Another Black Hat conference, another vulnerability disclosure brouhaha. IOActive's Chris Paget's plan to explain why RFID technology is "insecure and untrustworthy" has run into a legal brick wall.
Staying on top of the latest in software/hardware security research, vulnerabilities, threats and computer attacks.
Violet Blue is the author of The Smart Girl's Guide to Privacy. She contributes to ZDNet, CNET, CBS News, and SF Appeal.
Larry Seltzer has long been a recognized expert in technology, with a focus on mobile technology and security in recent years
David Litchfield's ongoing assault on Oracle databases has unearthed a new method of exploiting PL/SQL injection vulnerabilities. Litchfield, co-founder and managing director at NGSS (Next Generation Security Software), plans to discuss the new technique at the Black Hat DC 2007 conference later this week.
Earlier this month at the RSA conference, I got a chance to see a demo of Immunity's Silica, a $3600 handheld devide that can search for and join 802.11 (Wi-Fi) access points, scan other connections for open ports, and automatically launch code execution exploits from a built-in exploit platform.
Mozilla has rolled out a major security update to fix a total of seven vulnerabilities in its flagship Firefox browser. The batch of patches apply to users of Firefox 18.104.22.168 and Firefox 22.214.171.124 (Windows, Mac, and Linux).
Firefox 126.96.36.199 as a high-priority browser
Security researchers at eEye Digital Security have found what is believed to be the first remotely exploitable vulnerability in a Microsoft Office 2007 application.
According to a published report, the recent attack against the DNS root servers was launched from a host server in Germany that controlled millions of zombie machines in South Korea
What could Cisco and Apple be up to on the security front? The two sides are not elaborating but that’s not going to stop the speculation in security circles.
Some of the biggest names in the anti-virus business -- Symantec, McAfee and CA eTrust, -- are missing from the list of vendors shipping products with the "Certified for Windows Vista" logo or the "Works with Windows Vista" logo.
It looks like Michal Zalewski is turning February into the MOFFB (month of Firefox bugs).