secunia Resources on ZDNet

ZDNet Resources

secunia: It's not a flaw if it's a feature: Secunia: It's not a flaw if it's a featureIn need of a strongly worded replyDear Securnia: From what I understand, your company's ambition is to be the leading vulnerability intelligence provider and distributor in the world - second to none. Yet your choice in this matter is to disregard an...; Tags: SECURITY, Secunia, flaw; Discussion threads 2008-02-28
secunia: It's not a flaw if it's a feature: When I reported on the Vocera certificate security bypass flaw, SecurityFocus picked up on it and created Bugtraq ID 27935 to warn their customers about the vulnerability.Â I dropped a note to Secunia about the flaw but they seem to believe that a flaw is only a flaw if it...; Tags: Vocera Communications, Secunia, Flaw, Security, George Ou; Blog posts 2008-02-28
secunia: Skype, Java, QuickTime, PDF patches oh my; It's been an ugly 24 hours for Windows users: Secunia: Skype, Java, QuickTime, PDF patches oh my; It's been an ugly 24 hours for Windows usersagain, Linux is safe folks!only windoze can have so many security holes in a single day.Haven't heart of security issues on Linux for a long time!Why not 89%?Given independant probabilites of 61%, 47%, 34%,...; Tags: Operating systems, PDF patch, Java QuickTime, daemon, Microsoft Windows, Secunia, Skype Technologies S.A., security, ugly 24-hour, non-Admin, software, Linux, Adobe PDF; Discussion threads 2008-02-07
secunia: Skype, Java, QuickTime, PDF patches oh my; It's been an ugly 24 hours for Windows users: The last 24 hours has been a patch barrage with Sun, Adobe, Apple and Skype all issuing patches. But what's notable is how these patches affect Windows users. According to statistics compiled via Secunia's PSI application the number of users that need to get patching is staggering....; Tags: Apple QuickTime, Adobe PDF, Java, Patch Management, Skype Technologies S.A., Microsoft Windows, Secunia, Computer, Patches, Productivity, Larry Dignan; Blog posts 2008-02-07
secunia: Alarming stats on insecure applications: Secunia: Alarming stats on insecure applicationsDoes this come as a surprise?Keeping 11+ software packages manually up to date isn't something that people like to do. (especially if all of them require a reboot )It just costs people to much time to perform all these updates. It's nice to have a...; Tags: Tools & Techniques, Operating systems, Upgrading, Secunia, insecure application, stat, software; Discussion threads 2008-01-10

secunia: Alarming stats on insecure applications: Secunia has some alarming stats on the lack of patching going on out there. Secunia uses its PSI application to track patches and the state of security. As you may know, PSI is one of those must have free security apps. Also see: Ten free...; Tags: Secunia, Computer, Productivity, Security, Larry Dignan; Blog posts 2008-01-10
Autonomy threatens legal action over vulnerability alert: Unhappy with Secunia's plans to call attention to an already-patched vulnerability in its KeyView product, enterprise search vendor Autonomy is threatening to wield the legal hammer. According to back-and-forth correspondence released by Secunia, the San Francisco-based Autonomy is threatening legal action to force the flaw alert aggregator...; Tags: Autonomy Corp. Plc, Vulnerability, Secunia, Security, Ryan Naraine; Blog posts 2007-12-07
Netscape plays catch up with security patches: America Online has shipped version 9.0.0.4 of its alternative Netscape browser to incorporate the last batch of Firefox security patches. Netscape has a long-standing problem of always being late with Firefox patches but, with this update, it's clear that AOL is making the effort to keep pace...; Tags: Mozilla Firefox, America Online Inc., Netscape Communications Corp., Secunia, Web Browsers, Patches, Security, Internet, Ryan Naraine; Blog posts 2007-11-28
Latest QuickTime bug leaves XP, Vista vulnerable: Security researchers say that a new QuickTime flaw has gone public and leaves XP and Vista vulnerable to attack. According to Secunia, the latest QuickTime bug "can be exploited by malicious people to compromise a user's system." A working exploit is public and the vulnerability has been...; Tags: Apple QuickTime, Microsoft Windows XP, Vulnerability, Microsoft Windows Vista, Secunia, Ryan, Digital Music, Digital Media, Security, Personal Technology, Consumer Electronics, Larry Dignan; Blog posts 2007-11-26
Firefox feature introduces danger: Software engineers at Mozilla are working on a fix for another protocol handing issue affecting the company's flagship Firefox browser. The flaw, originally reported in February 2007 and independently discovered by Petko D. Petkov, turns a little-used Firefox feature into a security risk that could lead...; Tags: Mozilla Firefox, XSS, Bug, Secunia, Firefox Feature, Cross-site Scripting Attack, Web Browsers, Internet, Ryan Naraine; Blog posts 2007-11-09
Yahoo Messenger, QuickTime top list of most vulnerable Windows apps: Software products marketed by Yahoo and Apple have topped the list of the most vulnerable Windows-based applications in 2007, according to endpoint security vendor Bit9. The list, available here (registration required), focuses on popular, widely deployed Windows programs that are often very difficult for an IT department...; Tags: Yahoo IM, Apple QuickTime, Yahoo! Inc., Apple Inc., Microsoft Corp., List, Secunia, Bit9, Microsoft Windows, Tools & Techniques, Digital Music, Operating Systems, Digital Media, Security, Software, Management, Personal Technology, Consumer Electronics, Ryan Naraine; Blog posts 2007-11-02
Zero-day flaws surface in AOL, Yahoo IM products: Zero-day vulnerabilities in two popular instant messaging products could put millions of computer users at risk of malicious hacker attacks. Exploit code has been released for the more serious of the two flaws -- a gaping hole in Yahoo Messenger -- that could expose users to code...; Tags: Yahoo IM, AOL Instant Messenger, America Online Inc., IM, Yahoo! Inc., User, Secunia, Flaw, Exploitation, Instant Messaging, Security, Internet, Online Communications, Ryan Naraine; Blog posts 2007-09-19
MSN Messenger vulnerable to 'highly critical' webcam flaw: Exploit code for a "highly critical" vulnerability in MSN Messenger has been posted to a Chinese-language forum, prompting Microsoft to urge all users to immediately migrate to Windows Live Messenger 8.1. The exploit, available here, is caused by an error in the handling of video conversations and...; Tags: MSN, Microsoft Windows Live Messenger, Webcam, MSN Messenger, Microsoft Windows Live, Microsoft Windows, Secunia, Flaw, Ryan Naraine; Blog posts 2007-08-28
Trend Micro, Zone Labs, ClamAV join list of insecure security products: Add Trend Micro, Check Point Zone Labs and ClamAV to the long list of security products that put end users at risk of malicious hacker attacks.The three vendors have all acknowledged various security vulnerabilities in a range of desktop and server products that could lead to arbitrary code execution, privilege...; Tags: Security, Check Point Software Technologies Ltd., Trend Micro Inc., Zone Labs Inc., Ryan Naraine; Blog posts 2007-08-22
secunia Personal Software Inspector (exe): The Secunia Personal Software Inspector detects installed software and categorizes your software as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors.; Tags: Software, Secunia, Secunia Personal Software Inspector, Tools & Techniques, Management; Software downloads 2007-07-28
Free utility looks for missing security patches: Free utility looks for missing security patchesSerious Privacy IssueFrom the article": The tool works by examining files on your computer (primarily .exe, .dll, and .ocx files) for meta information on specific software builds installed. After examining all the files on the machine, the collected data is sent to Secunia’s servers...; Tags: PRODUCTIVITY, Web site development, Tools & Techniques, security, Secunia; Discussion threads 2007-07-25
Free utility looks for missing security patches: Secunia has shipped a downloadable version of a free utility that scans Windows machines to find missing software patches.The tool, an enhancement to the Secunia Software inspector (a Web-based scanner I've covered before), can be used to inspect and monitor more than 4,200 different PC applications to flag dangerous vulnerabilities.This...; Tags: Hackers, Metasploit, Spyware and Adware, Botnets, Google, Firefox, Exploit code, Vulnerability research, Patch Watch, Data theft, Browsers, Windows Vista, Pen testing, Apple, Viruses and Worms, Passwords, Open source, Responsible disclosure, Mozilla, Microsoft; Blog posts 2007-07-24
secunia: 28% of all installed apps are insecure: Secunia: 28% of all installed apps are insecureOSX is so dangerous[i]“All it takes is one unpatched Quicktime vulnerability and a provocative video title to compromise a lot of visitors,” the company warned.[/i]And since OSX runs Safari (and therefore Quicktime) with regular user permissions, a compromise on OSX could result in...; Tags: Microsoft Windows Vista (Longhorn), Operating systems, Microsoft Windows Vista, Secunia, Microsoft Windows, Apple QuickTime, OSX; Discussion threads 2007-05-16
secunia: 28% of all installed apps are insecure: According to data culled from Secunia's free software inspector, about 28% of all detected applications are vulnerable to a known security vulnerability.The utility, which uses a signature database to pinpoint the specific versions of all installed programs (browsers, plugins, IM and e-mail clients, media players, operating systems) on a user's...; Tags: Firefox, Exploit code, Digital rights management, Data theft, Browsers, Botnets, Apple, Google, Hackers, Metasploit, Microsoft, Mozilla, Open source, Oracle, Patch Watch, Pen testing, Responsible disclosure, Rootkits, Spam and Phishing, Spyware and Adware, Viruses and Worms, Vulnerability research, Windows Vista, Zero-day attacks; Blog posts 2007-05-16
secunia enters vulnerability scanning market: Secunia enters vulnerability scanning marketSecunia Software Inspector should be used by anyone interested in staying uEven if you only use one machine(like me) Secunia Software Inspector should be a MUST HAVE.With their email update service you can check that all software is latest "safe" version and YOU DECIDE WHEN TO...; Tags: Secunia, Secunia Software Inspector; Discussion threads 2007-05-08