I was looking over famed security researcher and cryptography expert Bruce Schneier's blog today and found an article on hacking medical devices. I have to admit that I was surprised, but I shouldn't have been.
Staying on top of the latest in software/hardware security research, vulnerabilities, threats and computer attacks.
Violet Blue is the author of The Smart Girl's Guide to Privacy. She contributes to ZDNet, CNET, CBS News, and SF Appeal.
Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years
Adobe this week issued security bulletins and patches for products ranging from ColdFusion to Form Designer.In Adobe's security bulletin the company outlined the following in order of importance:CVE--2007-6253: Adobe says "critical vulnerabilities have been identified in Form Designer 5.
Harvard's graduate school of arts and sciences said that roughly 10,000 individuals may have had their personal information compromised by a security breach.The intrusion was discovered in February, according to a Harvard statement released Wednesday.
Update: As most of the tech world knows, IE 8 has landed with its first beta, but the security improvements may raise some other issues to ponder.Folks--especially security researchers--are kicking the tires on IE 8 (all resources) and finding a few problems that go along with Microsoft's protection enhancements.
Microsoft on Tuesday delivered several patches to fix critical vulnerabilities in Office including a well-publicized Excel flaw.In the first bulletin (MS08-014), Microsoft addressed "several privately reported and publicly reported vulnerabilities in Microsoft Office Excel that could allow remote code execution if a user opens a specially crafted Excel file.
RealPlayer has a another ActiveX vulnerability that leaves Windows users on IE at risk.Elazar Broad, who frequently flags ActiveX problems, issued an alert Sunday on message board lists.
One of the biggest threats facing wireless LAN users is SSID probing, which is forced by the reckless usage of SSID broadcast suppression. But many users are taught that SSID broadcast suppression is good.
Cisco has revamped the way it handles patches moving toward a more predictable schedule.Under Cisco's new approach it will release patches on the fourth Wednesday of March and September.
In a much ballyhooed media event, Apple released the iPhone SDK at a press conference last week. I've been watching the wire to see if other security researchers are as concerned about Apple's development and deployment model as I am.
An application dubbed G-Archiver backs up your Gmail account to a hard drive with a not-so-nice twist: It swipes your user name and password.Jeff Atwood at Coding Horror outlines a chilling tale as told by Dustin Brooks, one of his readers.