Brian Prince

Businesses are afraid of cyber-crime, and rightly so, as a survey of nearly 1,400 IT security professionals by Finjan found 25 percent admitted experiencing a security breach at their company. Another 42 percent could not rule out the possibility that their data had been breached. The statistics, contained in Finjan’s “Web Security Survey 2008” report, […]

IBM is making a play in the hardware encryption market with a new tool for securing server hard drives. The IBM System x ServeRAID-MR10is Vault adapter tool is a RAID controller with a built-in crypto-engine that encrypts data written to hard drives. IBM is aiming the product specifically at small and midsize businesses, which typically […]

Google has updated its Chrome browser to address some of the security vulnerabilities uncovered in the week-old beta. The update patches a buffer overflow vulnerability that exists in the handling of long file names that display in the -SaveAs’ dialog. The update also fixes a second buffer overflow vulnerability in the handling link targets displayed […]

Microsoft released four “critical” security bulletins for September’s Patch Tuesday, including a massive update for Microsoft Windows GDI+ that affects multiple products. All four bulletins address vulnerabilities that permit hackers to remotely execute code. Of the four, the GDI+ bulletin is the largest. GDI+ is a graphics device interface that provides two-dimensional vector graphics, imaging […]

The nonprofit Center for Internet Security plans to release a set of IT security metrics soon based on input from more than 80 security experts from government, business and academia. The CIS metrics are meant to help organizations determine their security posture using a consensus-based measuring stick. In general, the initial set of outcome and […]

Trend Micro has bundled together some of its messaging security products to bolster enterprise defenses using its cloud-based Smart Protection Network. Dubbed Trend Micro Communication & Collaboration Security, the suite consists of four products-Trend Micro IM Security for Microsoft Office Communications Server, Trend Micro ScanMail for Microsoft Exchange, Trend Micro PortalProtect for Microsoft SharePoint and […]

Researchers at RSA, EMC’s security division, believe the Rock Phish gang has upgraded its infrastructure to improve its ability to launch phishing attacks. According to the RSA FraudAction Research Lab, the Rock Phish group has moved its operations from its traditional botnet to the fast-flux infrastructure of the infamous Asprox botnet. For end users, this […]

Microsoft has announced plans to release four security bulletins next week for its September Patch Tuesday to address vulnerabilities across a number of products, including Windows Media Player and Microsoft Office. In an advisory released Sept. 4, Microsoft officials stated they would release fixes for the flaws Sept. 9. All four bulletins are rated “critical,” […]

A security researcher has discovered a flaw in the beta version of Google’s Chrome browser that can lead to Windows users downloading malicious Java files. According to the ZDNET security blog, Israeli security researcher Aviv Raff has released proof-of-concept code that targets a vulnerability in an old version of WebKit being used by the Google […]

Secure Computing has signed a definitive agreement to acquire Securify in a bid to lead the charge for the next generation of network firewalls. The deal for Securify comes with a roughly $15 million price tag, plus an earn-out of up to $5 million. Securify technology focuses on monitoring and controlling user access to applications. […]