Hundreds of banking Websites are still vulnerable to a patched vulnerability affecting certain versions of the RSA Adaptive Authentication platform. – RSA, EMCs security division, is advising customers to apply a
two-year-old patch for its Adaptive Authentication product after a
researcher discovered hundreds of banking Websites are still open to
attack.
RSA Adaptive Authentication is a risk-based fraud prevention and authentication platform t…
IBM’s X-Force threat report for the first half of 2010 lists Apple, Microsoft and Adobe Systems as the makers of products with the most vulnerabilities. – A report from IBM’s X-Force released Aug.
25 says the number of disclosed vulnerabilities during the first half of 2010 shot
up 36 percent from the same period the previous year.
All told, IBM X-Force analyzed and
document 4,396 new vulnerabilities in the first half of the year. Leading the
way…
In a paper, researchers from the University of Pennsylvania revealed how the smudge marks left on your smartphones touch screen can be used to guess your password. – Security researchers from the University of Pennsylvania
have highlighted a potential attack vector for accessing your mobile devices–the smudges from your fingertips.
In a paper (PDF) presented this week at the USENIX Security Symposium in
Washington, D.C., the researchers revealed that oily re…
Microsoft issued Volume 8 of its Microsoft Security Intelligence Report on April 26, using data collected from some 500 million computers worldwide to paint a portrait of the global IT security situation for the second half of 2009. While some of the conclusions were to be expected–more service packs on more recent operating systems translated into fewer vulnerabilities–there were noticeable differences between the vulnerability profiles of enterprise and consumer IT. Meanwhile, the total number of vulnerability disclosures in software continued to fall.
– Microsoft issued on April 26 Volume 8 of its Microsoft Security Intelligence
Report, which attempts to paint a comprehensive portrait of the worlds IT
security scene for the second half of 2009. Data for the report comes from
around 500 million computers worldwide, in addition to a variety of onl…
Apple’s iPad weight, size and usage mode places it at risk for a higher rate of accidents, according to Rapid Repair, which publishes an online teardown of the electronic devices it repairs. While the iPad’s larger screen presents a bigger target for accidental collisions, and generates more force in falls, Apple’s engineers have likely used data from the iPod Touch and iPhone development to improve the iPad’s design choices. Competing devices may not have access to such data. Between its April 3 release date and April 8, Apple claims, some 450,000 iPads were sold, along with 600,000 iBooks downloaded and 3.5 million apps.
– Apples iPad may be adept at displaying multimedia content
and e-texts, but itll have a harder time dealing with gravity and sudden
blows, according to Rapid Repair, which regularly publishes an online teardown
of the electronic devices it repairs.
quot;The weight, size, and novel ways of using …
Researchers at Core Security Technologies are warning of a vulnerability affecting versions of Microsoft’s Virtual PC software that can be used to bypass several Windows security mechanisms.
– Researchers at Core
Security Technologies issued
an advisory March 16 about a new security vulnerability that leaves users
of Microsofts Virtual PC software open to attack.
According to Core
Security, certain versions of the Virtual PC hypervisor contain a
vulnerability that allows attackers…
Japanese newspapers are in worse shape than they appear
AS NEWSPAPER companies across the developed world took a beating in the past few years, those in one rich country merely shrugged. Japanese newspapers are by far the world’s biggest: Yomiuri sells 10m copies each morning and another 3.6m in the evening. Newspapers enjoy such close ties with politicians and companies that news in Japan does not so much break as ooze. Yet the giants are teetering.
The problem is not circulation, which has held up well thanks to a distinctive system of distribution. Virtually all Japanese newspapers are delivered by agents who work on commission, frequently turning up on doorsteps to collect money. People carry on buying newspapers in Japan for the same reason they keep paying for gym memberships elsewhere: pushy salesmen. Between 1999 and 2009 the combined circulation of morning and evening papers in Japan fell by just 6.3%, according to Nihon Shimbun Kyokai (NSK), the newspaper publishers’ association. By contrast, American newspapers lost 10.6% of their paying readers between 2008 and 2009. …
Reports of a zero-day vulnerability affecting Microsoft Internet Information Services surfaced on the Web Dec. 24. Microsoft says it is investigating the matter, and has found so far that only certain configurations of IIS are vulnerable to attack.
– Microsoft is investigating reports of a new vulnerability
affecting Microsoft Internet Information Services that could be used to execute
malicious code on vulnerable Web servers.
Details of the vulnerability came out Dec. 25 when security
researcher Soroush Dalili posted
information about the …
Google bested Microsoft Bing in real-time search Dec. 7 with an integrated offering that sits in the middle of the search results page and serves users fresh Web content. Yet this innovation comes against Google’s growing hunger in other areas of the Web that may make Google susceptible to federal scrutiny. Google is making a lot of enemies by disrupting increasingly more markets these days by entering markets and disrupting them. If Bing or any other search player is to make headway versus Google, it will have to keep innovating and hope that Google stumbles and finds itself in an antitrust nightmare worthy of, well, Microsoftian proportions.
–
News Analysis: Google trumped Microsoft Bing when it launched real-time search engine capabilities Dec. 7, but this innovation comes
against Google’s growing hunger in other areas of the Web that may make Google
susceptible to federal scrutiny.
The software algorithms powering Goog…
The paramilitary troops outside the Trident and Taj Mahal hotels suggest a high level of security a year after militants laid siege to Mumbai, but it may all be a mirage as the country still remains very vulnerable. While some improvements in security have meant there has not been another attack
Researchers at Symantec say exploit code for a zero-day security vulnerability has been uncovered in Internet Explorer 6 and 7.
– Proof-of-concept code for an attack targeting old versions of Microsoft Internet Explorer has made its way online.
According to Symantec, someone posted the code Nov. 20 to the Bugtraq mailing list. The code targets a flaw tied to how Internet Explorer (IE) uses cascading style sheet (
CSS
) i…
Despite increased efforts to ensure that network controls are appropriately designed and operating effectively, the Government Accountability Office reports that NASA has not yet fully implemented key parts of its information security program.
– According to a report from the Government Accountability Office released
Oct. 15, quot;NASA [does] not consistently implement effective controls to
prevent, limit and detect unauthorized access to its networks and systems. quot;
While the report found that quot;NASA has made important progress …
