Passwords are the predominant means of securing sensitive data, and that is why there are established best practices defining password policies. Sadly, though -- the most critical data is often less secure because Admin passwords function outside of those policies and are rarely changed or updated.
There are two ways to look at the Cisco SA 520 network security appliance. On one hand, it offers a solid array of features: 65Mbps IPSec VPN throughput, 100Mbps overall throughput, integrated firewall (limited to 100 rules), built-in filtering for common services like IM and P2P networking, SSL VPN, IPS, DDNS, and multi-WAN support. On the other hand, it has nearly no relation to the rest of Cisco's security solutions.
Wanted by Google: Bounty-hunting hackers who can find security vulnerabilities in popular Web apps.
Security experts today suggested ways Firefox users can protect themselves against Firesheep, the new browser add-on that lets amateurs hijack users' access to Facebook, Twitter and other popular services.
Microsoft said its free malware cleaning tool had scrubbed the money-stealing Zeus bot from nearly 275,000 Windows computers in under a week.
North Korea appears to have made its first full connection to the Internet. The connection, planning for which has been going on for at least nine months, came as the reclusive country prepares to mark the 65th anniversary of the founding of the ruling Workers' Party of Korea with a massive celebration and military parade.
One of the elements of Android that is often touted over iOS and other mobile platforms is that it is open source. The open nature of Android means that vendors can build on and extend the platform, or that developers are free to create apps unfettered by restrictive rules and approval processes. A new report, though, shows that many Android apps take that open nature a bit too far and share sensitive information without the user's knowledge.
NEW YORK -- Social networks are a major resource for hackers trying to capture valuable corporate data or run amok inside business networks, the information security director of a major online trading firm told Security Standard attendees.
Microsoft released <a href="http://www.microsoft.com/technet/security/bulletin/ms10-sep.mspx">nine new security bulletins</a>--four with an overall rating of Critical this week for the September Patch Tuesday. The big news of the month, though, is the Stuxnet worm. Microsoft revealed that four additional zero day flaws are exploited by the worm, and two of those four remain unpatched.
There's a tremendous buzz today about cloud computing, but before outsourcing your critical business systems to the cloud let's review some security concerns.
Adobe released a handful of patches this week to address serious security vulnerabilities. The most relevant update for the vast majority of users is the patch for Adobe Flash Player, but IT admins should also be aware of the updates for ColdFusion and Flash Media Server.
Another week, another Facebook privacy issue.
Adobe has revealed that it will strengthen the security controls in the Adobe Reader application by adding sandboxing in the next release. With malicious attacks targeting Adobe products more frequently, it is definitely a move in the right direction, but there are also more secure PDF reader alternatives you can start using today.
Trustwave continues to expand its security portfolio with the acquisition of Web application firewall vendor Breach Security.
A Pakistani court this week ordered the government to block access to Facebook in that country.