Brian Prince

Managed file transfer vendor Ipswitch has acquired MessageWay Solutions to combine the companies’ suite of managed file transfer (MFT) products. The acquisition, made for an undisclosed sum, is aimed at providing Ipswitch with enhanced management, visibility and enforcement capabilities via MessageWay’s MFT business. With the addition of MessageWay, Ipswitch now provides integration of advanced analytics, […]

The issue of full disclosure has come up in two prominent examples in the past week. The first was the discovery that AT&T’s Website had been exploited to swipe e-mail addresses of Apple iPad owners. The second was the disclosure of a vulnerability affecting Windows XP and Windows Server 2003 by a Google engineer. History […]

AT&T sent a note to customers affected by the data leak that exposed 114,000 e-mail addresses belonging to Apple iPad 3G owners apologizing for the incident and condemning the actions of Goatse Security. In the note, AT&T Senior Vice President for Public Policy Dorothy Attwood blamed the situation on “unauthorized computers hackers” exploiting “a function […]

The Anti-Malware Testing Standards Organization recently adopted new guidelines to help improve the testing of security products. Formed in 2008, AMTSO works to improve the reliability and accuracy of malware testing methods. At a meeting May 25, the group adopted two papers-“Whole Product Protection Testing Guidelines” and “Performance Testing Guidelines.” The first of the papers […]

How the Federal Government Could Change Your Internet Privacy by Brian Prince Congress Looks at Privacy In May, Reps. Rick Boucher, D-W.Va., and Cliff Stearns, R-Fla., presented draft legislation on user privacy. Some critics say the law goes too far, while others say it adds little in the way of new user protections and merely […]

The FBI has reached out to Gawker Media to preserve potential evidence related to the investigation of a leak of e-mail addresses belonging Apple iPad 3G owners. According to Gawker, which broke the news of the AT&T data leak that exposed 114,000 iPad owners’ e-mail addresses, the FBI contacted it and issued a formal “preservation […]

Researchers have uncovered a new wave of mass attacks targeting Websites. According to Websense, the campaign is infecting visitors to those sites using the Adobe Flash Player zero-day patched earlier this week. A video of how the attack is taking place can be viewed here on YouTube. “Until today the latest Adobe 0-day vulnerability (CVE-2010-1297) […]

The group that gained access to 114,000 e-mail addresses belonging to Apple iPad 3G owners has taken to the blogosphere to defend itself, while the FBI has announced that it is investigating the incident. Goatse Security revealed June 9 that it had obtained the e-mail addresses using a script that exploited a feature on the […]

In a massive update to Adobe Flash Player, Adobe Systems closed the door on more than two dozen vulnerabilities, including a zero-day exposed last week. On June 4, Adobe warned users of Adobe Flash 10.0.45.2 and earlier versions of a critical vulnerability spanning Windows, Macs, Linux and Solaris. The authplay.dll component that ships with Adobe […]

Microsoft issued a security advisory June 10 after a Google engineer published attack code targeting a Windows zero-day vulnerability on the Full Disclosure message list. The vulnerability, uncovered by Google engineer Tavis Ormandy, affects “the Windows Help and Support Center function that is delivered with Windows XP and Windows Server 2003,” Microsoft said. Other editions […]