Security Bytes:

October, 2007


October 30, 2007  4:55 PM

McAfee buys ScanAlert

Marcia Savage Marcia Savage Profile: Marcia Savage

On the heels of its acquisition of SafeBoot, McAfee on Tuesday said it's buying ScanAlert, a supplier of Web site security certifications, for $51 million. Napa, Calif.-based ScanAlert audits and certifies the security of more than 75,000 Web sites. Its Hacker Safe certification is displayed by...

October 30, 2007  8:31 AM

FTC: Beware of phishing attempts

Leigha Leigha Cardwell Profile: Leigha

Phishers are sending out fake messages from the Federal Trade Commission that drop malware onto the machines of users who click the malicious attachment. In response, the FTC has issued a public warning to consumers not to open fraudulent emails made to look as though they come from its fraud...


October 29, 2007  7:47 AM

TJX court documents confirm earlier suspicions

Leigha Leigha Cardwell Profile: Leigha

I'm not surprised by court documents claiming that TJX blew it on nine of the 12 requirements of the PCI Data Security Standard (PCI DSS), which of course allowed hackers to break into its network and


October 26, 2007  7:45 AM

Windows admins unhappy over Automatic Update changes

Leigha Leigha Cardwell Profile: Leigha

Bill BrennerA...


October 24, 2007  3:18 PM

Spammers exploiting SoCal fires

Marcia Savage Marcia Savage Profile: Marcia Savage

It's inevitable: Whenever there's a disaster, online scammers try to exploit the situation. Randy Abrams, director of technical education at security software vendor Eset, said he received an email Wednesday that purported to offer news about the devastating wildfires in Southern California but...


October 24, 2007  3:13 PM

Reported Vonage flaw a reminder of VoIP dangers

Eric Parizo Eric Parizo Profile: Eric Parizo

We've written quite a bit in the past about how many enterprises are ignoring the dangers of voice over IP (VoIP). While we doubt many enterprises are in the practice of using Vonage, as yet another example...


October 24, 2007  11:16 AM

Why data thieves love academia

Leigha Leigha Cardwell Profile: Leigha

Check out the excellent chronology of data breaches kept by the Privacy Rights Clearinghouse and you'll notice that a massive chunk of those affected reside in academia. At a gathering of IT security and privacy professionals at...


October 24, 2007  8:54 AM

Beware of malicious pdf files

Leigha Leigha Cardwell Profile: Leigha

Yesterday we reported that Adobe patched a critical flaw in its Adobe Reader and Acrobat programs. Now comes word that the bad guys are sending out malicious .pdf files that exploit the...


October 23, 2007  9:27 AM

Alleged DDoS attack knocks Rockies’ ticket sales site offline

David Schneier David Schneier Profile: David Schneier

Colorado Rockies fans, who have been waiting for generations--or at least part of one generation--to see their team in the World Series, will have to wait another day to get tickets for the series after the team's Web site buckled under the weight of what Rockies officials say was a deliberate...


October 23, 2007  9:18 AM

Web app security scanners not finding everything, study says

Leigha Leigha Cardwell Profile: Leigha

In this age of Web 2.0-based attacks, companies are turning to a variety of Web application security scanners to help them find and fix security holes. But according to a study conducted by independent security consultant Larry Suto, some of these scanners are overlooking quite a few...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: