Help Net Security
Security toolbox for .NET development and testing
In this video from OWASP AppSec Research 2010, Johan Lindfors and Dag K?¶nig from Microsoft talk about a security toolbox for .NET development and testing.
Week in review: Breaking SSL, geotagging risks and the first SMS Android Trojan
Here’s an overview of some of last week’s most interesting news, articles and videos: How to render SSL useless In this video from OWASP AppSec Research 2010, Ivan …
Cisco IOS Software TCP DoS vulnerability
Cisco IOS Software Release, 15.1(2)T is affected by a DoS vulnerability during the TCP establishment phase. The vulnerability could cause embryonic TCP connections to remain …
PCI standard changes ahead
The PCI Security Standards Council (PCI SSC) published documentation highlighting the expected changes to be introduced with version 2.0 of the PCI DSS and PA-DSS in October …
Real-time iPhone tracking app
Life360 launched its iPhone application, Family & Offender GPS Tracker. By leveraging the real-time location capabilities of iOS4, the product enables parents to …
Regulating for the cloud
This videos focus on the regulatory issues on the topic of cloud computing, in terms of the EU Data Protection Framework. The topic is of particular interest from both a …
New QuickTime for Windows fixes security vulnerability
Apple released QuickTime 7.6.7 which addresses a security vulnerability affecting the software running on Windows 7, Vista, XP SP2 or later. A stack buffer overflow exists in …
Source of recent malicious malware campaigns
The Red Condor security team today issued a warning of a new sophisticated email malware threat that is disguised as misdirected personal emails with executable attachments. …
New certification for convergence technologies professionals
CompTIA is collaborating with Certification Partners, owners of the Convergence Technologies Professional (CTP) certification, on a new credential that validates skills and …
Capsicum: OS capability and sandbox framework
Capsicum is a lightweight OS capability and sandbox framework developed at the University of Cambridge Computer Laboratory. Capsicum extends the POSIX API, providing several …
An analysis of fuzzing 4 products with five lines of Python
In the videos below you can see security expert Charlie Miller presenting “Babysitting an Army of Monkeys: An analysis of fuzzing 4 products with 5 lines of …
Millions of Coldfusion sites need to apply patches
ProCheckUp were able to access every file including username and passwords from a server running ColdFusion. This was completed through a directory traversal and file …
Featured news
Resources
Don't miss
- SonicWall says attackers compromised some firewall configuration backup files
- Google fixes actively exploited Chrome zero-day vulnerability (CVE-2025-10585)
- LinkedIn now uses your data for AI by default, opt out now!
- Behind the scenes of cURL with its founder: Releases, updates, and security
- Product showcase: Exaforce – The full lifecycle AI SOC platform