Dennis Fisher

New security event management products are on tap from a variety of developers this week that some say could eliminate the need for host-based IDS by not only detecting intrusions but by also responding to them. The releases from e-Security Inc., GuardedNet Inc. and Securify Inc. are among the first to go beyond the current […]

As part of a continuing effort to find a way to handle sensitive security vulnerabilities, government security officials have been discussing the possibility of creating a central point of contact within the government for reporting such information. Under the scenario officials have discussed, researchers who find a new vulnerability would be encouraged to send their […]

NetContinuum Inc., a Santa Clara, Calif., startup, on Monday will unveil its flagship product, an ASIC-based Web security appliance designed to prevent attackers from ever getting a shot at customers Web servers. The new appliance, known as the NC-1000 Web Security Gateway, sits behind the corporate firewall and acts as a reverse proxy. It terminates […]

President Bush on Thursday called on Congress to pass the stalled bill authorizing the creation of the Department of Homeland Security, saying the measure should be the legislators top priority. “The single most important piece of unfinished business on Capitol Hill is to create a unified Department of Homeland Security that will vastly improve our […]

The SAML 1.0 specification on Wednesday got a big boost when OASIS (Organization for the Advancement of Structured Information Standards) approved the specification as a standard. The approval was something of a formality, considering that many security vendors have already added SAML support to their products. SAML (Security Assertion Markup Language) is one of several […]

In an effort to tap the potential of its various security technologies, eEye Digital Security Inc. next week will unveil its new Enterprise Vulnerability Assessment and Remediation Management solution. The new offering, which will be generally available at the end of November, is essentially a combination of eEyes flagship Retina scanner and its new Remote […]

Security is becoming one of the main drivers behind the adoption of open-source software in the enterprise and government, according to security experts and CIOs who gathered here for Red Hat Inc.s Open Source Security Summit. Much of the early enthusiasm for Linux and other open-source operating systems was sparked by the softwares low cost […]

A New York-based startup on Monday announced that it has a working prototype of a device capable of employing quantum cryptography to encode keys on existing high-speed networks. However, cryptographers say the system likely holds little value for enterprises. MagiQ Technologies Inc. is among the first companies to announce its intention to sell a commercial […]

A denial-of-service vulnerability in one of the most popular cable and DSL routers allows an attacker to crash the router from a remote location. The Linksys Group Inc.s BEFSR41 EtherFast Cable/DSL Router with 4-Port Switch is vulnerable to a remote DoS attack that requires the attacker to do nothing more than access a specific script […]

Microsoft Corp. on Thursday issued patches for several new vulnerabilities in various applications, including a critical flaw in the PPTP implementation in Windows 2000 and XP that could be used to crash remote servers. There are also four new flaws in IIS (Internet Information Services) and a vulnerability in Windows 2000 that enables an intruder […]