Voluntary Internet filtering for smartphones leaves security holes As smartphones have spread in use, so has their availability to children, but three years after filtering software was imposed on regular cell phones, smartphones have shown vulnerabilities. Digital Arts, a company that sells filtering software for … Read more on Mainichi Daily News Public sector orgs flunk OWASP Top 10 By Dan Raywood on Apr 30, 2012 7:54 AM Security software used in public companies has as many application flaws as that used in other large enterprises, research found. According to a 'State of Software Security Report' from Veracode, released this … Read more on SC Magazine Australia   Speakers: Sandy R ....> The Post Continues Here! <....

Twitter spam campaign infects users with fake antivirus programs By Lucian Constantin | IDG News Service A large spam campaign observed on Twitter during the last couple of days directed users to malicious websites that exploited vulnerabilities in browser plug-ins to infect their computers with rogue antivirus … Read more on InfoWorld Where Did the Bugs Go? Check the Gray Market, HP Report Says By Jordan Robertson Bug-brokers are willing to pay potentially hundreds of thousands of dollars for the most destructive software flaws. On its face, it seems like a good sign in the battle against hackers: The number of known software vulnerabilities … Read more on Bloomberg (blog)   Microsoft April Patch Tuesday to ....> The Post Continues Here! <....

15-year-old arrested for hacking 259 companies Authorities allege the suspect scanned the Internet for vulnerabilities and bugs in websites and databases that he could then exploit. As soon as he was questioned, the young boy confessed to the attacks, according to Austria's Federal Criminal Police … Read more on ZDNet (blog) Cameleon Software Delivers Cameleon-cloud CPQ on Salesforce.com's Force.com … Press release | CAMELEON SOFTWARE FOR IMMEDIATE RELEASE CONTACTS Tom Crosby +1 (919) 370-3269 or +1 (919) 619-8445 (mobile) [email protected] Cameleon Software Delivers Cameleon cloud CPQ on Salesforce.com's Force.com Platform to Streamline Sales … Read more on Reuters     ....> The Post Continues Here! <....

Danish firm outlines two unpatched Safari vulnerabilities by Topher Kessler March 9, 2012 1:28 PM PST Is the release of information on unpatched software vulnerabilities justified when a breakdown in communication occurs between research and development firms? The Danish IT security firm Secunia has released … Read more on CNET Weaponised doc files targeting Apple Mac users spotted by AlienVault These weaponised doc files – in the wild are targeting the Apple Mac platform, which the company says is highly unusual given the low incidence of Apple Mac vulnerabilities. According to Jaime Blasco, a researcher at AlienVault, the Security … Read more on Security Park   Avira Becomes Latest Vendor to Offer Ma ....> The Post Continues Here! <....

Choosing The Right Vulnerability Scanner For Your Organization Vulnerability scanners can be used to detect defects in an organization's security program, such as the organization's patch management process, hardening procedures and software development life cycle. Indeed, without the use of network-based and Web … Read more on Dark Reading Indusface Announces Strategic Partnership With Leading MSSP {layer Telelogix IndusGuard by Indusface is a zero touch, non intrusive, cloud-based software that provides daily monitoring and scanning to secure and safeguard websites whilst checking for systems, application vulnerabilities, and malware. Read more on SBWire (press release)     ....> The Post Continues Here! <....

How to develop open-source software within any kind of company Build open source management into your entire software development process, evaluating OSS components before and while using them in development . Analyze and continuously monitor all deployed applications for newly discovered security vulnerabilities … Read more on VentureBeat Java-Based Malware Is "Fileless" Drive-by downloads exploit vulnerabilities in unpatched software and generally requires no user interaction to compromise the machine. Even though the user doesn't have to click on anything to start the attack, drive-by-downloads generally save a … Read more on PC Magazine   Patch Tuesday: Microsoft Fixes Critical Remote Deskt ....> The Post Continues Here! <....

Upcoming Webinar: How to Calculate the Cost of a Data Breach and What to Do … The problem most organizations face today is justifying investments in privacy and security programs on the basis of "average breach cost" estimated in various white papers, which detail neither how the costs were developed nor allow for the … Read more on San Francisco Chronicle (press release) The Sophistication of Stuxnet The worm was a sophisticated and highly destructive piece of software, “Stuxnet,” that sabotaged the nuclear centrifuges at the plant. Expert reports suspected the worm was developed by “a capable entity” such as the Mossad (Israeli secret service), … Read more on The Epoch Times   Dispe ....> The Post Continues Here! <....

Ixia software tests LTE network security devices Supplied with a library of over 6000 known vulnerabilities, IxLoad-Attack from Ixia is one of the first applications to validate mobile Internet security end-to-end—from the handset to the data center. By generating massive, city-scale application and … Read more on Test & Measurement World StopTheHacker Launches New Suite Of SaaS Website Security Protection Products … reputation and blacklist monitoring, and vulnerability assessment for more thorough website protection. Self-adapting capabilities constantly monitor new strains of malware and build profiles of existing and emerging strains of malicious software, … Read more on Dark Reading     ....> The Post Continues Here! <....

Anonymous Leaves Clues In Failed Vatican Attack Based on those tools requiring their operators to understand the intricacies of Web applications and related vulnerabilities, "the first part was carried out by a small group of professionals," said Shulman. But the tools were failing to turn up any … Read more on InformationWeek Software Patches, Nortel, User Privacy Top Week's Security News Microsoft fixed 21 vulnerabilities, of which XXX was critical, as part of its February Patch Tuesday. This month's patches were unusual in the number of vulnerabilities fixed in newer versions of Internet Explorer and Windows. Read more on eWeek     ....> The Post Continues Here! <....

Wasting Hackers' Time to Keep Websites Safe When Mykonos's software identifies an attacker, it tries to waste the hacker's time by offering false data such as phony software vulnerabilities and fake passwords. This week, the 19-person company announced it had received $ 4 million in investments … Read more on Technology Review Touring Club Suisse (TCS) Chooses Cameleon Software to Support its Sales … Press release | CAMELEON SOFTWARE FOR IMMEDIATE RELEASE CONTACTS Tom Crosby BlueBird Strategies 919 619-8445 Touring Club Suisse (TCS) Chooses Cameleon Software to Support its Sales Development A new renowned SaaS reference for Cameleon CHICAGO, IL, … Read more on Reuters   Symantec Tells User ....> The Post Continues Here! <....

RES HyperDrive Delivers Easy-to-use “Follow Me Data” with Enterprise-Class … … or on the road, regardless of device,” said Bob Janssen, CTO and Co-founder of RES Software. “But other file-sharing approaches have security vulnerabilities that can cause real problems with data privacy, security and regulatory compliance. Read more on EON: Enhanced Online News (press release) 10K Reasons to Worry About Critical Infrastructure Infrastructure software vendors and critical infrastructure owners have long maintained that industrial control systems (ICSes) — even if rife with security vulnerabilities — are not at risk of penetration by outsiders because they're “air-gapped … Read more on Wired ....> The Post Continues Here! <....

Pwn2Own Hacking Contest Gets Facelift And ZDI will throw in another new element for the contestants to crack: patched vulnerabilities in which the researchers at ZDI have discovered holes. "On the first day of the contest, we will announce two patched vulnerabilities per target that my … Read more on InformationWeek Microsoft names ex-antivirus employee as botnet 'suspect' Botnets like Kelihos are created by the spread of malicious software, often via infected emails or web browser vulnerabilities. Each "bot", as they are known, is a hijacked computer which can be used by hackers for any number of illegal activities. Read more on BBC News   Hoping to Teach a Lesson, Researchers Release Explo ....> The Post Continues Here! <....

Researchers Expose Flaws in Popular Industrial Control Systems "It's not rare to see an industrial software that uses hardcoded accounts or services that look almost like backdoors," said Luigi Auriemma, an independent security researcher who identified and reported SCADA vulnerabilities before. … Read more on PCWorld Secunia Sets Six-month Deadline for Vulnerability Disclosures By Lucian Constantin, IDG News Vulnerability research firm Secunia announced that, effective from the beginning of the year, software vendors will have a six-month deadline to fix vulnerabilities reported through its Vulnerability Coordination Reward … Read more on PCWorld     ....> The Post Continues Here! <....

Scanning QR Codes opens you up to vulnerabilities With the increase in users scanning QR Codes, so increases the threat of vulnerabilities for the user. Read more on WCBD-TV Charleston Hacks hacked: how the Sun reported Murdoch’s “death” Groups such as LulzSec have security teams on the run. What LulzSec did to the Sun’s frontpage. Photo: Getty Images. Read more on The New Statesman   Nasty Windows Bluetooth vulnerability nixed Bluetooth has a lot of very practical uses, like pushing wire-free audio to your headphones and helping you avoid costly traffic tickets for talking on the phone while driving. It’s also good at providing hackers with back door access to your computer, apparently. Re ....> The Post Continues Here! <....