Microsoft is continuing to look into ways to make social computing services part of business users’ lives with a new pilot program for something called “OfficeTalk”.

The annual Pwn2Own contest starts today at the CanSecWest conference in Vancouver, Canada.

At the RSA Conference in San Francisco last week, security vendors pitched their next generation of security products, promising to protect customers from security threats in the cloud and on mobile devices.

Среди разнообразия Linux-систем особенно выделяются специализированные дистрибутивы-роутеры. Они, как правило, имеют небольшой размер, просты и понятны в установке и настройке, а имеющиеся функции позволяют подключить к интернету домашнюю/корпоративную сеть, защитив ее от сетевых атак и вирусов

Пентест - это искусство. Но даже здесь есть масса рутинных операций, которые стоило бы автоматизировать. Вот взять хотя бы проверку параметров, которые передаются скрипту. Не заниматься же подстановкой всевозможных значений (в GET и POST запросах, кукисах и т.д.) вручную? Незачем! Для этого есть замечательные инструменты для автоматического пентеста

US net crime loss complaints almost doubled in value from $265m in 2008 to reach $560m last year, according to official figures.

Wikileaks presents a “threat to the U.S. Army” and publishes “potentially actionable information” for targeting military personnel, according to a classified intelligence report posted Monday on the whistleblowing site.

Scammers using a Brazilian domain name have targeted customers of large Australian domain name and hosting company NetRegistry, seeking usernames and passwords in order to launch new malware attacks.

Twitter co-founder Evan Williams told a gathering of the technology faithful on Monday that notorious censorship firewalls in countries such as China will give way to online innovations.

Nearly two thirds of virtualised servers will be less secure than the physical machines they replace over the course of the next two years, according to analyst firm Gartner.

It used to be that cyber criminals were people with a highly technical skill set, but this is not the norm anymore. This fact became obvious some two weeks ago when news of the takedown of the Mariposa botnet and the three men behind it reached the global public.

Spending on IT security is returning to pre-recession rates, according to the latest study from analyst firm Canalys.

Iran's Islamic Revolutionary Guards Corps has hacked into 29 websites affiliated with US espionage networks, Iran's semi-official Fars News Agency reported on Sunday.

Вы часто просматриваете свои RSS-подписки? Согласитесь, это отнимает некоторое количество времени. Зато, когда вы едете на работу, это же время тратится бездарно и впустую. Конечно, многие читают электронные книги и журналы – это делает время в транспорте осмысленным

Итак, наш дорогой друг и читатель, ты решил сделать себе беспроводной Интернет. Или беспроводную сеть с другом, живущим далеко. Первая проблема, встающая перед тобой, – плохой уровень сигнала. И причиной этому может быть все что угодно! Деревья, здания, расстояние от одной точки до другой

Microsoft has been forced to admit that a security update for its popular Excel application caused non-English text to appear on some users’ screens.

The latest version of the Zeus do-it-yourself crimeware kit goes to great lengths to thwart would-be pirates by introducing a hardware-based product activation scheme similar to what's found in Microsoft Windows.

Password-cracking tools optimised to work with SSDs have achieved speeds up to 100 times quicker than previously possible.

Computer hackers linked to the Russian mafia robbed Royal Bank of Scotland customers of £6million in 12 hours.

Computer hackers linked to the Russian mafia robbed Royal Bank of Scotland customers of £6million in 12 hours.

Andrew Ashley, 30, and Nimesh Bhagat, 31, stole more than £33,000 by infiltrating software controlling remote betting machines covering live roulette wheels at four Gala Casinos in London, a court heard.

Targeting point-of-sale devices with malicious software is standard practice, as the wave of retail hackings over the last few years have shown. But targeting them with malicious hardware -- that requires another level of brazenness altogether.

A security researcher has credited McAfee for helping him to develop exploit code that cracks open an unpatched flaw in older versions of Internet Explorer.

Fake antivirus programs that encourage Web users to part with their hard-earned cash and download hoax security software is likely to be the most costly scam of 2010, says McAfee.

South Korea said Friday it would launch a probe into security systems of major retailer Shinsegae and 24 other companies after private data on some 20 million customers was leaked.

PayPal users have reacted angrily to the suspension of Cryptome's account by the e-payment company and are using Cryptome's website to display their emails, cancelling their PayPal accounts.Although PayPal has now restored Cryptome's account, it was suspended for several days following Microsoft's action against the whistle-blowing site and the temporary shutdown of Cryptome by its hosting company.Faced with criticism over its heavy-handed approach, Microsoft claimed afterwards that it had not wished Cryptome to be shut down "While Microsoft has a good faith belief that the distribution of the file that was made available at that address infringes Microsoft's copyrights, it was not Microsoft's intention that the takedown request result in the disablement of web access to the entire cryptome.org website on which the file was made available," said the company's counsel, Evan Cox.

Retro gaming fans are being targeted in a new con designed to infect computers with a Trojan linked to scareware scams.

Users of Adobe PDF Reader should check they are running the latest version of the software after the discovery of an exploit that takes advantage of a serious flaw patched only three weeks ago.

A Colorado man has been charged with trying to sabotage a U.S. security database that holds sensitive information used for screening air travelers, the Justice Department said on Wednesday.

Police have detained 23 suspects in operations in 13 provinces, charging them with membership in a terror organization and attacking public institutions’ Web sites, the daily Radikal reported Wednesday.

Twitter is finally being proactive about the large number of phishing scams that have plagued the micro-blogging service in the past year. On Wednesday, Twitter introduced its own anti-phishing service designed to protect its users from these types of attacks. The new security measures will focus on Twitter direct messages (DMs) -- private tweets addressed to a specific user -- and corresponding e-mail notifications

Internet service providers linked to the notorious Zeus botnet have been taken down, knocking out a third of the command-and-control servers that run the network of hacked machines.

Хороший админ не должен быть заметен. После того, как все настроено, он может спокойно заниматься своими делами, например, резаться в кваку или писать статьи в Х. Его работа оценивается по стабильно работающему серверу и отсутствию жалоб со стороны пользователей

Twitter has announced that it is to start scanning all tweets for links to sites which may cause harm to its users.

Microsoft on Tuesday warned that hackers are targeting a freshly-uncovered weakness in some earlier versions of its Internet Explorer (IE) Web browser software.

Popular P2P file sharing service Limeware has enlisted the help of anti-virus outfit AVG to offer its Pro users with free file scanning.

Since 1977, RSA public-key encryption has protected privacy and verified authenticity when using computers, gadgets and web browsers around the globe, with only the most brutish of brute force efforts (and 1,500 years of processing time) felling its 768-bit variety earlier this year. Now, three eggheads (or Wolverines, as it were) at the University of Michigan claim they can break it simply by tweaking a device's power supply

A little knowledge and a few thousand dollars is all it takes to build a fully functional botnet, according to security experts.

There are many Linux distributions readily available. This however should not stop you creating your own version of a UNIX forensic tools disc. Whether you are on Solaris, HP-UX or any other variety of UNIX it is simple to create a forensic tools CD that can go between systems. The added benefit of this method is that the tools do not need to be left on the production server. This in itself could be a security risk and the ability to unmount the CD and take it with you increases security.

Основная цель HIPS (Host Intrusion Prevention System, система отражения локальных угроз) - идентифицировать и блокировать вредоносные действия в системе и не допустить ее заражения. Отслеживаются все потенциально опасные операции, такие как работа с реестром (в первую очередь с ветками, отвечающими за автозапуск), файлами и каталогами, запуск/останов программ/служб, манипулирование потоками, контролируются инжекты в другие процессы и целостность системных файлов