CSOONLINE.com - Application Security

CSOONLINE.com - Application Security http://www.csoonline.com/ en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Sat, 21 Nov 2009 11:01:30 GMT 2009-11-21T11:01:30Z en_us (c) Copyright 2009 CXO Media, Inc. All Rights Reserved. Security Pro Says New SSL Attack Can Hit Many Sites http://www.csoonline.com/article/508363/Security_Pro_Says_New_SSL_Attack_Can_Hit_Many_Sites?source=rss_application_security A Seattle computer security consultant says he's developed a new way to exploit a recently disclosed bug in the SSL protocol, used to secure communications on the Internet. The attack, while difficult to execute, could give attackers a very powerful phishing attack. Fri, 20 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/508363/Security_Pro_Says_New_SSL_Attack_Can_Hit_Many_Sites?source=rss_application_security 2009-11-20T05:00:00Z The Cloud Security Survival Guide http://www.csoonline.com/article/507974/The_Cloud_Security_Survival_Guide?source=rss_application_security For companies increasingly dependent on cloud services, security challenges abound. Here's a collection of articles, columns and audio to help IT security practitioners plot the right course. Tue, 17 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/507974/The_Cloud_Security_Survival_Guide?source=rss_application_security 2009-11-17T05:00:00Z Clear Metrics for Cloud Security? Yes, Seriously http://www.csoonline.com/article/507823/Clear_Metrics_for_Cloud_Security_Yes_Seriously?source=rss_application_security In the second installment of his series on "Clearing the Cloud," security expert Ariel Silverstone proposes some clearer definitions and metrics to improve cloud security. Tue, 17 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507823/Clear_Metrics_for_Cloud_Security_Yes_Seriously?source=rss_application_security 2009-11-17T05:00:00Z SSL Flaw Could have Been Used to Hack Twitter http://www.csoonline.com/article/507930/SSL_Flaw_Could_have_Been_Used_to_Hack_Twitter?source=rss_application_security A flaw in the protocol used to secure communications over the Internet could have been used to hack Twitter accounts, according to an IBM security researcher. Mon, 16 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507930/SSL_Flaw_Could_have_Been_Used_to_Hack_Twitter?source=rss_application_security 2009-11-16T05:00:00Z Web-Application Errors Pose Danger to Enterprises http://www.csoonline.com/article/507615/Web_Application_Errors_Pose_Danger_to_Enterprises?source=rss_application_security A majority of Web sites have at least one major security issue that could be used by hackers for fraud-related purposes, according to a new survey. Thu, 12 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507615/Web_Application_Errors_Pose_Danger_to_Enterprises?source=rss_application_security 2009-11-12T05:00:00Z How to DDOS a Federal Wiretap http://www.csoonline.com/article/507464/How_to_DDOS_a_Federal_Wiretap?source=rss_application_security Researchers at the University of Pennsylvania say they've discovered a way to circumvent the networking technology used by law enforcement to tap phone lines in the U.S. Wed, 11 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507464/How_to_DDOS_a_Federal_Wiretap?source=rss_application_security 2009-11-11T05:00:00Z Patch Tuesday: What the Experts Say http://www.csoonline.com/article/507317/Patch_Tuesday_What_the_Experts_Say?source=rss_application_security Microsoft released six patches that address 15 vulnerabilities. Here's a look at what security experts are saying about the vulnerabilities, patches and what should concern users. Tue, 10 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/507317/Patch_Tuesday_What_the_Experts_Say?source=rss_application_security 2009-11-10T05:00:00Z How to Compare Patch Management Software http://www.csoonline.com/article/507070/How_to_Compare_Patch_Management_Software?source=rss_application_security Agent or agent-less? Point solution or suite component? CISOs and analysts offer dos and don'ts for finding the patch management software that's right for your organization. Mon, 09 Nov 2009 05:00:00 GMT Mary Brandel http://www.csoonline.com/article/507070/How_to_Compare_Patch_Management_Software?source=rss_application_security 2009-11-09T05:00:00Z Patch Management Systems: Evaluation Criteria and Capabilities http://www.csoonline.com/article/507071/Patch_Management_Systems_Evaluation_Criteria_and_Capabilities?source=rss_application_security Shopping for a patch management system? Experts say you should look for these features. Mon, 09 Nov 2009 05:00:00 GMT Mary Brandel http://www.csoonline.com/article/507071/Patch_Management_Systems_Evaluation_Criteria_and_Capabilities?source=rss_application_security 2009-11-09T05:00:00Z 6 Steps to Pull App Security Back to the Future http://www.csoonline.com/article/506855/6_Steps_to_Pull_App_Security_Back_to_the_Future?source=rss_application_security OWASP will host its 2009 AppSec DC conference next week, hoping to arm IT security practitioners with knowledge to improve application security. For a taste of what to expect, organization member Matt Fisher discusses what's wrong with app security today and six ways to make it better. Thu, 05 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506855/6_Steps_to_Pull_App_Security_Back_to_the_Future?source=rss_application_security 2009-11-05T05:00:00Z Vendors Scrambling to Fix Bug in Net's Security http://www.csoonline.com/article/506781/Vendors_Scrambling_to_Fix_Bug_in_Net_s_Security?source=rss_application_security Software makers around the world are scrambling to fix a serious bug in the technology used to transfer information securely on the Internet. Thu, 05 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/506781/Vendors_Scrambling_to_Fix_Bug_in_Net_s_Security?source=rss_application_security 2009-11-05T05:00:00Z Java, BlackBerry Desktop Get Security Bug Fixes http://www.csoonline.com/article/506622/Java_BlackBerry_Desktop_Get_Security_Bug_Fixes?source=rss_application_security Sun Microsystems and Research In Motion have issued critical bug fixes for security issues with their products. Wed, 04 Nov 2009 05:00:00 GMT http://www.csoonline.com/article/506622/Java_BlackBerry_Desktop_Get_Security_Bug_Fixes?source=rss_application_security 2009-11-04T05:00:00Z Top Microsoft Security Architect: Windows 7 Will Slash Malware http://www.csoonline.com/article/506480/Top_Microsoft_Security_Architect_Windows_7_Will_Slash_Malware?source=rss_application_security Jimmy Kuo, principal architect for Microsoft's Malware Protection Center, has high hopes that Windows 7 security features will help reverse attack trends identified in the seventh volume of the software giant's Security Intelligence Report. Mon, 02 Nov 2009 05:00:00 GMT Bill Brenner http://www.csoonline.com/article/506480/Top_Microsoft_Security_Architect_Windows_7_Will_Slash_Malware?source=rss_application_security 2009-11-02T05:00:00Z Microsoft Cleans Up Bugs After Biggest Patch Release http://www.csoonline.com/article/506299/Microsoft_Cleans_Up_Bugs_After_Biggest_Patch_Release?source=rss_application_security After releasing its largest-ever group of security patches two weeks ago, Microsoft has done a little cleaning up. Thu, 29 Oct 2009 04:00:00 GMT http://www.csoonline.com/article/506299/Microsoft_Cleans_Up_Bugs_After_Biggest_Patch_Release?source=rss_application_security 2009-10-29T04:00:00Z Password Reset Email is New Facebook Virus http://www.csoonline.com/article/506100/Password_Reset_Email_is_New_Facebook_Virus?source=rss_application_security Security researchers uncover spoof email with downloadable files that include the Trojan virus Bredolab. Wed, 28 Oct 2009 04:00:00 GMT Joan Goodchild http://www.csoonline.com/article/506100/Password_Reset_Email_is_New_Facebook_Virus?source=rss_application_security 2009-10-28T04:00:00Z