Paul Desmond

Answer: Yaha, Klez, Lovegate, Bugbear and Backdoor. Question: What are five reasons Datamation readers selected Symantec AntiVirus Corporate Edition 7.6 as the 2002 security product of the year? Antivirus may not be the sexiest security technology, but in the security world a strong antivirus defense is a mainstay, must-have, don’t even think about it kind […]

Move over Microsoft, there’s a new security punching bag in town: open source software. Security consultants at Aberdeen Group examined security advisories published by the Carnegie Mellon University Computer Emergency Response Team (CERT) through October of this year. They found that nearly half of the advisories — 16 of 29 — affected open source software, […]

The CERT Coordination Center (CERT/CC) this week issued an advisory regarding a buffer overflow vulnerability in the Common Desktop Environment (CDE), a graphical user interface employed in numerous Unix and Linux systems. The vulnerability could enable attackers to execute code or cause a denial of service. Discovered by Entercept Security Technologies, the vulnerability exists in […]

A number of Symantec firewalls, including popular Raptor models, have a security flaw that renders networks protected by the systems vulnerable to intrusion. The flaw was disclosed to Symantec on July 3 by Ubizen, a security services provider that, ironically, soon after became a Symantec competitor. On July 17, Symantec announced it was acquiring Riptech, […]

IT professionals are worried about the prospect of a cyber attack against the U.S. government, with many considering such an attack “likely” in the next year, according to survey results released this week by the Business Software Alliance (BSA). The BSA is a trade group representing software vendors, including purveyors of security tools such as […]

The CERT Coordination Center is warning of a vulnerability in Dynamic Host Configuration Protocol (DHCP) servers that could enable an intruder to gain root access to the servers. Originally issued on May 8 and updated on Tuesday, the warning says the vulnerability affects DHCP servers, or daemons, supplied by the Internet Software Consortium, a non-profit […]

“Network security’s days in the limelight are over,” according to a recent report from the ICA Syndicate, the publishing arm of the research and strategy firm Intellectual Capital Associates. Before you go looking for a new career, it may be helpful to first cast a wary eye on some of the reports findings. The report, […]

IBM on Thursday announced a free tool intended to help companies define and implement privacy policies that address the handling of customer and internal data. The Tivoli Privacy Wizard translates written privacy policies into code that will allow forthcoming IBM enterprise privacy monitoring and enforcement software to enforce the policies. Alternatively, the code can be […]

3Com Corp. is making a push to extend security to server, desktop and, eventually, mobile computing devices with the announcement of the 3Com Embedded Firewall. The 3Com Embedded Firewall is a hardware-based firewall that works with 3Com 10/100 Secure Network Interface Cards to provide security function at network end points, meaning servers and desktops. Further […]

Vulnerabilities in the software used to manage the bulk of the routers, switches and other devices that comprise corporate networks and the Internet leave these systems open to attacks that can bring them down, a number of security research groups announced Tuesday. Researchers at Oulu University in Finland discovered numerous vulnerabilities in multiple vendors’ implementations […]