Security Bytes:

Application Security


September 18, 2007  12:34 PM

Google touts Flayer fuzzing tool



Posted by: Leigha
Application Security, Security Management

Search giant Google continues to make a big splash on the security front, inviting visitors to the Google Online Security Blog to try out Flayer,...

September 11, 2007  4:24 PM

Virtually secure



Posted by: David Schneier
Application Security, Platform Security

I have to admit to being surprised by the size of the VMWorld show out here in San Francisco. I knew there was a lot of interest in virtualization these days, but there's upwards of 10,000 attendees here, which is pretty close to what the RSA Conference draws. The security sessions I've attended...


September 10, 2007  7:21 AM

Google, Yahoo, Microsoft vulnerable to authentication token flaw



Posted by: Robert Westervelt
Application Security, Information Security Threats

Researchers at the United States Computer Emergency Readiness Team (US-CERT) have discovered a flaw in the way some Web sites handle authentication tokens. The agency issued an advisory Friday warning that some sites are transmitting...

Bookmark and Share     0 Comments     RSS Feed     Email a friend


September 7, 2007  2:41 PM

CIS issues security benchmarks for virtual machines



Posted by: David Schneier
Application Security, Platform Security

In case you needed any more evidence that virtualization is making serious inroads in the enterprise, the Center for Internet Security this week released a set of benchmarks for securing virtual machines. The guidelines are generic, non-vendor...


September 7, 2007  5:24 AM

Cryptography and the double yellow line



Posted by: Leigha
Application Security, Information Security Careers, Information Security Threats, Laws, Investigations and Ethics, Security Management

Bill BrennerWhile...


August 28, 2007  11:58 AM

How to run arbitrary code on a VMware guest OS



Posted by: David Schneier
Application Security, Information Security Threats

The folks at VMware have been in the news quite a bit of late, thanks to their big IPO and their discreet acquisition of Determina a couple of weeks ago. Now, the company's core virtualization product is getting some attention, but not the kind company executives will like. Mark Burnett, an...


August 24, 2007  4:52 AM

The day(s) the Skype universe stood still



Posted by: Leigha
Application Security, Information Security Threats

Bill Brenner Up to...


August 22, 2007  7:36 AM

Researchers eye more post-Patch Tuesday malware



Posted by: Leigha
Application Security, Information Security Threats, Microsoft Security

It's starting to look like a typical August for Windows administrators, with increasing reports of exploit code being cooked up for flaws addressed in


August 16, 2007  7:51 AM

Security flaws in Yahoo Messenger, Cisco VPN and Windows



Posted by: Leigha
Application Security, Information Security Threats, Microsoft Security, Network Security, Security Management

There are a few notable security flaws to report on this morning in Yahoo Messenger, Cisco's VPN Client and Windows. Here's a roundup: Yahoo Messenger According to Wei Wang from McAfee Avert Labs, researchers from his operation were able to confirm a flaw in Yahoo Messenger...


August 9, 2007  9:48 AM

Fighting click fraud with premium clicks



Posted by: David Schneier
Application Security, Privacy

As the effectiveness of online ads has continued to grow, so has the problem of click fraud. Criminals discovered some time ago that botnets make especially efficient means for perpetrating large-scale click fraud schemes, and they have been refining their techniques for years. Syndicators and...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: