Microsoft has introduced a release client version of its latest browser, Internet Explorer 8 (IE8), and the new iteration of the application includes several security improvements, including a noteworthy attempt to address the emerging problem of clickjacking attacks.
Much has been written about the Conficker worm, also called “Downadup,” in recent days. eWEEK has pulled together some general advice for protecting your systems from infection and remediating them should the worm slither by your defenses.
Security researchers are reporting that the Conficker worm virus, which preys on a recently reported vulnerability (MS08-067) in the Microsoft Windows server service, is spreading rapidly even as we speak.
Messaging and collaboration SAAS company Zoho updates its Firefox plug-in for Zoho Notebook to make it easy to import a Google Notebook to Zoho’s cloud computing environment. The move is a shrewd one on the part of Zoho, which is looking to find favor with peeved Google users put off by Google Notebook’s newly halted application development. Any content added to the new Zoho plug-in will be automatically synchronized with the online version of Zoho Notebook.
A new variant of a worm that exploits a vulnerability patched by Microsoft in October has infected millions of users, security researchers say. According to experts, the Conficker worm is using multiple mechanisms to spread.
ContentWatch’s CP 300 security appliance offers very good content filtering, traffic shaping and anti-malware capabilities, as well as excellent reporting. It also integrates with directory services such as LDAP to let businesses enforce Internet usage policy per person.
The SRP feature in Microsoft Windows doesn’t offer the same granularity of control or change management capabilities as whitelisting options from third-party suppliers, but there also are no extra licensing costs and it works well with Windows clients and servers.
Server virtualization has become a popular trend in enterprise IT. When migrating from a physical to a virtual environment, IT professionals need to ensure that their company’s data is protected, current and readily available.
Database and application vendors may want to take a look at expanding their data masking capabilities as its relevance grows. While the market is currently small, Forrester Research expects it to grow in the years ahead.
The successful creation of a rogue certificate authority by security researchers using a colliding certificates attack demonstrates that if you’re not moving forward with your security-related standards then you’re moving backward. Everything gets cracked over time, so you have to keep improving your defenses.
Security vendors such as Imperva and Guardium are increasingly tying security information management to database activity monitoring. The latest example of this trend is NitroSecurity, which has integrated its NitroView DBM and NitroView ESM products.