Security Bytes:

September, 2008

1

September 29, 2008  4:42 PM

Penetration testing without the penetration

David Schneier David Schneier Profile: David Schneier

When the subject of penetration testing and security assessments comes up, it usually conjures thoughts of highly skilled consultants deploying an array of custom tools to gather information on a target network and look for potential weak spots. But there are a number of guys out there doing these...

September 28, 2008  2:43 PM

UCSniff, new VoIP tool, allows sniffing of specific traffic

David Schneier David Schneier Profile: David Schneier

After years of hype and mostly unfulfilled promise, VoIP has begun making some headway in large enterprises. A lot of IT managers are attracted by the technology's potential to help them save money through lower phone bills and converged services. And don't think that the attackers haven't noticed...


September 24, 2008  10:15 AM

Firefox 3 security fixes released

David Schneier David Schneier Profile: David Schneier

Mozilla has released new versions of both Firefox 3 and Firefox 2 that fix a slew of security vulnerabilities, including at least one critical remote code-execution flaw.


September 19, 2008  1:25 PM

SSH brute force attacks still going strong

David Schneier David Schneier Profile: David Schneier

The brute-force SSH attacks that have plagued the Internet for much of this year are continuing, and experts are responding by creating tools to stop the brute-force attempts and lists of the attacking IP addresses. The SANS Internet Storm Center has a good post with some information on


September 15, 2008  4:09 PM

House committee to hear recommendations on cybersecurity for next president

David Schneier David Schneier Profile: David Schneier

As the country continues to focus more and more attention on the November election, some security industry insiders are beginning to agitate for more attention to be paid to information security, regardless of who's in the White House next year. The House


September 11, 2008  3:38 PM

Are we more secure seven years later?

David Schneier David Schneier Profile: David Schneier

One of the after effects of the terrorist attacks of Sept. 11, 2001, was a hyper-awareness of security of both our physical and digital environments. This has translated into the creation of new government agencies (DHS, TSA), rafts of legislation and billions of dollars of venture capital...


September 9, 2008  11:36 AM

Crypto landmark Bletchley Park in danger of closing without funding boost

David Schneier David Schneier Profile: David Schneier

Given the long and mostly distinguished history of the British Empire, the comparatively short life of Bletchley P


September 8, 2008  11:12 AM

McAfee rolls back the clock with Artemis cloud security service

David Schneier David Schneier Profile: David Schneier

Tech companies are masters at taking an old technology or service, shining it up a bit, giving it a new name and trotting it out as a completely new idea. But it's not often that a company does that with its own idea, but that's exactly what McAfee Inc. seems to be up to with the launch today of...


September 3, 2008  8:57 AM

Any questions?

David Schneier David Schneier Profile: David Schneier

I'm doing two separate podcasts this afternoon with some folks who should be a lot of fun to talk with. The first one is with Paul Roberts, an analyst with The 451 Group who covers security, and Ryan Naraine, a security blogger and evangelist with Kaspersky Lab Inc. The second one is with Adam...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: