Zack Whittaker

Zack Whittaker is the security editor for ZDNet, covering cyber and national security. He is based in New York newsroom, and is also found on sister-sites CNET and CBS News. You can reach him with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne is a cybersecurity journalist and photographer who writes for ZDNet and CNET from London. PGP Key: AF40821B | Research/security tips email: cingred@protonmail.com.

Jennifer Leggio

Jennifer Leggio has been in the security industry for 17 years as a marketer, advisor, and writer. Her focus is on security culture, including disclosure, community issues, equality in security, disruptive trends, and even marketing best practices. PGP Key: 3A708289 | She prefers other contact on Twitter via @mediaphyter.

Latest Posts

House of Hackers social community opens up

House of Hackers social community opens up

PDP, the leader of the Gnucitizen White Hat Hacker outfit announced the opening of the House of Hackers social community yesterday.  The House of Hackers is intended to enable its members to exchange ideas with each other, communicate, form groups, elite circles and tiger/red teams, conglomerate around projects, and participate in a hacker recruitment market.

May 6, 2008 by in Collaboration

More bad news for McAfee, HackerSafe certification

More bad news for McAfee, HackerSafe certification

Dan Godin posted a great article that was picked up by The Register a couple days ago about continued challenges for McAfee's newly purchased HackerSafe division.  I find the article interesting as HackerSafe uses a scanning tool that probes for web application security flaws...

May 1, 2008 by in Security

Word up to Linux fan boys: Multiple Linux flaws show that Linux also has kernel issues

Word up to Linux fan boys: Multiple Linux flaws show that Linux also has kernel issues

Not to defend Microsoft, as kernel exploits that provide privileged access are terrible flaws, but we had an interesting discussion in the talkbacks where several people acted as if Microsoft was the only place that could've made such mistakes.  Well, the proof is in the pudding that this is a common flaw across operating systems that is difficult to catch due to the complexities of kernel code.

May 1, 2008 by in Security

Italy reveals population's tax, salary details

Italy reveals population's tax, salary details

Italy's tax department posted every Italian's declared earnings and tax contributions on a site that was quickly overwhelmed by onlookers.According to the BBC:There has been outrage in Italy after the outgoing government published every Italian's declared earnings and tax contributions on the internet.

May 1, 2008 by in Government

HP plugs latest ActiveX software update flaw

HP plugs latest ActiveX software update flaw

HP has plugged another ActiveX vulnerability in its software update application.The patch (CVE-2008-0712) covers "a potential vulnerability has been identified with the HPeDiag ActiveX control which is a component of HP Software Update running under windows.

April 28, 2008 by in Security

Developers at fault?  SQL Injection attacks lead to wide-spread compromise of IIS servers

Developers at fault? SQL Injection attacks lead to wide-spread compromise of IIS servers

There's been a lot of noise and violent thrashing over the last couple days regarding a flaw that was originally believed to be a flaw in Microsoft's IIS (Internet Information Server), but has since been pointed out as simply a well thought out SQL Injection attack. For those of you who aren't familiar with SQL Injection attacks, it's a pretty well known web application attack vector that exists in high volume on dynamic applications, say for instance, on your banking site.

April 28, 2008 by in Developer

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
See All
See All

Top Stories