Help Net Security
Oracle critical patch update – July 2007
Critical Patch Update is a collection of patches for multiple security vulnerabilities. It also includes non-security fixes that are required (because of interdependencies) by …
Web Vulnerabilities in the Age of the iPhone
I’ve read lots of articles about hacking the iPhone lately. They’re mostly focused on exploring the hardware, circumventing the intended activation process, or …
Certifying Information Security Management Systems
An information security management system (ISMS) is focused on managing information security within an organization, a topic that is of growing concern to many organizations …
Report on email threats: massive botnets spread PDF and malware
Commtouch released its Email Threats Trend Report for the second quarter of 2007, based on the company’s real-time analysis of billions of email messages globally each …
Ransomware Trojan demands $300 for giving returning user data
PandaLabs has uncovered a new ransomware strain: Sinowal.FY. This malicious code encrypts users’ files so that they cannot access them, and demands a ransom for giving …
Next-generation 10 Gigabit enterprise threat management solution
Sourcefire has announced the upcoming release of the Sourcefire 3D9800 Sensor, which will enable users to protect their highest-performing network segments with a single …
Survey says that managing complexity still top security challenge
Managing the complexity of security continues to be the number one challenge for organizations around the globe, followed closely by preventing security breaches, enforcing …
New OnDemand application security service
Watchfire introduced AppScan OnDemand, a new outsourced service to manage web application vulnerability assessments. The new AppScan OnDemand service makes it easy for …
Secure Encryption and Backup with Knox
Mac geeks usually have the Disk Utility placed somewhere within easy reach ready to be fired up to make encrypted disk images whenever needed. However, there’s a more …
26 arrested in Poste Italiane phishing attack
Sophos is welcoming news that members of an alleged international phishing gang have been arrested following an investigation by Italian police. The Guardia di Finanza …
Using Yahoo Site Explorer service for crawling other web sites
As posted on GNUCITIZEN: This simple proof of concept uses Yahoo Site Explorer Service to crawl/spider other web sites. It is written entirely with JavaScript – no …
New software programmer exams for application security certification
The SANS Institute has announced the launch of the first GIAC Secure Software Programmer (GSSP) exams. The inaugural exams covering C and Java/Java EE will be held August 14, …
Featured news
Resources
Don't miss
- Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352)
- Microsoft revokes 200 certs used to sign malicious Teams installers
- A new approach to blockchain spam: Local reputation over global rules
- SAP zero-day wake-up call: Why ERP systems need a unified defense
- “Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)