Sponsored White Papers, Webcasts, and Downloads
Additional Resources
- Another student hacks another police website
- Another student hacks another police websiteRE: Another student hacks another police websitethey should probably code their site correctly with decent form validatation and revalidation, so that SQL injection attacks like this don't work. It's not that hard!
- Tags: Web site development, Web technology, police website, Web site
- Discussion threads 2008-07-24
- |)ruid and HD Moore release part 2 of DNS exploit
- [Updated 07/24/2008: Gallery images of diffs of code revisions has been included and will be updated as things change, see here.] Earlier today, noted researchers |)ruid and HD Moore released exploit code for the Metasploit tool for attacking the DNS flaw that was originally reported by Dan...
- Tags: DNS, Domain, Server, Entry, Exploit, NS, NS Record, Domain Names, Networking, Internet, Nathan McFeters
- Blog posts 2008-07-23
- How to lose customers by not even trying
- How to lose customers by not even tryingSpot onThere is nothing more infuriating than trying to use a site that has been designed for a single specific browser that isn't yours.I truly appreciate how difficult it can be to get sites working consistently across all browsers. But it is surely...
- Tags: Web site development, Web technology, Web browsers, Hertz Corp., Web site, Web browser
- Discussion threads 2008-07-23
- A look at the recent Firefox 3 vulnerability
- True to form, Billy Rios promised a more in depth look at the MSFA2008-35 vulnerability which is another protocol handler flaw in Firefox 3. As previously reported here, this was another protocol handler flaw that led to arbitrary remote command execution, and is especially dangerous since it can be deployed...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, Apple Safari, Vulnerability, Protocol Handler, Firefox3, Security Decision, Web Browsers, Security, Internet, Nathan McFeters
- Blog posts 2008-07-22
- Open Source VoIP: Asterisk or FreeSwitch?
- When the time came for a new PBX, Brian Snipes chose to do something a bit unconventional. The IT manager at law firm Hare, Wynn, Newell, and Newton LLP didn't purchase a commercial PBX, nor did he settle on the open source market leader,...
- Tags: Phone, PBX, Attorney, FreeSwitch, Asterisk, Telephony, VOIP, Open Source, Telecom & Utilities, Networking, Telecommunications, Dave Greenfield
- Blog posts 2008-07-22
- 2008 Pwnie Award nominees announced
- Well, after getting 134 nominations, and spending countless hours pulling out nominees, the judges for the 2008 Pwnie Awards have announced the final nominees to be voted on. From the site: The final list of nominees for the nine Pwnie Award categories is ...
- Tags: Nominee, Vulnerability, XSS, Attack, Flaw, Dan, XSS Flaw, Lifelock, Security, Nathan McFeters
- Blog posts 2008-07-21
- Kaspersky's Malaysian site hacked by Turkish hacker
- According to Zone-h.org, Kaspersky's Malaysian site has been defaced by a Turkish hacker during the weekend, through a SQL injection, leaving the following message - "hacked by m0sted And Amen Kaspersky Shop Hax0red No War Turkish Hacker Thanx to Terrorist Crew all team members". "The official Malaysian Kaspersky Antivirus's...
- Tags: Web, Malware, Web Site, Site, Hacker, Kaspersky, Web Site Development, Web Technology, Cyberthreats, Spyware, Adware & Malware, Security, Viruses And Worms, Internet, Dancho Danchev
- Blog posts 2008-07-21
- SaaS vendor quits browser to boost sales
- SaaS vendor quits browser to boost salesNo slant here...Maybe I'll start writing articles on the companies I have investments in so I can improve my positions. This site just keeps going from bad to worse.Rave Webinars & Free TrialsI'm a consultant with Entellium and would encourage anyone interested in checking...
- Tags: Software as a Service (SaaS), cloud computing, Web browsers, Java development tools, Phil, webinar, software-as-a-service, SaaS company, Web browser, sales
- Discussion threads 2008-07-18
- Open-source Castle Project founder joins Microsoft
- Open-source Castle Project founder joins MicrosoftI've always been curious about the uptake of Iron*Its a strategy that seems to follow the same mistake MS is making on the web...."If we offer OUR version they will come". It seems to me that ASP.Net attracts a certain type of person just like...
- Tags: .NET, Middleware, Application servers, Scripting languages, open source, Microsoft .NET, Microsoft ASP.NET, Microsoft Corp., PHP
- Discussion threads 2008-07-18
- Protocol handlers cause Mozilla Firefox 3 remote command execution vulnerabilities
- Update 07/16/2008: Apparently I neglected to mention that this has been patched already. Reading over it again and a heads up from a reader pointed out the error to me. As always, great job by Window Snyder and the Mozilla Security Team for getting this patched quickly. ...
- Tags: Mozilla Firefox 3.0, Mozilla Firefox, URI, Vulnerability, Mozilla Corp., Attack, Web Browsers, Security, Internet, Nathan McFeters
- Blog posts 2008-07-16
- Voting For A McCain
- Voting For A McCainAh, milk from the the government sow..Obama's tax policies will hurt American business way more than any benefits his technology policies may provide. It's not government's role to create and invest in technology; its role is to get out of the way so that the Apples,...
- Tags: Taxes, Free trade, Obamessiah, tax, Obama
- Discussion threads 2008-07-16
- Ounce Labs finds 2 security vulnerabilities in Spring framework
- Code inspector Ounce Labs has identified two vulnerabilities in the open source Spring framework that exposes their enterprise applications to would-be hackers and hijackers. The two issues, ModelView Injection and Data Submission to Non-Editable Fields, affect only the MVC module of the Spring framework, which is used to...
- Tags: Vulnerability, XSS, Framework, Ounce Labs, Spring, Security, Operational Planning, Databases, Business Operations, Enterprise Software, Software, Data Management, Paula Rooney
- Blog posts 2008-07-16
- David Litchfield on details of one of the critical vulnerabilities from the latest Oracle patch
- More details coming out on the Oracle patches that were released last week, see Ryan Naraine's write up here. David Litchfield, noted security researcher from NGSSoftware, released details of one of the vulnerabilities on the Full-Disclosure email list today, and the details are staggering. The flaw allows potential unauthenticated remote...
- Tags: Oracle Application Server, Oracle Corp., Database Server, Critical Vulnerability, Application Servers, Middleware, Databases, Enterprise Software, Security, Software, Data Management, Nathan McFeters
- Blog posts 2008-07-15
- Why Flash and Silverlight will save the web
- Why Flash and Silverlight will save the webnone issueI thought that parts of flash Flex were open source and parts of silverlight are too. as these platforms evolve, open standards will be tacked on them. SilverLight, my opinion, really needs HTML display support built in so W3 standards...
- Tags: Channel management, Quality, Microsoft Silverlight, Web, standards
- Discussion threads 2008-07-15
- Symantec says Microsoft Access ActiveX attacks to increase
- Symantec has reported that the Neosploit toolkit has been updated to include attack vectors for the recent Microsoft Access ActiveX vulnerability. Neosploit is a toolkit for sale on the market (price estimates fall between $1500-$3000) that seeks to automate and extend the capability of browser exploits. Symantec...
- Tags: Web, Symantec Corp., Microsoft Access, Vulnerability, Trusted Site, ActiveX Control, Microsoft Internet Explorer, Microsoft Corp., Web Site, Site, Zone, Intranet, Attack, Neosploit, Internet, ActiveX/COM/COM+/DCOM, Web Browsers, Security, Software Development, Software/Web Development, Nathan McFeters
- Blog posts 2008-07-14
- Remote code execution through Intel CPU bugs
- Kris Kaspersky, author of numerous books on reverse engineering and software engineering, will be presenting his research on remote code execution through Intel CPU bugs at the upcoming Hack in the Box Security Conference in Malaysia. If his proof of concept code consisting of JavaScript or TCP/IP packet attacks on...
- Tags: CPU, Intel Corp., Processors, Security, Semiconductors, Hardware, Components, Dancho Danchev
- Blog posts 2008-07-14
- Amazon helps boost Engine Yard's cloud computing efforts with capital infusion
- Rubinius, a project to develop the next generation virtual machine for the Ruby programming language, implements the core libraries in Ruby, making a system accessible for development and extension. Merb is a light framework that is ORM, JavaScript library, and template language agnostic. by Dana Gardner
- Tags: Cloud Computing, Amazon.com Inc., Ruby, Merb, Scripting Languages, Software/Web Development, Web Development, Dana Gardner
- Blog posts 2008-07-14
- Spammers announce World War III with spam emails packing malicious payloads
- Update: Dancho Danchev informed that this actually relates back to his article on from last week. Apparently I reposted with less information than the original, so I apologize to Dancho for that. Guess that's what I get for poking my nose into the malware realm. Dancho informed...
- Tags: Spammer, Video, Iran, Corporate Communications, Media Players, E-mail, Spyware, Adware & Malware, Cyberthreats, Security, Marketing, Consumer Electronics, Personal Technology, Online Communications, Nathan McFeters
- Blog posts 2008-07-14
- ZZEE PHPExe (exe)
- Compile PHP, HTML, Javascript and other Web files into Windows GUI programs. Rapidly develop Windows GUI applications by employing the familiar PHP Web paradigm. Share the same code for online and Windows applications with little or no modification. Applications compiled with ZZEE PHPExe look and behave like standard Windows GUI...
- Tags: PHP, GUI, Zzee, Microsoft Windows, Scripting Languages, Operating Systems, Software, Software/Web Development, Web Development
- Software downloads 2008-07-14
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
In this podcast Intel's Malcolm Harkins and HP's Manny Novoa chat about the latest issues in security technologies, notably the emergence of hardware assisted virtualization.
The Cisco Mobility Resource Center offers FREE videos, downloads, podcasts and more, all designed to help small and medium businesses get mobile connectivity solutions, improve productivity and drive sales and revenue.
Tasty Baking’s new LEED factory
0:57
Tasty Baking CIO: Brendan O’Malley
Balancing act: innovation vs. reliability
1:28
Facebook VP of technical operations: Jonathan Heiliger
Securing data at E-Loan
1:47
E-Loan CIO: Jay Shah
When crops are scarce
1:47
Del Monte Foods CIO: Marc Brown
