Windows IT Pro
Connect With Us
Home > Blogs > Security Blog > Security Blog

Security Blog

Security Blog

Jun. 24, 2011
blog

LulzSec Hacks Arizona Law Enforcement, Releases Documents

The LulzSec hacker group has struck again, this time by gaining access to computers and files of the Arizona Department of Public Safety (AZDPS). According to a statement the group posted on their LulzSecurity website, Lulz targeted the AZDPS "...specifically because we are against SB1070 and the racial profiling anti-immigrant police state that is Arizona." SB1070 refers to Arizona's controversial anti-immigration legislation that was signed in to law by Arizona Governor Jan Brewer on...More
Jun. 22, 2011
blog

FBI Takes Down Servers in Quest for LulzSec Hackers 5

The New York Times broke the story yesterday that the FBI had seized a number of servers from a datacenter located in Reston, VA owned by web hosting provider DigitalOne (offline at press time). According to the New York Times story, the FBI reportedly had information that some of the servers at DigitalOne were used by the hacker group LulzSec, so the agency raided the facility in the early morning hours of Tuesday, June 21st. I find this news interesting for three reasons: To begin with, this...More
Jun. 20, 2011
blog

Qualys Unveils BrowserCheck Business Edition

Software-as-a-Service (SaaS) security vendor Qualys has just announced a Business Edition of their free BrowserCheck web browser vulnerability assessment tool. Browser security has increasingly become a more pressing issue for organizations of all sizes, and this latest Qualys tool provides some business-friendly features that administrators should find useful....More
Jun. 9, 2011
blog

Citigroup Breached by Hackers

Adding to what is already shaping up to be one of the most active years ever for security hacks and breaches, Citigroup announced yesterday that hackers had gained access to their network and were able to obtain personal information for close to 200,000 Citigroup customers based in North America....More
Jun. 8, 2011
blog

Sophos: Mac Malware Avoidance Tips

Security vendor Sophos has come up with some tips for avoiding Mac malware and scareware, specifically variants of the infamous MacDefender scareware....More
May 24, 2011
blog

Symantec: Spammers Creating Fake URL-Shortening Services 3

With the advent of Twitter driving the popularity of URL shortening services like Bit.ly, TinyURL, and goo.gl, it was inevitable that some enterprising spammers would cash in on the trend. According to Symantec, that's exactly what they're doing....More
May 11, 2011
blog

Symantec: Facebook Revealing User Data to Third Parties 4

According to a security researcher at Symantec, some Facebook applications are inadvertently revealing personal user information to third parties. Symantec security researcher Nishant Doshi posted details of the vulnerability in the Symantec Security Response blog yesterday....More
May 9, 2011
blog

Google Chrome Gets Hacked

Security research firm Vupen Security has claimed to have successfully hacked Google Chrome with an exploit of an undisclosed, zero-day vulnerability. ...More
May 4, 2011
blog

Symantec Announces Endpoint Protection 12 Beta, Protection Center 2.0

Earlier today at the Symantec Vision conference in Las Vegas, Symantec announced the public beta program for Symantec Endpoint Protection 12 (SEP12) and the upcoming release of Symantec Protection Center 2.0 (SPC2)....More
Apr. 28, 2011
blog

Zombies up 71% (Zombie IPs, That Is)

According to internet security software vendor Commtouch, so-called "zombie PCs" -- PCs infected with malware that can turn them into unwitting hosts and distribution points for malware, viruses, and other malevolent software -- are on the increase....More
Apr. 13, 2011
blog

Microsoft Releases Massive Patch Tuesday Security Update 1

Microsoft has detailed the contents of yesterday's "Patch Tuesday" release, a massive security update that includes a grand total of 17 Microsoft security bulletins covering 64 separate security vulnerabilities....More
Apr. 7, 2011
blog

RSA Reveals Details of Phishing Attack 1

One of the biggest security news stories of the past few weeks was the security breach at RSA, where a still unidentified attacker managed to gain access to email accounts, corporate data, and other information at security firm RSA, which is a division of EMC Corporation....More
Mar. 30, 2011
blog

UPDATE: Samsung Keylogger Claims Debunked

Samsung is being accused of pre-installing a commercial key-logging app called StarLogger on multiple Samsung laptops. At press time it was unclear how large the scope of the keylogger distribution is and which specific Samsung laptops include the software, but it is clear that yet another corporation has received a black eye by not being mindful of consumer privacy....More
Mar. 23, 2011
blog

MMS2011: Microsoft Moves to Bolster Platform Security

Earlier today a few Windows IT Pro editors had the opportunity to sit down with Garth Fort, Microsoft's general manager of System Center and Forefront, and ask him some questions about the new additions to the System Center product family being announced at the show this week....More
Mar. 16, 2011
blog

IE9 Introduces New Security Features

Some of the biggest improvements to IE9 came in the form of security and privacy improvements, with the three most significant being enhanced memory protection, improved defense against social-engineering attacks, and a new "pinned sites" features that add multiple security improvements....More
Mar. 9, 2011
blog

Patch Tuesday: Microsoft Fixes DirectShow, Media Player Vulnerabilities

Microsoft has released two important updates (MS11-016 and MS11-07, which deal with vulnerabilities in Microsoft Groove and the Windows Remote Desktop Client, respectively) and one critical one: MS11-015, an alert entitled "Vulnerabilities in Windows Media Could Allow Remote Code Execution."...More
Mar. 2, 2011
blog

Qualys Unveils IronBee Open Source Web Application Firewall

One of the most compelling (and arguably overlooked) bits of news from last month's RSA Conference was the arrival of IronBee, an open-source web application firewall (WAF) sensor unveiled by cloud security vendor Qualys....More
Feb. 18, 2011
blog

RSAC: Credant Announces Cloud Encryption Software Platform

Credant Technologies believes that their new cloud security platform can help enterprises overcome some of the security concerns that IT admins may still have about cloud computing....More
Feb. 17, 2011
blog

RSAC: 2011 RSA Conference in Pictures

The 2011 RSA Conference is almost over, and I’ve managed to take a few pictures of the show during our visit to San Francisco. I thought you might enjoy seeing some of them, so I’ve posted them below. RSAC: 2011 RSA Conference Photos VIEW SLIDE SHOW DOWNLOAD ALL Attending the RSA Conference in San Francisco this week? Share your thoughts by adding a comment to this blog post or continuing the discussion on Twitter. Read: More Security News and Articles Follow Jeff James on Twitter at @jeffjames3 Follow Windows IT Pro on Twitter at @windowsitpro...More
Feb. 16, 2011
blog

RSAC: Verizon Announces Enterprise Identity Service

Verizon unveils a new enterprise identity service that the company promises will "dramatically improve the way companies authenticate the identities of employees, partners, and customers."...More
What's Security Blog?

Security news, views, product reviews, and solutions for Microsoft Windows IT professionals.

Blog Archive
WindowsITPro.com
Related Sites
Copyright © 2013 Penton Media, Inc