Setting the open-source security record straight
To more rapidly test patches and keep network configurations from drifting, keep a closer watch on every device’s configuration
Blame unusable security, not users; Apple worm; high-speed IPS
New security-risk management tools bridge the security/business gap
With the November 15 deadline looming for many organizations, many companies still don’t have a plan for auditing and archiving instant messages.
Free hard-drive indexing utility raises corporate security and privacy questions
As more organizations embrace Web services (which opens back-office processes to partners and the Internet), a problem is emerging: who inside the organization is in charge of Web services security?
Domain name registrar copes with DoS spike
Identifying business assets to aid threat mitigation
How one financial company distributes secure information to its board of directors, many of whom work in an insecure environment
Human error and security; AOL's two-factor authentication; September viruses
Knowing how today's hackers think and work is the first step to combating their attacks.
IT must cope with under-funded regulations, more CIO leeway
RealPlayer and JPEG vulnerabilities; security insurance
Symantec's assessment of system vulnerabilities in the first half of this year shows a dramatic increase in the number and potential destruction of security threats.
Banks help ID thieves; unified security appliances; server security
Symantec grabs @Stake; JPEG vulnerabilities; Mozilla holes; Sniffer worm
How one company found an outsourcer able to manage its network equipment and offer cogent security advice
Office uses one-stop monitoring for attacks and vulnerabilities
Most attacks are relatively unsophisticated, planned in advance, conducted during normal business hours, and start from inside the organization. The common driver comes as no surprise: money.