security flaws
RSS security flawsLords to debate security progress of "wild west" web
News But others, such as software developers' liability for damage caused by security flaws, and enabling people to report online fraud directly to the police rather than their bank, have either been ignored... [06 Oct 2008]
Damage Control for Network Applications
White Paper With code complexity increasing by the minute, all are forced to accept that software contains bugs, flaws, some of which can be exploited for malicious purposes. For all systems, one of the most important evaluation... [01 Oct 2008]
Microsoft's 'Patch Tuesday' targets six critical flaws
News The vulnerabilities, as detailed in Microsoft Security Bulletin MS08-045, relate to HTML objects memory corruption, HTML component handling and uninitialised memory corruption. In Security Bulletin... [13 Aug 2008]
Does open source pose a security risk?
News Independent software vendors (ISVs) selling proprietary software have claimed the open-source development process exposes open-source software to greater security risks, while open-source developers argue that the... [22 Jul 2008]
Google open sources web 2.0 security
News Google has released as open source a web application assessment tool, Ratproxy, that is designed to root out potential security flaws. Ratproxy is an audit system written internally and introduced last... [14 Jul 2008]
Google Talk finds a home on iPhone
News That means iPhone users may still be vulnerable to flaws discovered later than February. Google is making its Google Talk instant-messaging application available for Apple's iPhone and iPod Touch, however these new... [04 Jul 2008]
Corporations riddled with security holes
News Finance, government, legal, retail and utilities sectors have all seen an increase in the number of overall vulnerabilities according to NTA, with government being the only sector to suffer from all of the top 10 high risk... [19 Jun 2008]
Next Generation Firewalls: Restoring Effectiveness Through Application Visibility and Control
White Paper The result has been a steady erosion of the effectiveness of network firewalls and, consequently, the illumination of fundamental flaws in the initial design and subsequent modifications to these foundational elements of... [31 May 2008]
'Huge' Apple update plugs 40 Leopard security holes
News The update, released this week, plugs flaws that render OS X Leopard users vulnerable to systems compromises including denial-of-service attacks, information disclosure and remote code execution. Currently at least... [30 May 2008]
Apple patches up Safari
News Apple has released another round of security patches for its web browser this week, targeting a vulnerability which allowed a MacBook Air to be hacked and two flaws in the Windows-only version of Safari. [18 Apr 2008]
Editor's Blog: Ever tried to sack a CIO?
Comment According to this concept your system can have plenty of flaws - but if nobody knows where they are it isn't a problem. The idea is that if the rest of the execs can't spot the CIO's flaws, then they... [06 Mar 2008]
'Fundamental' flaws in Child Support Agency IT
News Security from A-Z… It has emerged the Child Support Agency's (CSA) troubled £1.1bn computer system has needed 130 changes in eight years to get it working properly. The agency's CS2 computer system, which was built by... [04 Mar 2008]
An Empirical Study Into the Security Exposure to Hosts of Hostile Virtualized Environments
White Paper As virtual machines become increasingly commonplace as a method of separating hostile or hazardous code from commodity systems, the potential security exposure from implementation flaws has increased... [01 Mar 2008]
Understanding ZDI: Separating Fact From Fiction
White Paper Recently, concerns have resurfaced over whether or not 'Paid for' security research is in the best interest of the industry - citing that information surrounding software flaws could wind up in the hands... [29 Feb 2008]
Macs no longer safe from cyberattacks
News A serious threat to all computer systems comes from websites that have been planted with malicious code, which exploit flaws in applications such as Internet Explorer, and Apple's Quicktime. Multiple... [23 Jan 2008]
