Sponsored White Papers, Webcasts, and Downloads
ZDNet Resources
- Building a Web Application Security Program
- This paper shows how to build a pragmatic web application security program that constrains costs while still providing effective security. Rather than digging into the specific details of any particular technology it shows all the basic pieces and how to put them together. It starts with some background on how...
- Tags: Web, Web Application, Application Security, Securosis, Cloud Computing, Security
- White papers 2009-03-09
- DLP Content Discovery: Best Practices for Stored Data Discovery and Protection
- One of the most promising techniques to help reduce this risk is labelled Data Loss Prevention DLP. While most people think of network monitors when they hear "DLP", the truth is that DLP tools are often as valuable when used to protect data at rest, rather than only data in...
- Tags: DLP, Discovery, Best Practice, Securosis, Productivity
- White papers 2008-05-20
Additional Resources
- A Good Year for Security Collaboration
- Guest Editorial by George Stathakopoulos It seems like just yesterday when I was at Black Hat. Now as I get ready to fly to Las Vegas again, I look forward to seeing a lot of security researchers, hearing their latest exploits and how they fared over the...
- Tags: Microsoft Corp., Conficker Working Group, Security, Ryan Naraine
- Blog posts 2009-07-27
- Microsoft tackles patch management metrics with Project Quant
- In partnership with security analyst Rich Mogull right, Microsoft is set to roll out a new research project to help businesses compute the total cost of the patch-management cycle, from testing and distributing a fix to user deployment of the patch. According to this Dennis Fisher report...
- Tags: Patch Management, Microsoft Corp., Patches, Ryan Naraine
- Blog posts 2009-04-15
- Black Hat Las Vegas Day 2
- Again, sorry for the late updates. Vegas is the kind of place that demands a lot of a person. Too many parties make it difficult to find time to blog on the conference. Pictures of the even are a bit sparse, due to consistently forgetting to bring my camera, but...
- Tags: black hat, microsoft corp., applet, image, vegas, nathan mcfeters
- Blog posts 2008-08-09
- Kaminsky to discuss DNS flaw at Black Hat sponsored webcast
- The Black Hat group on Twitter provided a message today alerting people to a webcast to be put on by Dan Kaminsky on the DNS vulnerabilities that I've heavily covered as follows: Dan Kaminsky breaks DNS, massive multi-vendor patch coming, details at Black Hat Vegas '08 ...
- Tags: Black Hat, Webcast, DNS, Flaw, Domain Names, Networking, Internet, Nathan McFeters
- Blog posts 2008-07-15
- Dan Kaminsky breaks DNS, massive multi-vendor patch coming, details at Black Hat Vegas '08
- It would seem there's a bigger story to that MS08-037 flaw that came out for Patch Tuesday today. From Dave Lewis over at the Liquid Matrix security blog: Today Dan Kaminsky released a first, as far as I can recall. A coordinated patch was released today...
- Tags: Black Hat, DNS, CERT, Flaw, Mogull, Updates, Domain Names, Networking, Security, Internet, Nathan McFeters
- Blog posts 2008-07-08
- Can Mozilla's security metrics project end the patch-counting nonsense?
- In partnership with indie security consultant Rich Mogull left Mozilla has launched a valuable Security Metrics Project that could help to -- we can only hope -- put an end to the silly notion that patch-counting helps to determine a product's security posture. The idea is...
- Tags: Mozilla Corp., Rich Mogull, Security, Ryan Naraine
- Blog posts 2008-07-03
- How to wipe data off an iPhone
- In reponse to reports that personally identifiable private information can be easily swiped from used iPhones sold on eBay, the tireless Rich Mogull has cooked up a nifty way to wipe data from iPhones. Mogull admits his process is "not perfect" but it does look to be...
- Tags: Apple iPhone, Mogull, Storage, Hardware, Ryan Naraine
- Blog posts 2008-05-22
- Apple QuickTime under siege
- Not counting silent undocumented fixes, Apple has patched at least 32 security flaws affecting QuickTime in 2007.  Last year, the QuickTime patch count was 28.  Five were documented in 2005. Judging by the public release of details -- and exploit code -- for zero-day flaws affecting...
- Tags: Apple QuickTime, Vulnerability, Apple Inc., Digital Music, Digital Media, Personal Technology, Consumer Electronics, Ryan Naraine
- Blog posts 2007-11-30
- How desktop virtualization will save your company from Generation Y
- * Ryan Naraine is on vacation. Guest Editorial by Rich Mogull Recently I was watching an interesting 60 Minutes episode on the new generation of "Millennials" entering the workforce. I always thought they were called Generation Y, but I guess that term is...
- Tags: Desktop, Generation Y, Mankind, Tool, Desktop Virtualization, Virtualization, Storage Management, Productivity, Utility Computing, Hardware, Storage, Ryan Naraine
- Blog posts 2007-11-25
- Is my definition of "data protection" too simple?
- So this blogger had the temerity to criticize my definition of the data protection space, which is leak prevention + encryption + device management. If you think about it that is a pretty broad definition of a space. Encryption alone accounts for 35 vendors. To...
- Tags: Disaster recovery, Backups, SECURITY, data protection space, data protection
- Blog posts 2006-10-30
- Controversies spawn new blogs
- Its interesting how controversies like the Apple Wi-Fi fiasco can give birth to new blogs. Securosis started right after Black Hat 2006 covering the Apple Wi-Fi controversy and now David Burke who contributed two critical thinking pieces here and here to my blog has now started...
- Tags: Apple Wi-Fi, blog
- Blog posts 2006-10-02
- MacBooks and death threats
- MacBooks and death threatsResearch better next timeYou might want to research things a bit better before you start slamming other bloggers. Even Brian Krebs did a bit better this morning:Posted by SecureWorks on their website:"Although an Apple MacBook was used as the demo platform, it was exploited through a...
- Tags: Notebooks, Wi-Fi, world rule, Kreb, Apple MacBook, Apple Macintosh, wireless device driver, wireless, SecureWorks Inc.
- Discussion threads 2006-08-21
- Happy Birthday Blaster. Death knell for NAC?
- I remember the events of August, 2003 very clearly. The Pentagon had called on me that July to defend my prognostications on re-active vs proactive security measures. At the showdown chronicled here by Ellen Messmer I remember thumping the podium and berating the vendors that...
- Tags: NAC
- Blog posts 2006-08-11
- House keeping
- I periodically use the ThreatChaos blog to update you on where I am going to be and what I am up to. Some interesting things: The fall event season is already ramping up. On September 16th, I’ll be in the Boston...
- Tags: Disaster recovery, Backups, e-mail
- Blog posts 2006-08-10
- << Previous
- page 1 of 1
- Next >>
IT Solutions for 2010
-
Get cost-effective strategies and roadmaps on the most important issues facing
IT leaders in 2010! Learn how to easily cut costs and deliver greater
efficiency starting with your database, IT compliance management and data
center. Visit the IT Leaders Dashboard. Visit the IT Leaders Dashboard.
-
-
Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems.
Oracle Topline
-
White Papers and Webcasts
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
