Latest Product Reviews

BigFix Security Configuration and Vulnerability Management

February 01, 2010  |  BigFix Security Configuration and Vulnerability Management
Security Configuration and Vulnerability Management from BixFix goes beyond standard vulnerability management.
 

Novell ZENworks Patch Management

February 01, 2010  |  Novell ZENworks Patch Management
Novell ZENworks Patch Management is a solution that helps to analyze endpoints and deploy patches across multiple platforms in an enterprise.
 

Latest News

China's largest hacker training site shuttered

Angela Moscaritolo February 08, 2010

The shutdown of a major Chinese website that offered hacking tools comes during a rocky time for U.S.-China cyber-relations.
 

Mozilla says two Firefox browser plug-ins contain trojan

Dan Kaplan February 08, 2010

Mozilla is advising users who may have downloaded two "experimental" Firefox add-ons that they contain malware.
 

Mass injection web hacks yield to targeted attacks

Angela Moscaritolo February 05, 2010

During the second half of 2009, attackers shifted their strategy away from mass-injection campaigns and instead focused on launching targeted attacks to infect high-profile websites, Websense found in a new report.
 

Microsoft to deliver 13 security patches for 26 bugs

Dan Kaplan February 05, 2010

After a relatively quiet January, administrators next week will have to deal with an unusually large security update from Microsoft, with 26 vulnerabilities in line for fixing.
 

Cybersecurity Enhancement Act passed by U.S. House

Angela Moscaritolo February 04, 2010

The act would authorize up to $396 million over the next four years to fund cybersecurity research and $94 million over that period to provide scholarships.
 

Latest Opinions

Solutions for defending against malware's nasty cousin: crimeware

Courtlend Little, senior product manager, Solutionary February 02, 2010

Preventing crimeware requires a multifaceted approach. Fortunately, the Payment Card Industry Data Security Standard (PCI DSS) offers a viable point of reference.
 

Top five idealistic security recommendations

Lysa Myers, director of research, West Coast Labs January 29, 2010

How applying a new take on the five stages of grief can help to manage information security functions.
 

Securing the network fabric versus the perimeter

Gary Kinghorn, senior product marketing manager for security products at 3Com Corproation January 25, 2010

With regards to network security and setting perimeters, what constitutes legitimate network activity?
 

Companies must consider security when choosing a cloud provider

Mushegh Hakhinian, security architect and John Landy, CTO, both of IntraLinks January 13, 2010

There is no denying that cloud computing is here to stay -- the question now is ensuring that organizations choose a trustworthy provider.
 

The death of security assessments?

Steve Dauber, vice president of marketing, RedSeal Systems January 08, 2010

After breaches such as at Heartland Payment Systems, the time may have come for organizations to stop relying on security assessments in favor of potentially more effective risk management tactics.
 

The SC Podcast

ASBPE Awards 2009

SC Magazine wins 7 ASBPE Awards

We received two national ASPBE Golds, two Northeast Region Golds and three Silvers.
 

 Join us on FaceBook!
 

 Follow us on Twitter!

Look what you're missing

We've rounded up some of the information security industry's best and brightest, and now they are personally blogging for YOU about some of today's most pressing security issues. Follow their astute, insightful and sometimes controversial remarks here, as we gear up for SC Magazine Awards 2010 on March 2 in San Francisco.

Fourth Annual IT Security Entrepreneurs' Forum

The Security Innovation Network (SINET) invites you to join us at Stanford University on March 16 and 17 for the Fourth Annual IT Security Entrepreneurs' Forum.


The IT Security Entrepreneurs' Forum (ITSEF) levels the playing field for early stage, emerging companies and raises the awareness of next-generation solutions into the federal government, industry and system integration markets.

SC Magazine Poll

SC News Bytes

Oracle fixes WebLogic bug; 11g flaw exposed

Oracle on Thursday released a fix for a zero-day vulnerability in its WebLogic Node Manager. The publicly released bug can allow an attacker to fully compromise a targeted server on Windows, according to an Oracle blog post. The patch does not appear to be related to researcher David Litchfield's talk this week at the Black Hat conference in Washington, D.C., where he revealed how zero-day vulnerabilities in the Oracle 11g database could be used to bypass security and take complete control of the popular software. — DK
 

Alleged cable modem hacker arrested

A Massachusetts man has been charged with selling hacked cable modems that were reconfigured to allow free, untraceable internet service, according to a news release from the U.S. Department of Justice. Matthew Delorey, 26, of New Bedford, Mass. was arrested on charges of wire fraud and conspiracy and faces a maximum sentence of 20 years in prison for each charge. Delorey sold the hacked modems through his website MASSMODZ.com and also posted instructional videos on YouTube about how to get free internet service from any cable ISP, prosecutors said. — AM
 
more »

From the Blogs


The Data Breach Blog

Hackers accesses Iowa Racing and Gaming Commission database

Hackers, believed to be from China, gained access to an Iowa government database, which contained the personal information of current and former employees of Iowa's casino and racing industries.
 

The News Team Blog

SC Magazine's try at predicting 2010

One of the great unintended consequences of my job, having covered the IT security space for nearly four years, is my great inability to accurately gauge the awareness that mainstream America has for cyber-risks.
 

Perspectives: 20 years of IT security

For SC Magazine's 20th anniversary, we rounded up a number of security veterans to get their perspectives on the past 20 years of security. Click here to view this special anthology.

SC Magazine
2010 edit calendar

SC Magazine's 2010 editorial calendar is now available.

Click here to download the PDF.
 Subscribe to the RSS for this page  [view all our RSS feeds here]
Popular Topics
Analyst Reports & Industry Surveys Breaches & Exposures Browser Flaws Browsers And Security Cybersecurity Cyberwarfare Data Breaches Database Security Email Security Government Hackers Hacking Iphone Lawbreakers & Cybercrime Malware Mobile Endpoint Security Nation State Network Security Non-Microsoft Patches Patch Management Patch Tuesday SC Awards 2010 Vulnerabilities & Flaws Vulnerability Management Website Compromises