Security6 - Security news on IT threats, vulnerabilities

Mobile security, BYOD policy issues to trend at RSA 2012, analysts say

security6 — Tue, 21 Feb 2012 16:20:50 +0000

BYOD policy issues are a big concern for enterprises grappling to secure employee smartphones and tablets, say analysts previewing RSA 2012.

See the original post:
Mobile security, BYOD policy issues to trend at RSA 2012, analysts say

February 2012 Patch Tuesday: Critical IE, Windows kernel flaws fixed

security6 — Tue, 14 Feb 2012 14:05:29 +0000

Flaws in Internet Explorer and the Windows C Runtime library could be used to gain access to system files and download additional malware onto a victim?s machine.

See more here:
February 2012 Patch Tuesday: Critical IE, Windows kernel flaws fixed

February 2012 Patch Tuesday to address 21 vulnerabilities

security6 — Thu, 09 Feb 2012 12:23:39 +0000

Microsoft plans to fix coding errors in Internet Explorer, .NET Silverlight and Microsoft Office.

Original post:
February 2012 Patch Tuesday to address 21 vulnerabilities

Faith in webmasters’ security rewarded-kinda

security6 — Sat, 04 Feb 2012 17:39:21 +0000

CANCUN, Mexico — Kaspersky Labs senior security research Stefan Tanase knows all about the old adage “You never know until you ask.” Tanase conducted an experiment recently where he emailed the webmasters of 100 websites infected with malware informing them of the problem asking in return only for some data on the infections in the form of log entries. What Tanase got in return was a big fat zero, as in no replies.

See more here:
Faith in webmasters’ security rewarded-kinda

Incoming search terms:

myfreecams vulnerability

Kaspersky buys out equity firm; keeps security company private

security6 — Sat, 04 Feb 2012 17:39:18 +0000

CANCUN, Mexico — Kaspersky Labs cofounder and chief executive Eugene Kaspersky announced today that

Incoming search terms:

Kaspersky buys out equity firm; keeps security company private comment

Adobe makes pitch for defensive security research to cripple exploit writing

security6 — Fri, 03 Feb 2012 06:11:21 +0000

Adobe security and privacy director Brad Arkin urges the security industry to focus on the latest exploit techniques and develop mitigations that make exploit writing costly.

Excerpt from:
Adobe makes pitch for defensive security research to cripple exploit writing

Duqu Trojan investigation: Indian authorities seize Web hosting provider servers

security6 — Sun, 29 Jan 2012 21:49:21 +0000

Computer equipment from a data center in Mumbai have been seized as part of an investigation into the Duqu Trojan, which shares code with the notorious Stuxnet worm. Reuters has reported that computer investigators in India have seized the computer equipment that is believed to have hosted the command-and-control server connected to the Duqu Trojan . Investigators from India’s Department of Information Technology traced the malware communications to a server at a web-hosting company called Web Werks, according to two workers at the firm.

See more here:
Duqu Trojan investigation: Indian authorities seize Web hosting provider servers

Incoming search terms:

duqu

Windows zero-day flaw used in Duqu attacks

security6 — Sun, 29 Jan 2012 21:49:15 +0000

Security researchers said Tuesday the Duqu Trojan used a Word document that exploits a Microsoft zero-day vulnerability in order to infect computers. Microsoft said it’s working to address the flaw.

More:
Windows zero-day flaw used in Duqu attacks

Incoming search terms:

duqu news

Malicious Android applications may have infected millions, Symantec warns

security6 — Fri, 27 Jan 2012 13:19:30 +0000

More than a dozen malicious Android applications on the Android Market contain a hidden Trojan that can steal information, download more files and display advertisements on the device. Presented By: The next level in education with NEC We bring you tailor-made solutions built on an in-depth understanding of your unique needs. Learn how NEC?s solutions and expertise in voice and data communications, networks and data storage can elevate your performance at www.nec.com/education www.nec.com/education Ads by Pheedo

View article:
Malicious Android applications may have infected millions, Symantec warns

Secunia brings own spin to vulnerability rewards programs

security6 — Mon, 23 Jan 2012 22:05:46 +0000

Another day, another vulnerability reporting reward program. Kinda.