Security Pro Says New SSL Attack Can Hit Many Sites
A Seattle computer security consultant says he's developed a new way to exploit a recently disclosed bug in the SSL protocol, used to secure communications on the Internet. The attack, while difficult to execute, could give attackers a very powerful phishing attack.
The Cloud Security Survival Guide
For companies increasingly dependent on cloud services, security challenges abound. Here's a collection of articles, columns and audio to help IT security practitioners plot the right course.
Clear Metrics for Cloud Security? Yes, Seriously
In the second installment of his series on "Clearing the Cloud," security expert Ariel Silverstone proposes some clearer definitions and metrics to improve cloud security.
SSL Flaw Could have Been Used to Hack Twitter
A flaw in the protocol used to secure communications over the Internet could have been used to hack Twitter accounts, according to an IBM security researcher.
Web-Application Errors Pose Danger to Enterprises
A majority of Web sites have at least one major security issue that could be used by hackers for fraud-related purposes, according to a new survey.
How to DDOS a Federal Wiretap
Researchers at the University of Pennsylvania say they've discovered a way to circumvent the networking technology used by law enforcement to tap phone lines in the U.S.
Patch Tuesday: What the Experts Say
Microsoft released six patches that address 15 vulnerabilities. Here's a look at what security experts are saying about the vulnerabilities, patches and what should concern users.
How to Compare Patch Management Software
Agent or agent-less? Point solution or suite component? CISOs and analysts offer dos and don'ts for finding the patch management software that's right for your organization.
Patch Management Systems: Evaluation Criteria and Capabilities
Shopping for a patch management system? Experts say you should look for these features.
6 Steps to Pull App Security Back to the Future
OWASP will host its 2009 AppSec DC conference next week, hoping to arm IT security practitioners with knowledge to improve application security. For a taste of what to expect, organization member Matt Fisher discusses what's wrong with app security today and six ways to make it better.
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
- More Headlines
- Change Topic
Data Protection
- Cisco's Free IPhone App Grabs Security Feeds
- Security Pro Says New SSL Attack Can Hit Many Sites
- 3 Basic Steps to Avoid Joining a Botnet
- Security Vendor Fortinet Sparkles in IPO
- NSA Helped with Windows 7 Development
- The Mass. 201 CMR 17 Survival Guide
- 64-Bit Windows Safer, Claims Microsoft
- Firefox 3.6 Locks Out Rogue Add-Ons
- How to Hack China for Just $1,800
- The Cloud Security Survival Guide
