maiffret Resources on ZDNet

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

maiffret's exit raises questions about eEye: Hacker Marc Maiffret, who co-founded and served for many years as the public face of eEye Digital Security, has left the company to pursue other projects. According to a research note from The 451 Group analyst Paul Roberts, Maiffret parted ways with eEye a few months ago...; Tags: eEye Digital Security, Maiffret, Intrusion Prevention, Security, Hacking, Viruses And Worms, Ryan Naraine; Blog posts 2007-12-13

Additional Resources

Beware of undisclosed Microsoft patches: My blogging colleague Ryan Naraine offers up some interesting food for thought regarding Microsoft's philosophy behind disclosing or not disclosing all of the vulnerabilities it is fixing via its patches.Microsoft is, admittedly, silently patching certain vulnerabilities. The practice isn't unique to Microsoft, as Naraine notes. But it is controversial. Microsoft...; Tags: Security, Corporate strategy; Blog posts 2007-06-20
Skeletons in Microsoft's Patch Day closet: Last Tuesday, when Microsoft released the MS07-030 bulletin to fix a remote code execution hole in Visio, the first line in the executive summary caught my attention:This important update resolves two privately reported vulnerabilities in addition to other security issues identified during the course of the investigation. emphasis mineThis is...; Tags: Metasploit, Hackers, Exploit code, Data theft, Browsers, Botnets, Microsoft, Zero-day attacks, Vulnerability research, Viruses and Worms, Spyware and Adware, Responsible disclosure, Pen testing, Patch Watch; Blog posts 2007-06-20
Yahoo screws up flaw disclosure, helps exploit writer: If you want to blame someone for the release of dangerous exploit code targeting gaping holes in Yahoo Messenger, point your finger at Yahoo spokeswoman Terrell Karlsten.It turns out, Karlsten went public with nitty-gritty details of the two bugs that were privately -- and responsibly -- reported by eEye Digital...; Tags: Zero-day attacks, Vulnerability research, Responsible disclosure, Privacy, Pen testing, Patch Watch, Passwords, Metasploit, Hackers, Exploit code, Data theft, Browsers, Botnets, Black Hat; Blog posts 2007-06-08
"high" security vulnerabilities reported in Yahoo! Messenger: eWeek notes that researchers at eEye Digital Security are reporting multiple vulnerabilities in Yahoo Messenger that enable hackers to remotely execute code."Upon learning of the issue, we began working on a fix," Yahoo! spokesperson Terrell Karlsten tells eWEEK. She declined further comment until she had more details.The flaws, given a...; Tags: yahoo, Security, News; Blog posts 2007-06-07

eEye fires CEO Ross Brown: eEye Digital Security has shaken up its top management, firing chief executive officer Ross Brown less than six months after promoting him to the top slot.Kamal Arafeh, who previously managed eEyes sales operations, will be the new CEO. The rest of the management team -- CTO Marc Maiffret and...; Tags: Vulnerability research, Viruses and Worms, Symantec, Spyware and Adware, Responsible disclosure, Pen testing, Patch Watch, Open source, Hirings and firings, Hackers, Exploit code, Data theft, Browsers; Blog posts 2007-04-02
Windows animated cursor attacks 150 sites: Windows animated cursor attacks 150 sitesWindows animated cursor attacks 150 sitesThanks to Microsoft's quick response to this issue a patch is coming out soon and this will all be a thing of the past. Problem detcted, identified, and resolved. Simple as that.Linux Left out once again :(it doesn't work...; Tags: Web browsers, SECURITY, Operating systems, Happy April Fool, Mozilla Firefox, Windows animated cursor attack, attack, Microsoft Internet Explorer, Windows Animated Cursor, Opera Software, Microsoft Windows, Microsoft Corp.; Discussion threads 2007-04-02
eEye spies first MS Office 2007 remote exploit: Security researchers at eEye Digital Security have found what is believed to be the first remotely exploitable vulnerability in a Microsoft Office 2007 application.In a bare bones alert posted to its Upcoming Advisories page, eEye said he flaw exists within Publisher 2007 and can allow arbitrary code execution in the...; Tags: Spyware and Adware, Exploit code, Viruses and Worms, Data theft, Spam and Phishing, Patch Watch, Hackers, Zero-day attacks, Microsoft, Windows Vista, Rootkits, Vulnerability research, Punditocracy, Responsible disclosure; Blog posts 2007-02-22
Microsoft fixes troubled IE patch: Microsoft fixes troubled IE patchMicrosoft fixes troubled IE patch[i]"The revised version of the update...fully resolves the security vulnerability," a Microsoft representative said in a statement sent via e-mail on Thursday.[/i]Only a company like Microsoft can deliver quality in such a timely manner. The issue was reported and fully resolved!...; Tags: Patches, SECURITY, Microsoft Windows Vista, Microsoft Corp., patch, America Online Inc., IE Patch, Microsoft Internet Explorer; Discussion threads 2006-08-24
OpenOffice security is questioned: OpenOffice security is questionedHow dare the Frenchtheir open source licenses are now revoked. Tow the line France or they'll take iTunes from you as well. LOL ;)Am I reading this right?I read this and get blah blah blah, OpenOffice is insecure because of it's portabiltiy with MS Office. ...; Tags: OPEN SOURCE, MSFT Office, OpenOffice, security, Microsoft Office, Microsoft Corp., object-oriented, OpenOffice security; Discussion threads 2006-08-14
Microsoft: Virus target won't be in Vista: Microsoft: Virus target won't be in VistaMicrosoft: Virus target won't be in VistaI bet all those linux fanboys are feeling pretty stupid right now claiming it was a Vista virus.No first shot at VistaVirus writers wont get a first shot at Vista after all before it's released. Microsoft is definatly...; Tags: Microsoft Windows Vista (Longhorn), Cyberthreats, Viruses and worms, SECURITY, Microsoft Windows Vista, Monad, virus, Microsoft Corp., Microsoft Windows; Discussion threads 2005-08-05
Worms could dodge Net traps: Worms could dodge Net trapsThe era of open IP is getting closer to an end....time is approaching for authenticated access to IP networks.... too bad the creeps took away this freedom But as a matter of fact it is the idiotic ms windows platform which has made it SO EASY...; Tags: Cyberthreats, NETWORKING, SECURITY, Internet, Microsoft Corp., IP network, IP, worm, Internet Storm Center; Discussion threads 2005-08-04
Worm hole found in Windows 2000: Worm hole found in Windows 2000Has anyone been able to comprimise a systemor are all these things more in the realm of "theoretical"?Worm hole found in Windows 2000[i] eEye declined to give more details on the flaw or the Windows 2000 component in question. As part of company policy, it...; Tags: Operating systems, SECURITY, Microsoft Corp., Microsoft Windows 2000, eEye Digital Security, Microsoft Windows, Worm Hole; Discussion threads 2005-08-03
DNS servers--an Internet Achilles heel: DNS servers--an Internet Achilles heelDNS servers--an Internet Achilles heelWe only have linux to blame for this. Since zdnet talkbackers always tell me that the internet is run on linux, it only makes sense that linux is the culprit. From this day forward I suggest a worldwide ban on...; Tags: Domain names, NETWORKING, Lazyness, Internet, DNS, BIND, DNS server, server; Discussion threads 2005-08-03
Firm points to flaws in Windows security update: Firm points to flaws in Windows security updateI think we all expected some flaws in it...There's going to be flaws in it, we all know this. Now if MS goes to work on these reported flaws and has them fixed before SP2 goes public this will be a non...; Tags: Microsoft Windows XP Service Pack 2, SECURITY, Service Pack 2, flaw, Microsoft Corp., Microsoft Windows; Discussion threads 2004-08-18
New worm's got sass, but not much else: New worm's got sass, but not much elseLaptops with Windows - the bane of the IT monkeys existence[i]Huger said he worries that the number of infections might jump on Monday if people take compromised laptops to work.[/i]I expect to have a few of these to deal with on Monday. Time...; Tags: Cyberthreats, Viruses and worms, New Worm, worm, security, virus, Microsoft Windows, laptop computer, programmer; Discussion threads 2004-05-01
Microsoft warns of widespread Windows flaw: Microsoft warns of widespread Windows flawwhy bother?m$ is also increasing it's zdnet news share and soon will be a zdonopoly, illegally. how so? by dileberately producing broken products and thus getting free advertisement. we get weekly sometimes daily news of m$ flaws! pretty innovative of themUNTIL MICROSUCKS GETS SUED...Until Microsucks...; Tags: Patches, eEye Digital Security, Microsoft Corp., ASN.1, Microsoft Windows; Discussion threads 2004-02-10