Zack Whittaker

Zack Whittaker is a security writer-editor for ZDNet. He can be found on sister sites CNET and CBS News. He is based in the New York newsroom. You can send him secure email with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne, a medical anthropologist who studied at the University of Kent, UK, is a journalist, freelance photographer and former teacher. She has spent years travelling and working across Europe and the Middle East as a teacher, and has been involved in the running of businesses ranging from media and events to B2B sales. Charlie currently works as a journalist and photographer -- with the occasional design piece -- and writes for ZDNet, CNET and SmartPlanet. She has particular interests in social media, IP law, social engineering and security.

Latest Posts

Measuring (not so) recent BIND nameserver patching

Measuring (not so) recent BIND nameserver patching

Guest editorial by Derek CallawayThis post is meant to provide an approximation of BIND nameserver updates that occurred during the past month, most likely in response to Dan Kaminsky's DNS cache poisoning vulnerability. I conducted this research because I was curious as to how widely BIND nameserver updates have been deployed given that a month has passed since US-CERT first alerted the public about the nature of the vulnerability and availability of patches.

August 14, 2008 by in Enterprise Software

VMware blames stray code for 'time bomb' hiccup

VMware blames stray code for 'time bomb' hiccup

VMware boss Paul Maritz is blaming "a piece of code" mistakenly left in the final release of ESX for the time-bomb hiccup that crippled virtual machines around the world.In a message posted online, Maritz said the glitch caused a license expiration hiccup that caused virtual machines to be powered off, suspended fail or disrupted migration.

August 13, 2008 by in VMWare

Microsoft plugs IE, Office in big patch haul

Microsoft plugs IE, Office in big patch haul

Microsoft patched 26 vulnerabilities with its latest patch including 20 flaws that were deemed critical.Here's the rundown of critical flaws (full bulletin):CVE-2008-2254, CVE-2008-2255, CVE-2008-2256, CVE-2008-2257, CVE-2008-2259 and CVE-2008-2258: These patches fix IE 5 through 7 on various flavors of Windows and address HTML objects memory corruption vulnerabilities as well as memory corruption issues.

August 12, 2008 by in Enterprise Software

Google releases open-source crypto toolkit

Google releases open-source crypto toolkit

Google's security team has released an open-source cryptographic toolkit aimed at making it easier and safer for developers to use cryptography in their applications.The toolkit, called KeyCzar, was originally developed by Steve Weis (Google) and Arkajit Dey (MIT) and is available under an Apache 2.

August 11, 2008 by in Google

Coordinated Russia vs Georgia cyber attack in progress

Coordinated Russia vs Georgia cyber attack in progress

In the wake of the Russian-Georgian conflict, a week worth of speculations around Russian Internet forums have finally materialized into a coordinated cyber attack against Georgia's Internet infrastructure. The attacks have already managed to compromise several government web sites, with continuing DDoS attacks against numerous other Georgian government sites, prompting the government to switch to hosting locations to the U.

August 11, 2008 by in Security

Saying Farewell

Saying Farewell

It's been a great handful of months here at ZDNet, but I'm deciding to say goodbye to the blogging scene.  I'm already really busy with my primary job, and at this point I want to slow the work load down a good deal and just enjoy life.

August 11, 2008 by in Enterprise Software

CNET's Clientside developer blog serving Adobe Flash exploits

CNET's Clientside developer blog serving Adobe Flash exploits

Yesterday, Websense Labs issued an alert regarding a compromised CNET blog, namely the Clientside developer blog which has been embedded with a malicious javascript code attempting to exploit the visitors through a well known vulnerability in Adobe Flash's player. Websense's alert :"Websense Security Labs ThreatSeeker Network has discovered that a CNET Networks site has been compromised.

August 7, 2008 by in Security

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All
See All

Top Stories