Cameron Sturdevant

I’m in Las Vegas for Black Hat but I’m still obsessing over my photo ID. Having an ID let me play my favorite game of chicken…how close can I cut a trip to the airport and make the flight. I got to Oakland International at 3:05 p.m. to make a 4:10 flight. The Southwest security […]

LAS VEGAS—SCAP, the Security Content Automation Protocol now in beta development at the National Security Agency, could streamline the way civilian organizations enable automated vulnerability management and compliance with regulations, including FISMA. Discussed at a full-capacity crowd keynote speech at the Black Hat 2007 briefing given by Tony Sager, chief of the Vulnerability Analysis and […]

I was going to blog my way through a week without my photo ID but I have to admit that I found my driver license at the bottom of a clothes drawer last night while packing to go to Black Hat later today. I was looking forward to the blogs I would get from my […]

Living without a photo ID, especially a driver’s license, is a harrowing experience. I discovered that my driver’s license was gone when I was asked for identification at the Intel office in Santa Clara on Thursday of last week. I had credit cards, an Oakland Public Library card and a swipe card for the eWEEK […]

Stonesoft’s FW-1020 packs effective firewall and VPN technology into a $7,700 1U appliance that can be clustered with up to 15 additional Stonesoft firewalls of varying models to provide scalable, redundant network protection. I tested the FW-1020 at eWEEK Labs and found the device suitable for small and midsize organizations that have a small number […]

As reported by Lisa Vaas at eWEEK, “Fox News’ Web site over the weekend exposed a password that granted inappropriate access to images from its news stories and to a headline feed from its content syndication partner and eWEEK publisher, Ziff Davis Media.” Ziff Davis Media is also the publisher of Permit/Deny. Hacker Webzine is […]

Youve followed all the security best practices. Youve patched every server. Youve hardened every application. Youve trained your users in the fine art of security consciousness. Then your companys data is somehow exposed. Now what? In a perfect world, a vulnerability assessment would be run, then penetration tests and then remediation. Further, each of these […]

HP announced today announced it’s acquisition of Opsware, gaining a number of products that appear to have considerable overlap with existing HP offerings. Enterprise Management Institute analyst Andi Mann suggested to me that Opsware offers a server and network management component that compliments HP’s network management prowess. We’ll get a better picture of product and […]

MX Logic has reported a 25 percent increase in spam volume, in particular spam that uses text in PDF attachments. According to Sam Masiello, director of threat research for MX Logic, tainted PDF documents are the evolutionary next step for image-based spam. The reason: The converters needed to open the PDF document in order to […]

“Consumers need to know that they may be directly implicated in the criminal activities being perpetrated by botnets — if not by having their own identity or personal information stolen, then by being part of a network of zombie PCs carrying out large scale criminal activities like massive spam distribution and phishing e-mail schemes,’ said […]