Ioactive
14 Stories
Adobe: Time to step up security plate?
Insight From a security perspective, Adobe looks an awful lot like Microsoft did back when Windows was getting blasted by viruses and vulnerabilities and before Redmond beefed up its defenses.
Tags: Network security, Security Management, PC security, Data security, Business applications, Adobe Systems Inc., Macromedia Flash Player, Security, Adobe Acrobat Reader, patch management
Security researchers and vendors to call a truce?
News news analysis Security researchers pull presentation on Web attack method to give Adobe time to develop a patch in the latest case of researchers voluntarily restraining on disclosing vulnerabilities. Is compromise the answer?
Tags: Security, Vulnerability, penetration testing, Compaq Tru64 UNIX, software, hacking, professor, researcher, Adobe Systems Inc., computer security
Security expert: DNS attacks are happening
News IOActive researcher Dan Kaminsky says people are looking for unpatched DNS systems and some attacks are due to a fatal vulnerability with the DNS Web address lookup system.
Tags: Network security, Domain names, Security, Vulnerability, Attack, Password, Server, phone, sensitive information, penetration testing
Antivirus holes, browser spies are highlights at Microsoft's BlueHat hacker sessions
News Microsoft developers hear from top security researchers about problems with Windows, browsers and antivirus software at two-day BlueHat confab at Microsoft’s campus.
Tags: Antivirus software, Network security, Microsoft Corp., Security, Web Browser, Antivirus Software, Vulnerability, antivirus, phone, software
Report: Spies hacked into US electricity grid
News Quoting national security officials, report says spies have infiltrated the power grid in an apparent attempt to map the utility infrastructure.
Tags: Hacking, Security Management, Security, Powerline, cell phone network, Grid, electricity grid, software, network, Internet
Conficker flaw reveals which computers are infected
News Researchers find flaw in Conficker that lets them detect which computers have the legit Microsoft patch and which were "patched" by the worm itself.
Tags: Viruses and worms, Microsoft Corp., Security, Worm, Scanner, Honeynet Project, Tool, removable storage, Flaw, computer
Apple releases patch for critical DNS flaw
News The company has released a security update for its Tiger and Leopard operating systems to address a critical and well-publicized Domain Name System flaw.
Tags: Security, Authentication and encryption, Network security, Domain names, Mac OS, Apple Inc., Apple Mac OS X, Apple Macintosh, Apple Mac OS, operating system
DNS exploit code is in the wild
News The urgency to patch clients and servers rises to a fever pitch as code to attack the Internet is released.
Tags: Security, Domain names, Web sites, Network security, Domain Name, consortium, exploit code, patch management, DNS, program manager
Nixed: Black Hat talk on RFID access badge risks
News Legal threat from HID prompts security researchers to cancel discussion on flaws of radio tag-embedded building access ID cards.
Tags: RFID
Windows weakness can lead to network traffic hijacks
News Problem in the way Windows PCs obtain network settings could let attackers hijack traffic, researchers warn.
Tags: Data security, Network security, Security Management
Researchers exploit flaws in SSL, domain authentication system
News Dan Kaminsky and Moxie Marlinspike explain how flaws in the way domain names are verified on the Internet could allow attackers to impersonate a site and steal information from unsuspecting Web surfers.
Tags: Network security, Data security, Authentication and encryption, Web sites, Authentication, Security, SSL, Domain Name, Web Browser, Vulnerability
Report: Smart-grid hackers could cause blackouts
News Cybersecurity experts say someone with US$500 of equipment and materials could take command and control, allowing for "en masse manipulation" of electricity service.
Tags: Hacking, Department Of Energy, CNN, Security, Cybersecurity, Blackout, security services company, Grid, data sharing, power consumption
Secure software? Experts say it's no longer a pipedream
News Hurdles still exist, but on the eve of a big security conference, industry execs say the prospect of vulnerability-free software may not be that far away.
Tags: Network security, Mobile, PC security, Viruses and worms, Microsoft Corp., IBM Corp., Security, Vulnerability, Open Source, Gary McGraw
Conficker postmortem: Hype distracted but threat is real
News Experts say media hype of Conficker worm may have distracted people from the real but less sexy threat--the ongoing, everyday risks on the Internet.
Tags: Viruses and worms, Security, Worm, Conficker Working Group, removable storage, computer, virus, network, researcher, Internet
