Latest articles from SC Magazine US

Researcher finds "frighteningly bad" Adobe Flash flaw

Fri, 13 Nov 2009 15:04:48 GMT

A new point of entry has been discovered in Adobe Flash that allows attackers to infect any website which permits visitors to upload content, a researcher claims.

Microsoft looking into new SMB vulnerability report

Fri, 13 Nov 2009 14:19:49 GMT

Microsoft is investigating a researcher's claim that the software giant's newest operating system contains a vulnerability that could be exploited to crash systems.

Study finds 64 percent of websites contain serious flaws

Thu, 12 Nov 2009 14:08:57 GMT

Web application vulnerabilities remains the primary avenue of attack for cybercriminals, according to a new report.

Apple releases update to Safari to close seven holes

Thu, 12 Nov 2009 13:56:29 GMT

Apple's latest Safari update, the sixth of the year, includes fixes for seven vulnerabilities.

HP buys 3Com in mega $2.7 billion deal

Wed, 11 Nov 2009 17:27:17 GMT

Hewlett-Packard announced Wednesday plans to acquire 3Com, whose TippingPoint subsidiary is one of the best-known providers of intrusion prevention systems.

Vulnerability assessment integration with web application firewalls

Mon, 09 Nov 2009 10:11:35 GMT

Even for the most proactive organizations, finding and fixing flaws in website code is complex, time and resource intensive, and not immune to the accidental introduction of new risks.

Windows 7 is everything Vista should have been, with one noteworthy exception

Wed, 04 Nov 2009 05:52:45 GMT

Windows 7 is great stuff, just don't forget to go to the control panel and turn security on.

Fighting the top IT security risks

Thu, 22 Oct 2009 05:33:40 GMT

Staying secure and compliant in today's complex IT environment requires maintaining focus on the most pressing vulnerabilities and changing threats.

Virtualization and security: Enterprise solutions in reach of SMBs

Wed, 21 Oct 2009 05:43:08 GMT

SMBs that have considered virtualization but decided that it is too expensive or simply not viable, especially in terms of security, should think again.

Can the phone be a second factor in authenication?

Mon, 05 Oct 2009 06:11:10 GMT

Phone-based solutions leverage something the user always has for a second method of identification, namely, access to mobile or landline phones.

SC Magazine wins 7 ASBPE Awards

Thu, 30 Jul 2009 11:52:45 GMT

We received two national ASPBE Golds, two Northeast Region Golds and three Silvers.

WordPress update

Fri, 13 Nov 2009 12:35:00 GMT

Blogging platform WordPress on Thursday pushed out an updated version to resolve two security vulnerabilities, the company's lead developer, Ryan Boren, said in a blog post. Version 2.8.6 fixes a cross-site scripting vulnerability in Press This, a WordPress bookmarklet, as well as a bug related to sanitizing uploaded file names in some Apache configurations. Users can upgrade here.

Spears Twitter hack

Thu, 12 Nov 2009 17:30:42 GMT

The Twitter profile for pop star Britney Spears was hacked, according to published reports. The intruders, who apparently were able to access the singer's profile, posted a message claiming that Spears worshipped the devil. A later message apologized for the prior post. This is not the first time Spears has been victimized on the popular microblogging website. In June, hackers took advantage of a vulnerability in a third-party service through which users post photos to their Twitter profiles, which allowed pranksters to falsely report that she had died. -- DK

Governator does consumers a disservice with SB-20 veto

Fri, 23 Oct 2009 13:13:49 GMT

Joe Simitian, a Democratic state senator from California, is still scratching his head, some two weeks after Gov. Arnold Schwarzenegger vetoed SB-20, an update to the landmark 2003 Golden State breach notification bill, known as SB-1386.

Chaminade University in Honolulu posted sensitive file online

Tue, 10 Nov 2009 10:49:12 GMT

Altor Networks Altor VF

Fri, 06 Nov 2009 16:00:00 GMT

There are several aspects of using Altor VF that are tailor-made for a virtualized environment.

Amenaza SecurITree

Fri, 06 Nov 2009 16:00:00 GMT

This is really an analysis tool in the sense that we use it to model the risks that could impact our network.