Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Microsoft Blue Hat v7
- Microsoft Blue Hat v7 - Nate McFeters's pics from Microsoft Blue Hat v7 in May '08. by Nate McFeters
- Tags: Microsoft Corp., Nate McFeters, tech action, Microsoft, Blue Hat, v7, nate, mcfeters
- Image galleries 2008-05-06
- Interview with the Vista Pwn2Own contest winners
- Interview with the Vista Pwn2Own contest winnersSo NO, we did not duplicate it on any other platform.What Nate states is this is a compiler issue with a polymorphism/name mangling bug. Therefore, it is not a Adobe coding issue. So my questions still remain:1) Have you duplicated this on...
- Tags: Microsoft Windows Vista (Longhorn), data execution prevention, Vista Pwn2Own, Nate, flaw, Microsoft Windows Vista
- Discussion threads 2008-04-02
- Interview with the Vista Pwn2Own contest winners
- Update 04/03/2008: I've updated the article as apparently the link to k2's blog was broken. Also, it's important to note that Derek Callaway was a part of this research and exploitation as well, and I neglected to mention that. So obviously our coverage of the Pwn2Own contest has...
- Tags: Adobe Systems Inc., Vulnerability, JavaScript, Microsoft Windows Vista, Exploit, Data Execution Prevention, Flaw, Nate, Programming Languages, Java, Security, Software Development, Software/Web Development, Nathan McFeters
- Blog posts 2008-04-02
- Rejoice!!! Scanless PCI is here!
- Rejoice!!! Scanless PCI is here!Why is no one talking about Hannaford?I have been surprised that no one at ZDNet has been covering the data theft at Hannaford...Maybe 4 million credit card numbers is'nt that unusual these days. And Hannaford was supposedly Certified PCI Compliant!!!!!http://bangornews.com/news/t/news.aspx?articleid=162267&zoneid=500RE: Rejoice!!! Scanless PCI...
- Tags: REJOICE!!, Scanless PCI, Hannaford
- Discussion threads 2008-04-01
- More details on the Pwn2Own Flash flaw that won the Vista machine
- More details on the Pwn2Own Flash flaw that won the Vista machineOr should we blame MicrosoftFor their inability to push DEP sooner and get more of a response out developers sooner and breaking applications that have been coded wrongly for years.That would be the ABMer's excuse anyway.NBMer would say that...
- Tags: Microsoft Windows Vista (Longhorn), Programming languages, Operating systems, UNIX, SECURITY, Pwn2Own Flash, Pwn2Own Flash flaw, Microsoft Windows Vista, data execution prevention, Vista Machine, Java, flaw, Nate, Adobe Systems Inc., Microsoft Corp., Linux
- Discussion threads 2008-03-31
- Black Hat Europe, Day 2 (Revisited): An interview with an invisible hacker
- If you haven't seen Day 1 or Day2/Day3 of my series on Black Hat Europe, feel free to have a look. As I mentioned in my Day 2/Day 3 posting, I didn't get a chance to meet up to interview Adam Laurie until late in the day on Thursday; therefore,...
- Tags: Black Hat, Training, Satellite, Hacker, Nate, Workforce Management, Network Technology, Human Resources, Networking, Nathan McFeters
- Blog posts 2008-03-31
- Blackhat Europe, Day 1: The Waag, the Bulldog, and web application hacking
- Blackhat Europe, Day 1: The Waag, the Bulldog, and web application hackingCool and usefulCool story! The fact that manual checking finds more flaws than does automated checking is unsurprising, but valuable, as I was unaware of the limited usefulness of the programs. I look forward to revisiting this...
- Tags: SECURITY, Waag, web application hacking, BlackHat Europe, Bulldog, Day 1, hacking, Web application
- Discussion threads 2008-03-26
- Blackhat Europe, Day 1: The Waag, the Bulldog, and web application hacking
- Considering my previous posts on my experiences at Black Hat Federal received pretty good reviews, I thought it would make sense to again highlight a Black Hat trip. This time it was all the way out to Amsterdam, where Rob Carter and I will be speaking about URI Use...
- Tags: Black Hat, Web Application, SQL, Training, SQL Injection, Tool, Nate, Productivity, Hacking, Workforce Management, Security, Human Resources, Nathan McFeters
- Blog posts 2008-03-25
- Got room in your heart for a hacker?
- Got room in your heart for a hacker?Potential for long-distance murder?Don't think that it'd be a far stretch to suggest that people could be murdered through the technology that's supposed to save them. We can only hope that we are not one of those people.Castro would have been easierAll you...
- Tags: Hacking, Wi-Fi, Castro, Nate
- Discussion threads 2008-03-13
- Sun releases patch to address a number of serious vulnerabilities
- Sun releases patch to address a number of serious vulnerabilitiesCross-platform drive-by downloads......brought to you by Sun!Link?!?A link would be nice so I could be sure I have the patches. The Java control panel update functionality did update when I asked it to but it says Version 6 Update 5...
- Tags: Java, Operating systems, vulnerability, Nate, Sun Microsystems Inc., JRE-6 Update 5, Update 5
- Discussion threads 2008-03-07
- eBay Red Team Event - Creating Awareness and Sharing Strategies
- I recently attended the eBay Red Team event at the eBay campus in San Jose, CA. and got a chance to sit in on several presentations, meetings, and discussions aimed at creating security awareness and knowledge sharing opportunities for several major decision makers in the information security space. Numerous companies...
- Tags: Team, Event, Knowledge, Industry, eBay Inc., Nate, Team Management, Strategy, Security, Management, Nathan McFeters
- Blog posts 2008-03-03
Additional Resources
- News to know: XP meets XO; Yahoo; Facebook; Verdiem; DIY phishing
- Notable headlines: Mary Jo Foley: It's finally official: XP is coming to the XO. Christopher Dawson: Sugar-free Windows, as predicted Microsoft cuts backup from Windows Home Server PowerPack Larry Dignan: Icahn launches Yahoo proxy fight; Mark Cuban's return?...
- Tags: Facebook, Larry Dignan, Microsoft Windows XP, Yahoo! Inc., Privacy, TechMeme, Icahn, Phishing, Service-Oriented Architecture (SOA), Cyberthreats, Spam, Security, Viruses And Worms, Spam And Phishing, Web Services, Enterprise Software, Software
- Blog posts 2008-05-16
- Safari "Carpet Bomb" attack information released
- Nitesh Dhanjani released information about some of his newest research on the Safari web browser this morning, and interestingly enough, Apple has decided NOT to fix some of the issues he presented. Dhanjani reported three issues, as follows below from his blog: 1. Safari Carpet Bomb.It...
- Tags: HTML, Apple Safari, Apple Inc., Issue, Safari Carpet Bomb.It, Security, Nathan McFeters
- Blog posts 2008-05-15
- News to know: Comcast-Plaxo; Icahn-Yahoo; Linux; Microsoft
- Notable headlines: Larry Dignan: Comcast buys Plaxo: Will social networking and TV fly? Dennis Howlett: Comcast scoops up Plaxo: good move Dan Farber: Comcast goes social with Plaxo acquisition Techmeme EIC podcast: HP-EDS; Google; SaaS Adrian...
- Tags: Plaxo Inc., Google Inc., Larry Dignan, Comcast Corp., Workday, Microsoft Corp., Zoho, Linux, Microsoft Windows, Desktops, Rootkits, Microsoft Windows Vista (Longhorn), Operating Systems, UNIX, Software, Hardware, Security, Spyware, Adware & Malware
- Blog posts 2008-05-15
- With the Quickness: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flaw
- So, for those who haven't heard, a Debian packager modified the source used for OpenSSL on Debian based systems Debian and the whole of the Ubuntu family to remove the seed used for PRNG Pseudo Random Number Generator used when creating SSL keys. Well, HD Moore set a new record...
- Tags: OpenSSL, SSH, Debian, Key, Flaw, HD, ID, Ssl/Tls, Operating Systems, Open Source, Security, Software, Nathan McFeters
- Blog posts 2008-05-14
- Aviv Raff drops an 0-day for IE 7.0 and 8.0b on XP
- I've been busy all day and just haven't been able to get to it until now, but Aviv Raff is a seriously bad man. I follow his blog religiously as he always has some cool stuff going on and a lot of it tends to be thought provoking for other...
- Tags: HTML, Microsoft Windows XP, Microsoft Internet Explorer 7, Blog, Microsoft Internet Explorer, Aviv Raff, Blogging, Web Browsers, Internet, Nathan McFeters
- Blog posts 2008-05-14
- Security Researcher to release Cisco rootkit at EUSecWest
- According to good friend Robert McMillan of IDG News, Sebastian Muniz, a researcher with Core Security Technologies, has developed malicious rootkit software for Cisco's routers, which he will release on May 22 at the EuSecWest conference in London. This will mark the first time at least publicly that someone has released a...
- Tags: Black Hat, Cisco IOS, Router, Cisco Systems Inc., Robert McMillan, Rootkits, Security, Spyware, Adware & Malware, Nathan McFeters
- Blog posts 2008-05-14
- News to know: Zoho; HP; Windows 7; Patch day
- Notable headlines: Dennis Howlett: Zoho's Googley login raises interesting questions Ed Bott: The key to Windows success? It's all about the drivers News.com: Facebook pulls ‘stalker list' tool after Gawker exposes it Mary Jo Foley: Gates emphasizes PC-phone...
- Tags: Google Inc., Hewlett-Packard Co., Microsoft Windows 7, Microsoft Corp., Electronic Data Systems Corp., Microsoft Windows, Operating Systems, Software, Larry Dignan
- Blog posts 2008-05-14
- Details, details, details... more on the Microsoft flaws from today
- Thought I'd explore some of these bugs a bit more... first, Tipping Point released one of the vulnerabilities that Larry reported earlier, listed as a stack overflow issue in Microsoft Office Jet Database Engine. The stack overflow isn't what's interesting, what's interesting is the attack vector itself. To be fair to...
- Tags: Vulnerability, Microsoft Corp., Database Engine, iDefense, Flaw, Exploitation, Microsoft Word, Word Processors, CSS, Microsoft Office, Security, Databases, Office Suites, Software, Scripting Languages, Software/Web Development, Web Development, Enterprise Software, Data Management, Nathan McFeters
- Blog posts 2008-05-13
- McAfee isn't "McAfee Secure" or "Hacker Safe"
- McAfee isn't "McAfee Secure" or "Hacker Safe"McAfee not a security companyI've been saying this for a while, albeit mostly regarding Symantec. This still applies to McAfee, though: An antivirus company, does not a security company make.Though still an unpopular idea, the concept of antivirus does not comply with standard, universal...
- Tags: McAfee Inc., security company, security
- Discussion threads 2008-05-13
- << Previous
- page 1 of 1
- Next >>
White Papers and Webcasts
In this Super Techies interview, larger-than-life techie Marc Canter talks with ZDNet's Editor in Chief Dan Farber about his career as a multimedia pioneer.
Test drive Sun products in your IT environment free for 60 days. Get up to 45% off list price when you purchase your trial system. Returns? No problem. We pay shipping both ways.
"Intel® Centrino® with vPro™ Technology and the new 45nm Intel® Core™ Duo processor delivers greater than 2x the performance over older generation Intel® Centrino® components when your system is multitasking.
