IT Security

Security bloggers help keep you up to date on how to protect your network through news, updates, advice, and opinions on how you can stay ahead of hackers.

  • Tom Olzak // September 28, 2008, 9:00 PM PST

    Security awareness training success depends on effective planning

    Once you obtain management approval for an Information Security Awareness Training Program (ISATP), the next step is identifying appropriate content and the target audience. This planning phase is a project requiring participation from all key areas of the business.

    0

  • Tom Olzak // September 30, 2008, 9:00 PM PST

    Security begins with employee understanding and acceptance

    Security awareness and training are typically covered under the single heading of Information Security Awareness Training. This high-level approach is appropriate for many organizations, especially those with a meager budget. However, formal methods treat awareness and training as different activities.

    0

  • Paul Mah // October 24, 2007, 3:51 PM PST

    Security news roundup: October 24

    Here's a collection of recent security vulnerabilities and alerts, which include vulnerabilities discovered in Lotus Notes and Domino as well as multiple SQL-injection vulnerabilities discovered in Oracle interMedia.

    0

  • Chad Perrin // October 25, 2007, 3:51 AM PST

    A little more about passwords

    0

  • Mike Mullins // October 31, 2007, 11:24 PM PST

    Protect IIS log files by moving them to a secure location

    Internet Information Services (IIS) continues to be a favorite target for hackers. Make their job harder by moving IIS log files to a secure remote location.

    0

  • Paul Mah // October 25, 2007, 3:59 PM PST

    Security news roundup: October 25

    Here's a collection of recent security vulnerabilities and alerts, which covers vulnerabilities reported in components of HP OpenView, flaws in XScreenSaver locked screen functionality, and a report by SecurityFocus on the state of security so far this year.

    0

  • Paul Mah // October 26, 2007, 2:04 PM PST

    Security news roundup: October 26

    Here's a collection of recent security vulnerabilities and alerts, which covers a new version of Apache Tomcat, a local privilege escalation in Trend Micro anti-virus products, and six new flaws fixed in the latest version of RealPlayer.

    0

  • Paul Mah // October 28, 2007, 5:01 PM PST

    Security news roundup: October 29

    Here's a collection of recent security vulnerabilities and alerts, which covers the automatic installation of Windows Desktop Search on client PCs by WSUS in certain cases, and multiple vulnerabilities discovered in Computer Associate's BrightStor Hierarchical Storage Manager.

    0

  • Paul Mah // October 30, 2007, 3:11 AM PST

    Security news roundup: October 30

    Here's a collection of recent security vulnerabilities and alerts, which covers serious vulnerabilities found in Symantec Mail Security, the availability of TikiWiki 1.9.8.3 which resolves a number of earlier vulnerabilities, and a patch for buffer overflows in Nagios plug-ins.

    0

  • Paul Mah // October 31, 2007, 4:59 PM PST

    Security news roundup: October 31

    Here's a collection of recent security vulnerabilities and alerts, which covers the release of Wordprses 2.3.1 which is a bug-fix and security release, multiple vulnerabilities in AIX, and a code injection vulnerability discovered in McAfee E-Business Server.

    0

  • Paul Mah // November 1, 2007, 3:38 PM PST

    Security news roundup: November 1

    Here's a collection of recent security vulnerabilities and alerts, which cover a vulnerability discovered in Novell's BorderManager 3.8 Client Trust, a memory corruption vulnerability in CUPS, and a new Mac Trojan that masquerades as a video codec for watching pornography.

    0

  • Paul Mah // November 5, 2007, 1:52 PM PST

    Security news roundup: November 5

    Here's a collection of recent security vulnerabilities and alerts, which covers a local escalation of priviledge in Symantec Antivirus for Mac, vulnerabilities discovered in ACDSee, and a vulnerability found in IPSwitch e-mail client - which comes bundled with theIPSwitch IMail Server for Windows.

    0