SearchSecurity: Threat Monitor
Clientless SSL VPN vulnerability and Web browser protection
4/03/2010
In a recent US-CERT advisory, clientless SSL VPN vulnerabilities were listed as posing serious threats to Web browser security. In this tip, learn possible actions to take for Web browser protection.
more...
Defending against RAM scraper malware in the enterprise
17/02/2010
A new type of malware attack, RAM scraper, may pose a serious threat to enterprise security. Learn what a RAM scraper attack is, and how you can defend your organization from this potentially damaging new malware attack.
more...
Server Message Block Version 2 security in question: Disable or patch?
3/02/2010
Nick Lewis reviews the recent vulnerability discovered in a popular Windows file-sharing and printing protocol. Yes, there's a patch, but should you deploy it, or simply disable SMBv2?
more...
How to detect software tampering
5/11/2009
In their book Surreptitious Software, authors Christian Collberg and Jasvir Nasvir reveals how to tamperproof your software and make sure it executes as intended.
more...
How to prevent phishing attacks with social engineering tests
15/10/2009
Is your enterprise capable of withstanding today's phishing attacks? Sherri Davidoff reviews how you can test your employees.
more...
Preventing hacker attacks with network behavior analysis IPS
13/10/2009
Deter enterprise network attacks by learning how network behavior analysis can be used to protect data. Understand the advantages and disadvantages of anomaly-based and signature-based protection and how to use them together to secure your network against complex hacks.
more...
How SSL-encrypted Web connections are intercepted
17/09/2009
Enterprises and attackers alike have found ways to sniff private Web traffic, even when it's encrypted. Sherri Davidoff reviews how encrypted Web connections can be sniffed, and ways that users can reduce their risk.
more...
Special Report: How to find jobs in information security
5/08/2009
Infosec professionals are not unilaterally immune to corporate layoffs and cost-cutting measures. Learn how to surivive and thrive in information security regardless of tough times.
more...
How to defend against rogue DHCP server malware
2/07/2009
Rogue DHCP server malware is a new twist on an old concept. The good news is that effective threat mitigation strategies exist; the bad news is that many organizations haven't bothered to deploy them.
more...
How to find and stop automated SQL injection attacks
7/05/2009
Automated SQL injection worms use search engines to filter through vulnerable Web servers. In this tip, Patrick Szeto explains how to keep your website off of the malware's radar.
more...
Trend Micro - Security Advisories
Microsoft Intern...
2/03/2010
Security Advisory: Microsoft Internet Explorer 'winhlp32.exe' 'MsgBox()' Remote Code Execution Vulnerability
more...
February 2010 - ...
9/02/2010
Security Advisory: February 2010 - Microsoft Releases 13 Security Advisories
more...
Microsoft Intern...
15/01/2010
Security Advisory: Microsoft Internet Explorer DOM Operation Memory Corruption Vulnerability (979352)
more...
January 2010 - M...
12/01/2010
Security Advisory: January 2010 - Microsoft Releases 1 Security Advisory
more...
Adobe Illustrato...
17/12/2009
Security Advisory: Adobe Illustrator Encapsulated Postscript File Remote Buffer Overflow Vulnerability
more...
Adobe Reader and...
17/12/2009
Security Advisory: Adobe Reader and Acrobat 'newplayer()' JavaScript Method Remote Code Execution Vulnerability
more...
December 2009 - ...
8/12/2009
Security Advisory: December 2009 - Microsoft Releases 6 Security Advisories
more...
Microsoft Intern...
25/11/2009
Security Advisory: Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability
more...
Microsoft Window...
12/11/2009
Security Advisory: Microsoft Windows 'KeAccumulateTicks()' SMB2 Packet Remote Denial Of Service Vulnerability
more...
November 2009 - ...
10/11/2009
Security Advisory: November 2009 - Microsoft Releases 6 Security Advisories
more...