security review Resources

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

Fla. Natl. Guard laptop with solider data stolen: A laptop stolen from a Florida National Guard soldier contained training and administrative records, including Social Security numbers, of up to 100 Guard soldiers, the Orlando Sentinel reports. The Guard is conducting a security review. "We're doing everything we can do to protect the unit," Joe Myatt [of...; Tags: Guard, security review, soldier, laptop computer; Blog posts 2006-09-08
A surprise from Communications of the ACM: A surprise from Communications of the ACMReality based security auditsSecurity reviews are about providing assurance. The starting point has to revolve around the question: ‘how much risk are we prepared to accept’? This question has to be asked at the information product content level first.Once a firm baseline...; Tags: Fax, Security effort, security, ACM, Security Review; Discussion threads 2006-08-25

Additional Resources

Make your Gmail even more secure: Last week Google launched a new feature that lets you keep track of computers that are logged into your Gmail account -- a tool that will put the minds of people who are suspicious of unauthorized account access at ease. But what about people snooping your internet traffic? ...; Tags: Google Inc., Google Gmail, E-mail Providers, Cloud Computing, Internet, Garett Rogers; Blog posts 2008-07-26
21 months later, Vista is still more secure than XP: 21 months later, Vista is still more secure than XPMy takeI don't count security patches, but I regularly have to clean malware from our XP machines but have yet to find anything on our Vista systems.RE: 21 months later, Vista is still more secure than XPFile this in the "no...; Tags: Microsoft Windows Vista (Longhorn), SECURITY, Patches, Microsoft Windows Vista, secure, Microsoft Windows XP, VISTA IS; Discussion threads 2008-07-25
21 months later, Vista is still more secure than XP: Last October, roughly one year after the release to manufacturing of Windows Vista, I did a comparison of how well Windows Vista was living up to its promise of being more secure than its predecessor, Windows XP. My data source was the Microsoft Security Bulletin Search page, where I tallied...; Tags: Security, Microsoft Windows Vista, Microsoft Windows Vista (Longhorn), Microsoft Windows XP, Microsoft Windows, Operating Systems, Software, Ed Bott; Blog posts 2008-07-25

Offshore outsourcers likely to beef up security following Bangalore blasts: Offshore outsourcers likely to beef up security following Bangalore blastsSome tech union......somewhere in the U.S. is probably cheering. While I hope noone was hurt, nor condone illegal and harmful tactics, I certainly lift a glass in support of retaining American tech jobs here in the U.S.RE: Offshore outsourcers likely...; Tags: Outsourcing, Offshore outsourcer, outsourcing company, security; Discussion threads 2008-07-25
Microsoft joins 'patch DNS now' chant; Apple patch missing: On the heels of the release of weaponized exploit code for the DNS cache poisoning vulnerability, Microsoft has joined the chorus of security pros pleading with DNS server providers to immediately apply patches to protect users from malicious attacks. The Redmond, Wash. security...; Tags: Apple Macintosh, DNS, Vulnerability, Apple Inc., Exploit Code, Microsoft Corp., Attack, Dan Kaminsky, Domain Names, Apple Mac OS X, Networking, Security, Internet, Operating Systems, Software, Apple Mac OS, Ryan Naraine; Blog posts 2008-07-25
Britain moves against illegal file sharing: CBC News out of Canada is reporting that British ISPs are making an aggressive move against illegal file sharing by implementing a program designed to discover copyright violators, who will be sent warning letters and may potentially have their internet connections disconnected. For more on the article,...; Tags: File-sharing, Peer To Peer (P2P), Internet Service Providers (ISPs), Internet, Nathan McFeters; Blog posts 2008-07-25
GMail adds "https:"-only connections but still not by default: Google has added a new "Browser Connection" feature to GMail to allow users to force e-mail sessions to always use the more secure "https:" protocol but, strangely, this is not turned on by default. In the Settings tab, at the very bottom, GMail users can now select...; Tags: Google Inc., Google Gmail, HTTP, E-mail Providers, Cloud Computing, Internet, Ryan Naraine; Blog posts 2008-07-25
How OpenDNS, PowerDNS and MaraDNS remained unaffected by the DNS cache poisoning vulnerability: The short answer is being paranoid about tackling a known vulnerability. It's 2001, and Daniel J. Bernstein DJB, author of the then popular djbdns security-aware DNS implementation, is applying basic math principles to raise awareness on what's to turn into the "sky is falling" critical Internet vulnerability in 2008, in...; Tags: DNS, Vulnerability, Anomaly, Attack, OpenDNS, MaraDNS, NSS, Domain Names, Networking, Internet, Dancho Danchev; Blog posts 2008-07-25
Offshore outsourcers likely to beef up security following Bangalore blasts: A series of bombs have exploded in Bangalore and companies that have technology operations in India are likely to need increased security precautions following what appears to be a terrorist attack. According to various reports from Reuters and Rediff.com, nine bomb blasts have rattled Bangalore, which hosts...; Tags: India, Bangalore, Rediff.com India Ltd., Sacchin Uppal, Outsourcing, Business Security, Security, It Operations, Business Operations, Outsourcing & Subcontracting, Larry Dignan; Blog posts 2008-07-25
Heap-based buffer overflow reported in RealNetworks RealPlayer: Update 07/25/2008: Aaron Portnoy of TippingPoint's security research group was kind enough to point out that I'm actually not affected by this, since I've installed the newest version of RealPlayer.Â From Aaron's email: Notice the Secunia advisory states it affects RealPlayer 10.5... the latest is 11.x, which now uses...; Tags: Vulnerability, RealNetworks Inc., Buffer-overflow, RealNetworks RealPlayer, Secunia Research, Vendor, Digital Music, Digital Media, Personal Technology, Consumer Electronics, Nathan McFeters; Blog posts 2008-07-25
News to know: 'Spam king' dead; Microsoft's cloud; Dell;: Notable headlines: Ryan Naraine: Escapee 'Spam King' dead in apparent murder-suicide CBS Denver Video: 'Spam King' Inmate Dies Along With Wife, Daughter Mary Jo Foley: Ozzie foreshadows 'Zurich,' Microsoft's elastic cloud Microsoft to get more 'Apple-like' in PC,...; Tags: Larry Dignan; Blog posts 2008-07-25
HP Pavilion dv2945se: Editors' note: This review is part of our Back to School 2008 roundup, covering specific configurations of popular laptops that can be found in retail stores.HP's 14-inch HP Pavilion dv2945se looks like it should cost more than $899, thanks to a cool subtle pattern on the keyboard tray and lid...; Tags: Keyboards, Notebooks, Processors, laptop computer, Hewlett-Packard Co., HP Pavilion, keyboard; Product reviews 2008-07-24
Escapee 'Spam King' dead in apparent murder-suicide: Escapee 'Spam King' dead in apparent murder-suicideGood riddance to bad rubbish.Too bad he took others with him.Escapee 'Spam King' dead in apparent murder-suicideThis is very sad. There was no reason for him to take other people's lives.Much sadder then you think. Much SadderAs an avid computer enthusiast, owning...; Tags: INTERNET, apparent murder-suicide, Escapee, murder-suicide, Spam King; Discussion threads 2008-07-24
Escapee 'Spam King' dead in apparent murder-suicide: Convicted spammer Eddie Davidson, who escaped from federal prison over the weekend, killed his wife and 3-year-old daughter before killing himself in what is being described as a murder-suicide. Colorado's 9News.com said the tragic end of the man known as the "Spam King" was confirmed by the...; Tags: Prison, Sheriff, Internal Revenue Service, Attorney, Healthcare, Ryan Naraine; Blog posts 2008-07-24
Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon: Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soonTTLSomething I wish I'd asked during the webcast and which I can't quite get my head around:It was said that setting a long TTL doesn't help because of the way delegation works - has to...; Tags: Domain names, DNS server, TTL, server, Kaminsky; Discussion threads 2008-07-24
Kaminsky suggests long-term fix will still have to be determined, but patch now, or pay soon: I listened to the Black Hat webcast today to grab as much info as I could on this subject. The biggest thing that I heard from the whole talk is that the patch fixes things to a reasonable point, but that long-term, there will have to be more work...; Tags: CERT, DNS Server, Server, Kaminsky, Dan, Patches, Domain Names, Security, Internet, Nathan McFeters; Blog posts 2008-07-24
Don't doubt Deputy Dan: Don't doubt Deputy Danfound articleI found this related article Security Snafu Puts Dangerous Internet Flaw into Hackers’ Hands; Tags: Deputy Dan; Discussion threads 2008-07-24
Apple looking to hire iPhone hacker: Apple looking to hire iPhone hackerIt's about revenue , not securitySo Apple is looking for someone who can prevent their phones from being jailbroken, so they have total control over what is on an iPhone, and can realize a revenue stream from every possible use of the device.Good luck to...; Tags: Telecom & Utilities, Apple iPhone, iPhone Hacker, Apple Inc.; Discussion threads 2008-07-24