We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
The good news is that Web application vulnerabilities during the first two quarters of 2010 represent a smaller percentage (66%) of total commercial application vulnerabilities (4,019) than they did during the latter two quarters of 2009 (82% of 2652).
Hewlett-Packard will acquire Fortify Software to gain possession of its ability to perform analysis on source code to detect security risks and exposures.
The software security sector continues to show vibrant M&A activity, with big companies like Hewlett-Packard trying to become a one-stop shop for all of their customers
Google now offers an extension for Chrome that automates the process of adding the secure Google search site as a search engine to the Chrome 6.x branch. Google SSL Web Search is an extension, still in beta, that works with Chrome 6.0.419.0 and later on Windows and Linux computers.
Flattr, the micropayment startup founded by ex-Pirate Bay associates, has opened to the public today. No longer will you need an invite in order to add the Flattr button to your web site as a publisher or to give support to the sites you visit with real money.
LIGATT Security International, a cyber security company, today announced that their Hacker for Hire service will now be accessible via text messaging. Customers will now be able to text the word "Hacker" to 90210 to receive instant assistance to any cyber security issue they may have. This method is a faster and more effective approach for Hacker for Hire representatives to connect with cyber crime victims.
Modern enterprise security often involves multiple security technologies, including firewall, IPS (define) and antivirus tools, which can't always integrate to provide a broader view of security events and data risks. But with attackers persistently probing a range of enterprise defenses looking for weaknesses, that broader view becomes a must-have.
The makers of the popular open-source Snort intrusion detection platform today unveiled a new open-source platform -- a detection framework that unites existing security tools, including IDS/IPSes.
For the second time in two months, Mozilla on Friday rushed out a fix for Firefox to patch a problem with a browser update issued just days before. Mozilla shipped Firefox 3.6.8 on Friday to patch a single security problem and deal with what Mike Beltzner, director of Firefox, called "a stability problem that affected some pages with embedded plug-ins."
Dell, through its Kace unit, is making available free Web browser security software that works by creating a protective "sandbox" on the desktop to isolate the user's desktop from malware or other harmful actions that might be encountered browsing the Web.
A security consultant has released a Ubuntu-based Linux distribution specifically designed to help analyze and re-engineer malware. Lenny Zeltser on Thursday released REMnux on Sourceforge and it has already been downloaded nearly 2,000 times.
High brand visibility from large security vendors doesn't necessarily mean that their products dominate the market, according to a new study of security software.
The Mozilla Foundation has released an early beta of the upcoming version 4 of Firefox, its flagship cross-platform browser for Windows, OS X, and Linux. The long-awaited release introduces a number of improvements and additions over previous versions of Firefox. Firefox 3 came out two years ago, while version 3.5 of the Web browser debuted in 2009.
Google is updating the stable version of its Chrome Web browser for Windows, Mac and Linux, addressing a handful of security vulnerabilities -- including four that could put users at risk simply by viewing a maliciously constructed image file.
Mozilla pushed out a minor update to Firefox on Saturday, slightly adjusting the new plug-in crash protection feature that was introduced last week. Firefox 3.6.6 for Windows and Linux delays the amount of time that the plug-in protection module will wait before terminating an unresponsive plug-in.
Linux giant Red Hat is moving the ball forward on its mission of becoming a key virtualization and cloud infrastructure player. To that end, the company has announced the latest release of its Enterprise Virtualization hypervisor, version 2.2.
VeriSign and one of its partners have come under fire for publicly exposing webpages used to process customer security certificates, a practice a competitor claims puts some of the biggest names on the web at risk of serious targeted attacks.
Mozilla is updating its Firefox Web browser with new technology that is targeted at making the open source browser more stable. The Firefox 3.6.4 release also includes fixes for four critical security vulnerabilities.
Last week, we commented on the fact that Dell was hyping up the Linix distribution Ubuntu on its web site, much to the detriment of Microsoft's Windows. Dell was proud of the fact it has been flogging Ubuntu-equipped machines since 2007 and we can only assume it makes more margin on such machines since it doesn't have to pay Microsoft its Windows tax.
Apple has been accused of secretly adding a security update to its operating system without telling users, or anyone else. The update released last week included protection against a Trojan that could allow a hacker to take control of your machine.
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
