SearchSecurity.com | Web Security Info Center


	Home > Web Security Info Center

Web Security Info Center

EMAIL THIS


	WEB SECURITY from SearchSecurity.com


		Product Review: Finjan Vital Security NG-5000 FEATURE - Finjan's Finjan Vital Security NG-5000's Web filtering engines provide strong detection of Web-based security threats.


		Mozilla's Snyder says security pros should press vendors on security ARTICLE - Mozilla security chief Window Snyder says security pros should pressure their vendors to be better and more transparent about security.


		Safety Net FEATURE - BITS & BOLTS Microsoft's .NET development framework can help your Web apps perform securely.


	VIEW ALL IN THIS TOPIC


	BROWSER SECURITY from SearchSecurity.com


		VeriSign addresses MD5 flaw ARTICLE - VeriSign is moving completely to the new SHA-1 hash function to avoid a vulnerability affecting SSL certificates. Microsoft and Mozilla also weighed in on the problem.


		Rogue digital certificates strike blow to Internet security ARTICLE - Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.


		Kaminsky: DNS flaw capable of attacks on many fronts ARTICLE - Black Hat: Security researcher Dan Kaminsky outlined more than a dozen ways the DNS cache poisoning flaw could be exploited by an attacker to wreak havoc on vulnerable systems.


	VIEW ALL IN THIS TOPIC


	FIREFOX SECURITY AND MOZILLA SECURITY from SearchSecurity.com


		VeriSign addresses MD5 flaw ARTICLE - VeriSign is moving completely to the new SHA-1 hash function to avoid a vulnerability affecting SSL certificates. Microsoft and Mozilla also weighed in on the problem.


		Rogue digital certificates strike blow to Internet security ARTICLE - Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.


		Gartner advises banks to shore up online channels NEWS - A bank-targeted Trojan could lead to copycats and should spur security improvements, analysts say.


	VIEW ALL IN THIS TOPIC


	INTERNET EXPLORER SECURITY from SearchSecurity.com


		VeriSign addresses MD5 flaw ARTICLE - VeriSign is moving completely to the new SHA-1 hash function to avoid a vulnerability affecting SSL certificates. Microsoft and Mozilla also weighed in on the problem.


		Rogue digital certificates strike blow to Internet security ARTICLE - Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.


		Microsoft issues emergency patch to fix IE flaw ARTICLE - The software giant repaired a dangerous flaw being exploited if a user browses some legitimate websites.


	VIEW ALL IN THIS TOPIC


	OPERA SECURITY from SearchSecurity.com


		VeriSign addresses MD5 flaw ARTICLE - VeriSign is moving completely to the new SHA-1 hash function to avoid a vulnerability affecting SSL certificates. Microsoft and Mozilla also weighed in on the problem.


		Rogue digital certificates strike blow to Internet security ARTICLE - Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.


		Data risks take shine off Google Chrome ARTICLE - The Chrome Web browser is a platform for Google Apps and as end users adopt Chrome, companies could lose control of sensitive corporate data.


	VIEW ALL IN THIS TOPIC


	SAFARI SECURITY from SearchSecurity.com


		Rogue digital certificates strike blow to Internet security ARTICLE - Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals.


		Apple iPhone 2.2 update includes critical security patches ARTICLE - Apple addressed a dozen iPhone and iPod Touch security issues, including dangerous flaws in its Safari browser that could allow an attacker to gain access to sensitive information.


		Critical Firefox, Safari flaws addressed ARTICLE - Mozilla and Apple addressed serious flaws in the Firefox and Safari browsers.


	VIEW ALL IN THIS TOPIC


	MOBILE CODE (ACTIVE X, JAVASCRIPT) from SearchSecurity.com


		Critical SAP flaw leaves systems vulnerable to attack ARTICLE - A flaw in SAP's graphical user interface could be exploited by an attacker to gain user privileges and access data and files.


		BlackBerry server faced with critical zero-day ARTICLE - A serious PDF handling flaw in BlackBerry Enterprise Server could be exploited by attackers to gain access to sensitive information.


		Researcher: Beware of massive IFrame attack NEWS - The Russian Business Network (RBN) appears to be involved with a new scam that corrupts hundreds of thousands of Web sites with IFrame redirects.


	VIEW ALL IN THIS TOPIC


	SSL & TLS from SearchSecurity.com


		IBM USB banking device stops keyloggers, malware NEWS - A new USB stick, developed by IBM researchers, sets up a secure banking connection bypassing computer software and drivers.


		Google Chrome unlikely to attract security-minded users COLUMN - Chrome is crammed with security and privacy elements but it won't likely grab market share from IE or Firefox anytime soon.


		Plug-in opens door for self-signed SSL certs in Firefox 3 ARTICLE - Perspectives, a system developed by researchers at Carnegie Mellon University authenticates self-signed certificates and bypasses confusing security pop-ups displayed in Firefox 3.


	VIEW ALL IN THIS TOPIC


	URL FILTERING from SearchSecurity.com


		Should UTM and Web security filtering software be used together? EXPERT RESPONSE - Michael Cobb explains what is best for your business: either standalone security appliances or unified threat management devices.


		Google Chrome unlikely to attract security-minded users COLUMN - Chrome is crammed with security and privacy elements but it won't likely grab market share from IE or Firefox anytime soon.


		What can be done to block adult images in search engine results? EXPERT RESPONSE - What steps can be taken to ensure that children cannot access pornographic images through Google on their school's internet connection? Mike Rothman explains the options and the inherent difficulties.


	VIEW ALL IN THIS TOPIC


	WEB APPLICATION SECURITY (ALSO SEE WEB ACCESS CONTROL) from SearchSecurity.com


		Dangerous Java flaws could expose sensitive data ARTICLE - Errors in Sun Java could be exploited by an attacker to bypass security, gain access to critical files or conduct a denial-of-service attack.


		Web 2.0 application development techniques introduce new information security risks FEATURE - Ajax, Java and other dynamic application coding methods have pulled computing power over to the client, introducing new risks and resurrecting old ones.


		Honeyclients bring new twist to honeypots FEATURE - Honeyclients are unpatched web browsers that actively seek malicous websites.


	VIEW ALL IN THIS TOPIC


	WEB SERVER SECURITY from SearchSecurity.com


		Web app attacks grow, but developers may fight back Q A INTERVIEW - Web application security expert Ryan Barnett explains why Web servers are under attack, whether developers will create more secure code and the benefits of virtual patching.


		Kaminsky: DNS flaw capable of attacks on many fronts ARTICLE - Black Hat: Security researcher Dan Kaminsky outlined more than a dozen ways the DNS cache poisoning flaw could be exploited by an attacker to wreak havoc on vulnerable systems.


		SaaS startups enter Web security gateway market ARTICLE - Web security vendors Zscaler Inc., Purewire Inc. enter growing Software as a Service (SaaS) space dominated by appliance vendors


	VIEW ALL IN THIS TOPIC


	APACHE SECURITY from SearchSecurity.com


		How to stop malware in a 'Flash' TIP - John Strand demonstrates how to be ready for Flash-based malicious code.


		Oracle patches dangerous WebLogic flaw, critical database holes ARTICLE - A severe WebLogic flaw is among 36 security fixes released by Oracle Corp. across its database, middleware and enterprise software products.


		Screencast: How to use Wikto for Web server assessment TIP - Peter Giannoulis demonstrates what kinds of website and Web server information can be found using the free Wikto tool.


	VIEW ALL IN THIS TOPIC


	IIS SECURITY from SearchSecurity.com


		How to stop malware in a 'Flash' TIP - John Strand demonstrates how to be ready for Flash-based malicious code.


		Kaminsky: DNS flaw capable of attacks on many fronts ARTICLE - Black Hat: Security researcher Dan Kaminsky outlined more than a dozen ways the DNS cache poisoning flaw could be exploited by an attacker to wreak havoc on vulnerable systems.


		Trend Micro site compromised NEWS - Malicious hackers reportedly altered several pages on the firm's Japanese and English-language site last Sunday. Visitors could have been infected by malware.


	VIEW ALL IN THIS TOPIC


	WEB SERVICES SECURITY AND SOA SECURITY from SearchSecurity.com


		SOA security EXPERT RESPONSE - What are the security challenges unique to an SOA?


		MySpace, Facebook ignoring basic principles of security ARTICLE - Social networking websites MySpace and Facebook present a significant security risk to users; their APIs are a tempting target for malicious hackers.


		Kaminsky: DNS flaw capable of attacks on many fronts ARTICLE - Black Hat: Security researcher Dan Kaminsky outlined more than a dozen ways the DNS cache poisoning flaw could be exploited by an attacker to wreak havoc on vulnerable systems.


	VIEW ALL IN THIS TOPIC

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy