vulnerability management Resources on ZDNet

ZDNet Resources

Automating vulnerability management for PCI DSS Compliance: This white paper identifies the problems encountered in addressing network security risks through vulnerability management. It describes how automated vulnerability management contributes to compliance with industry standards such as the Payment Card Industry Data Security Standard (PCI DSS) and assists the user in proactively identifying security weaknesses before these are...; Tags: GFI Software Ltd., Vulnerability Management, PCI, Security, Storage, Hardware; White papers 2007-07-06
Improving vulnerability management with Penetration Testing: Vulnerability management consists of a combination of technologies and processes that can be used to improve an organization's security posture and to support regulatory compliance initiatives. Security managers commonly use vulnerability assessments to determine the security state of their IT systems. However, changing processes and technologies present a challenge to...; Tags: Vulnerability Assessment, Vulnerability Management, Security; Webcasts 2006-09-20
Preempting data warfare: The art of comprehensive vulnerability management: This sample chapter, taken from Larstan's the Black Book on Corporate Security, discusses the importance of comprehensive vulnerability management. Comprehensive vulnerability management reduces exposure and risks from security incidents that might otherwise occur as a result of having longer time intervals between inspections.This sample chapter, taken from...; Tags: Corporate Security, Vulnerability Management, Security; Book chapters 2005-12-02
vulnerability management Is Critical to Managing Enterprise Risk: Vulnerability management is an emerging market that has captured the interest of enterprises concerned with mitigating and managing the threats within their networks. As the vulnerability management market space expands, comprehensive vulnerability management will bring together the assessment and scanning of vulnerabilities within and outside the network perimeter, the remediation...; Tags: Computer Associates International Inc., Vulnerability Management, Networking; White papers 2005-05-01

Additional Resources

Tasty Baking CIO: Brendan O'Malley: Brendan O'Malley, CIO of Tasty Baking talks to CNET News.com's Dan Farber about the IT challenges in making more than 5 million cakes, cookies and other desserts every day for fresh delivery. He also discusses streamlining the company's 90 year old business operations, developing inventory management solutions and how the...; Tags: CIO, Inventory Management, Enterprise Software, Software, Administrator; Blog posts 2008-05-13

Microsoft plugs Office leaks; Delivers 4 critical patches: Microsoft on Tuesday delivered four critical patches for vulnerabilities Office and Windows XP. There were six patches delivered. Here's a look by the CVE: CVE-2008-1091: Microsoft patched an object parsing vulnerability in Microsoft Word. Affected software includes Office 2000, 2003 and 2007. Microsoft explains:...; Tags: Microsoft Word, Attacker, Microsoft Office, Vulnerability, Patch Management, Microsoft Corp., Zero Day Initiative, Security, Larry Dignan; Blog posts 2008-05-13
HP's to-do list following EDS acquisition: We now know that HP is acquiring EDS in what appears to be an agreed bid that values EDS at $13.9 billion. Larry Dignan has the main analysis but it leaves open a series of testing questions for HP CEO Mark Hurd. As Larry points out: Overall, Wall Street...; Tags: Acquisition, Hewlett-Packard Co., Mark Hurd, Electronic Data Systems Corp., Business Process Outsourcing (BPO), Mergers & Acquisitions, Outsourcing, Corporate Law, Asset Management, Construction, It Services, It Operations, Investment, Finance, Business Operations, Outsourcing & Subcontracting, Operational Planning, Dennis Howlett; Blog posts 2008-05-13
New AMD Opterons are good news for schools: AMD, a company that has been struggling to compete meaningfully with Intel in the last year, announced new "highly efficient" quad-core processors for blade and rack servers. With energy costs increasing drastically (and no relief in sight), schools looking to shave costs, as well as green their IT departments,...; Tags: Desktop, Data Center, Performance, AMD Opteron, Advanced Micro Devices Inc., Data Centers, Virtualization, Utility Computing, Thin Clients, Performance Management, Storage Management, Storage, Processors, Servers, Hardware, Data Management, Human Resources, Workforce Management, Semiconductors, Components, Christopher Dawson; Blog posts 2008-05-13
Combined HP-EDS can explore missing methodology around how to offload IT to the cloud(s): HP's now official pending EDS buy for just shy of $14 billion positions the combined companies to organize and manage the hosted/on-premises mix to maximum efficiency and lowest TCO. It's a great goal to shoot for because all they have to do is beat IBM. With this...; Tags: Hewlett-Packard Co., Information Technology, Electronic Data Systems Corp., End Goal, Strategy, Management, Dana Gardner; Blog posts 2008-05-13
A U.S military botnet in the works: Make botnets, not war? In April, last year, I asked the question "Why establish an offensive cyber warfare doctrine when you can simple install a type of Lycos Spam Fighting screensaver on every military and government computer and have it periodically update its hit lists?" A year...; Tags: Distributed Denial Of Service, Military, Attack, U.S, Security, Dancho Danchev; Blog posts 2008-05-13
VMware debuts premium Recovery, Stage Manager services: VMware has released two new virtualization management services and bundles to advance its technical lead in the market. To that end, the Palo Alto, Calif. announced Tuesday plans to deliver the VMware Site Recovery Manager, VMware Stage Manager and a number of bundles combining those with existing products...; Tags: Recovery, VMware Inc., Disaster Recovery, Virtualization, Storage Management, Utility Computing, Data Management, Hardware, Storage, Paula Rooney; Blog posts 2008-05-13
HP's bid for EDS: Opportunity costs loom: The debate around Hewlett-Packard's purchase of Electronic Data Systems follows three primary questions. Is the EDS acquisition another Compaq--a deal that will take years to pay off? Is EDS the right acquisition for HP? Are there other places where HP should spend its money? HP on Tuesday...; Tags: Hewlett-Packard Co., Electronic Data Systems Corp., Dennis, Tools & Techniques, Business Process Outsourcing (BPO), Outsourcing, Mergers & Acquisitions, Management, It Operations, Business Operations, Outsourcing & Subcontracting, Investment, Finance, Larry Dignan; Blog posts 2008-05-13
Still ranting about interfaces: My argument, yesterday, that how an application is to be used is more determinative of the right toolset for building it than what the application does, embeds the assumption that the people we sell our software or development ideas to, either are end users or make decisions on the basis...; Tags: Corel WordPerfect, Standards, Word Processors, Quality, Microsoft Word, Microsoft Office, Software, Business Operations, Office Suites, Paul Murphy; Blog posts 2008-05-13
Apani and Cross-Platform Server Isolation: A while ago, I spoke with the folks of Apani about security in virtualized environments. Although this isn't a topic that is getting as much media attention as virtual machine software, virtual access software or virtual application environment software, it is a very important topic. Security risks still exist even...; Tags: Software, Environment, Apani, EpiForce, Server Virtualization, Servers, Security, Hardware, Dan Kusnetzky; Blog posts 2008-05-13
News to know: HP's to buy EDS; AMD; XP SP3; iPhone; Spam attacks: Notable headlines: Larry Dignan: HP bidding for EDS; Deal would ramp up services. Dennis Howlett: HP to take out EDS: does it make sense? AMD rejiggers management; Forms central engineering group Adrian Kingsley-Hughes: Integrate Internet Explorer 7, Firefox 2.0 and Windows Media...; Tags: Apple iPhone, Hewlett-Packard Co., Nokia Corp., Electronic Data Systems Corp., Advanced Micro Devices Inc., Attack, Microsoft Windows, Microsoft Windows XP, Podcasts, Data Centers, Homeland Security, Operating Systems, Software, Internet, Storage, Hardware, Data Management, Government, Larry Dignan; Blog posts 2008-05-13
Live Webcast: Security Strategies for Web 2.0 and Social Networking: The onslaught of Web 2.0 and social networking is unstoppable. Blogs, wikis, advanced collaboration tools, rich Internet applications, and other incarnations of the same underlying technologies are rapidly becoming ingrained elements of our Internet culture. Consequently, regardless of whether or not "the business" formally adopts such solutions, IT...; Tags: Security, Web, Webcast, Network, SonicWall, Security Strategy, Web 2.0, Social Networking, Internet, Online Communications, Marketing, Advertising & Promotion; Webcasts 2008-05-13
Is it RIP for my aged Apple laptop?: OK. I may just have found a very relevant reason to go out and buy a new computer: I think I have officially killed my four-year-old Apple notebook. And, yes, I will lose data if I can't recover the hard drive. And, yes, I am traveling as this discovery is...; Tags: Thin Client, Apple Inc., Laptop Computer, IGEL, Thin Clients, Hardware, Heather Clancy; Blog posts 2008-05-12
HP to take out EDS: does it make sense?: We've heard these rumors before but this time it seems HP is in serious hunting mode with EDS as the target. Larry Dignan offers his take on the rationale behind the story. Fellow Irregular Vinnie Mirchandani adds to the debate suggesting both pluses and minuses: HP could use a...; Tags: Hewlett-Packard Co., Electronic Data Systems Corp., Outsourcing, It Operations, Business Operations, Outsourcing & Subcontracting, Dennis Howlett; Blog posts 2008-05-12
AMD rejiggers management; Forms central engineering group: AMD on Monday named a new head of its computing solutions group and created a central engineering unit to improve execution at the chipmaker. Among the moving parts: Randy Allen was promoted to lead the computing solutions group at AMD, which focuses on the...; Tags: Advanced Micro Devices Inc., Workforce Management, Semiconductors, Workstations, Processors, Human Resources, Hardware, Components, Larry Dignan; Blog posts 2008-05-12
McAfee's HackerSafe: When all else fails, rebrand it!: Not to beat a dead horse, that's already been beaten to death time and time again, but... Update 05/12/08: Russ McRee has actually just posted a story about "Why PCI DSS is Doomed". Came across this page on McAfee's site about their "McAfee Secure", "McAfee...; Tags: Nathan McFeters; Blog posts 2008-05-12