backup Exec to launch malicious code, gain elevated user privileges or cause a denial of service.

  • July 13, 2007 13 Jul'07

    Antispyware legislation gets tepid reviews

    Congress is debating three different bills that would punish spyware pushers, but some IT professionals have their doubts about legislation as a solution to the problem.

  • July 12, 2007 12 Jul'07

    Web security gateways meet rising malware threats

    Web security gateways combine layered defense against the rising tide of Web-based malware with URL filtering and application control.

  • July 12, 2007 12 Jul'07

    Zero-day auction site highlights ethical debate

    A new auction site plans to cash in on flaw research. Executive Editor Dennis Fisher explores if it's a viable business model and if research should be sold to the highest bidder.

  • July 10, 2007 10 Jul'07

    United in threat management part three: how scared are you?

    Wrapping up his look at unified threat management, Ian Yates wonders if the technique will help you sleep better at night.

  • July 09, 2007 09 Jul'07

    Microsoft July updates for critical Excel, Windows and .NET flaws

    Of the six security updates Microsoft released Tuesday, experts expressed the most concern about a critical glitch in the .NET Framework that could leave client machines and Web servers open to attack.

  • July 09, 2007 09 Jul'07

    Data breaches, compliance drive intellectual property protection

    Recent high profile data breaches and compliance pressures are forcing companies to spend more on technology to protect intellectual property, according to a new study.

  • July 09, 2007 09 Jul'07

    Google buy shakes up email archiving

    Google's acquisition of Postini will boost adoption of Gmail, pushing email archiving players to add support for hosted applications.

  • July 06, 2007 06 Jul'07

    Microsoft preps six security updates for Windows, Office

    Microsoft will release six security updates on Tuesday 10 July to address flaws attackers could exploit to launch malicious code and access sensitive information on victims' machines.

  • July 05, 2007 05 Jul'07

    Security Metrics: Replacing Fear, Uncertainty, and Doubt

    In this chapter excerpt from "Security Metrics: Replacing Fear, Uncertainty and Doubt," author Andrew Jaquith reveals ways to present security data in a clean and elegant manner.

  • July 05, 2007 05 Jul'07

    Zero-day auction site opened by Swiss lab

    Swiss start-up WabiSabiLabi is offering zero-day findings for qualified buyers. The site could fuel new debate over flaw disclosure.

  • July 04, 2007 04 Jul'07

    Cisco users upbeat about security direction

    Cisco customers say the vendor's security strategy is headed in the right direction, which is why they believe the networking giant's IronPort integration will be smooth sailing.

  • July 03, 2007 03 Jul'07

    Data storage startups emerge from stealth

    Three new storage firms have come out of stealth mode this June. Analysts predict the next new crop of startups will focus on wireless storage, reporting and alternatives to RAID.

  • July 02, 2007 02 Jul'07

    Are PCI auditors pitching products?

    Auditors shouldn't be pitching remediation services or products to bring a company into compliance with PCI DSS rules, but some merchants are reporting the practice

  • July 01, 2007 01 Jul'07

    SearchSecurity.com Blogs

  • June 29, 2007 29 Jun'07

    CIOs get solutions to meet governance regulations

    CIOs facing a rising bills to meet governance, risk and compliance regulations may be able to control their costs better if they turn to new purpose-built software.

  • June 29, 2007 29 Jun'07

    Software to help CIOs meet governance regulations

    CIOs facing a rising bills to meet governance, risk and compliance regulations may be able to control their costs better if they turn to new purpose-built software.

  • June 29, 2007 29 Jun'07

    Vendors admit more cooperation needed on security

    Security leaders from large software vendors pledge to cooperate on embedding more security into their products.

  • June 28, 2007 28 Jun'07

    Network security: Overlay versus perimeter security model debated at Catalyst

    Traditional network perimeter security -- firewalls, and even network access control -- may soon be pushed out in favour of using VPNs for network security, which could ease the security burden for networking staff, according to Dave Passmore. The ...

  • June 27, 2007 27 Jun'07

    Cisco vows to maintain IronPort tech, talent

    As it completes the purchase of IronPort Systems, Cisco vows to maintain IronPort's talent base and make investments to keep its newly-acquired technology fresh.

  • June 25, 2007 25 Jun'07

    Richard Granger's departure may jeopardise NHS IT programme

    Richard Granger's departure from Connecting for Health may jeopardise the stability and success of the politically driven NHS National Programme for IT.

  • June 25, 2007 25 Jun'07

    PCI Council hears complaints, suggestions for changes

    Companies with the most stringent security technologies endure hurdles to comply with PCI DSS. Some firms are turning to the upcoming Burton Group Catalyst Conference for answers.

  • June 25, 2007 25 Jun'07

    DHS suffered more than 800 cyber attacks in two years

    Senior officials at the US Department of Homeland Security have acknowledged hundreds of security lapses but say improvements have been made.

  • June 25, 2007 25 Jun'07

    Instant messaging usage increase highlights need for policies

    A Burton Group report suggests that all companies should have an IM usage policy, even if they haven't deployed IM yet

  • June 20, 2007 20 Jun'07

    HP to acquire SPI Dynamics for Web security

    HP says it will would bolster Web site assessments and Web application vulnerabilities with its acquisition of Atlanta-based SPI Dynamics Inc.

  • June 19, 2007 19 Jun'07

    Securing the enterprise VoIP perimeter

    How to make VoIP work without sacrificing firewalls or network perimeter security.

  • June 19, 2007 19 Jun'07

    Endpoint fears drive PatchLink-SecureWave merger

    Experts say the PatchLink-SecureWave merger makes sense since IT pros want a better way to protect their endpoint devices. But PatchLink's market supremacy is far from assured.

  • June 18, 2007 18 Jun'07

    Will HP do the right thing with SPI Dynamics?

    Analysts say HP can dramatically boost its security with the purchase of SPI Dynamics, but some users worry about SPI's technology wilting under the new ownership.

  • June 17, 2007 17 Jun'07

    Burton Group Catalyst Conference San Francisco 2007

    SearchSecurity.com brings you the latest news, interviews, podcasts and more from the Burton Group Catalyst Conference 2007 in San Francisco.

  • June 17, 2007 17 Jun'07

    VoIP security testing fundamentals

    Testing your VoIP security system against all the threats that exist on the network can be a full time job. This guide documents how a VoIP system can be tested and suggest some of the available tools to use -- with a focus on fuzzing tools and ...

  • June 13, 2007 13 Jun'07

    Microsoft patches Windows Vista, IE 7

    Microsoft fixed 15 flaws in a variety of products Tuesday, including Windows XP, Vista and Internet Explorer 7. Attackers could exploit the most serious flaws for remote code execution.

  • June 10, 2007 10 Jun'07

    Connecting for Health briefing claims much of NHS NPfIT complete

    A confidential Connecting for Health briefing paper for the prime minister has claimed that much of the NHS's £12.4bn National Programme for IT (NPfIT) is complete - although an integrated national care record system has yet to materialise, and ...

  • June 08, 2007 08 Jun'07

    Serious flaws put Yahoo Messenger users in peril

    Attackers could exploit two serious flaws in Yahoo Messenger to run malicious code on targeted machines, vulnerability trackers warned Wednesday.

  • June 06, 2007 06 Jun'07

    Network access controlled via biometrics

    Fingerprint readers, a form of biometrics, have been used to protect data and endpoints, but now IT is using the security technology to control network access

  • June 05, 2007 05 Jun'07

    IBM to acquire Watchfire for risk, compliance

    IBM agreed to acquire Waltham, Mass.-based Watchfire Corp. to add Web application and compliance testing tools into Big Blue's Rational development platform.

  • June 05, 2007 05 Jun'07

    Watchfire will help IBM build application security

    Analysts have been pushing the Security 3.0 concept this week at Gartner's IT Security Summit, and one analyst says IBM's acquisition of Watchfire illustrates the trend.

  • June 04, 2007 04 Jun'07

    SMBs sample SaaS via telecoms

    Telecom XO Communications has announced a new, SMB-focused partnership with Jamcracker, a wholesaler of SaaS technology. Analysts say more telecoms will try to offer SMBs IT services with such deals.

  • June 03, 2007 03 Jun'07

    IBM: We're No. 1 in storage hardware

    A new combined disk and tape tracker from IDC has IBM trumpeting from the rooftops that it's the market leader. But what's IBM's story when it comes to software?