Violet Blue

Violet Blue is the author of The Smart Girl's Guide to Privacy. She contributes to ZDNet, CNET, CBS News, and SF Appeal.

Larry Seltzer

Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years

Latest Posts

Paris Hilton's official web site serving malware

The official web site of Paris Hilton ( has been embedded with a malicious iFrame, automatically exposing visitors to client-side vulnerabilities and banker malware, according to researchers from ScanSafe.

January 13, 2009 by Dancho Danchev


AVG snaps up Sana Security

One of the last stand-alone host-based intrusion detection product vendors has been picked up by an anti-virus firm.The Redwood City-based HIPS vendor Sana Security has been acquired by the popular AV vendor AVG for an undisclosed sum.

January 13, 2009 by Adam O'Donnell


Privacy flaw haunts Apple Safari RSS reader

There's a major privacy problem with the RSS reader built into Apple's Safari browser.According to an alert from Brian Mastenbrook, there is a serious Safari vulnerability that allows a malicious web site to read files on a user's hard drive without user intervention.

January 13, 2009 by Ryan Naraine


Oracle drops critical database server patch bundle

Oracle has dropped the first quarterly critical patch update for 2009 -- with patches for 41 vulnerabilities in a wide range of database server products.The January 2009 CPU includes 20 new security fixes for the company's flagship database product lines, 4 new security fixes for the Oracle Application Server, 9 vulnerabilities in Oracle Secure Backup, 4 new security fixes for the Oracle Applications Suite, and 6 new security fixes for the PeopleSoft and JDEdwards Suite.

January 13, 2009 by Ryan Naraine

1 Comment

MS Patch Tuesday: 3 critical SMB vulnerabilities

Microsoft today shipped a solitary bulletin with patches for at least three documented security flaws in the Microsoft Server Message Block (SMB) Protocol.The three vulnerabilities, rated "critical" on Windows 2000, Windows XP and Windows Server 2003, exposes Windows users to remote code execution attacks, Microsoft said in its MS09-001 bulletin.

January 13, 2009 by Ryan Naraine


Phishers as street-level drug dealers

The Microsoft report on the profitability of phishing and its associated economic constraints is reminiscent of another illegal enterprise: street-level drug dealing.Microsoft released a report stating that phishing is no where near as profitable as commonly believed.

January 11, 2009 by Adam O'Donnell


Oracle planning Patch Tuesday whopper

Microsoft may be offering a Patch Tuesday respite this month but, if you're an Oracle database administrator, January 13 will be a very busy day.The database server giant announced plans for a monster Patch Day next Tuesday with fixes for 41 security vulnerabilities in "across hundreds of  Oracle products.

January 9, 2009 by Ryan Naraine


Microsoft study debunks phishing profitability

Do phishers actually make money, or is phishing an unprofitable business, scammers lose time and resources into? Taking the economic approach of generalizing how much money phishers make, a recently released study by Microsoft researchers Cormac Herley and Dinei Florencio (A Profitless Endeavor: Phishing as Tragedy of the Commons), states that phishing isn't as profitable as originally thought.

January 8, 2009 by Dancho Danchev