Dennis Fisher

Security researchers have found a vulnerability in several versions of the popular PGP Desktop Security plug-in for Outlook that gives a remote attacker the ability to execute code on vulnerable PCs. The problem lies in the softwares message decoding functionality, which can be manipulated by an attacker sending a specially formatted e-mail message, resulting in […]

Microsoft Corp. Thursday released patches for four new serious vulnerabilities in its SQL Server 2000 database software, two of which could give an attacker control over the database. Two of the flaws are buffer overruns, one in a procedure thats used to encrypt SQL Server credentials and the other in a process used for the […]

Microsoft Corp. on Tuesday announced a partnership with a security software vendor that will enable consumers to link some Visa and MasterCard accounts to their .Net Passports. Consumers shopping online with cards issued by banks that support the Verified by Visa or MasterCard Secure Payment Application programs can log on using their Passport accounts via […]

There is a buffer overrun vulnerability in the iPlanet Web server that gives a remote attacker the ability to run arbitrary code on vulnerable machines. The new vulnerability comes less than a month after the discovery of a major flaw in the Apache Web server, the most popular server on the Internet. The iPlanet flaw […]

The long-running dispute over when to release vulnerability information escalated last month into a bitter turf war among several security companies, all of which claimed to have their customers best interests at heart. And while it might have started by coincidence, this latest dispute illustrates the need for a formal, documented method for reporting security […]

After more than a year of development and untold confusion over its intentions, Hacktivismo later this week will finally unveil a new application designed to deliver censored content over the Internet. The application, once called Peekabooty, is now known as Camera/Shy and is a browser-based steganography program that can hide data inside GIF images on […]

Although attackers are becoming more persistent and malicious by the day, the defenses that security administrators are putting up around their networks appear to be working to reduce the number of intrusions, a new survey finds. While the total number of attacks over the first six months of this year was up 28 percent from […]

Nokia Corp. on Wednesday will introduce a new clustering technology for its firewall and VPN solutions that will preserve all user sessions if one of its security devices fails. The new technology is part of the companys alliance with Check Point Software Technologies Inc. and will eventually extend to Nokias other security appliances. Known as […]

IBM last week announced an improved version of its wireless security monitoring tool, adding self-sensor and self-diagnosis capabilities. Known as Distributed Wireless Security Auditor, the software runs on Linux-based desktops and laptops and as a thin client on personal digital assistants and other wireless devices. The software can locate rogue and misconfigured WLAN (wireless LAN) […]

Netegrity Inc. on Monday said it will post a loss of at least $9 million when it reports second-quarter earnings later this month. The company blamed sluggish technology spending for the shortfall. Netegritys stock took a hard hit as a result of the news, falling more than 56 percent to $2.71 by 2 p.m. EDT. […]