Tag: Vulnerabilities

Android 4.3 is Here! What Does it Mean for Security?

Let's take a few minutes to examine the changes Android 4.3 Jelly Bean introduces from a security perspective. While ultimately, the specific nature of the Android 4.3 Jelly Bean firmware image from the device manufacturer...

Subverting BIND's SRTT Algorithm: Derandomizing NS Selection

New vulnerability found in BIND, the most popular DNS server. Exploiting this vulnerability allows to reduce the amount of effort required for an off-path (blind) DNS cache poisoning attack. This blog post describes the vulnerability in a less...

First Steps to Securing Your Software

Application security matters. Most executives get this at a high-level -- they've read enough of those bold headlines, they know they need to do something about “application security” but, unless that executive started out life on a development...

The 3 Most Frustrating Challenges IT Security Teams Face

So you're the guy or gal charged with keeping the network environment safe, eh? And you're looking for help weeding through the torrents of threat information coming your way. What are your biggest sources of frustration when it comes to protecting...

Top 7 Cloud Security Questions to Ask

Cloud is seen as very important for business innovation while at the same time there is increasing executive awareness and scrutiny over how the Cloud will be secured. You can start thinking about Cloud security by asking seven questions.

Is NFC Still a Vulnerable Technology?

NFC or Near Field Communication is a standard that defines the exchange of data between two devices in close proximity. For NFC enabled smartphones, that means consumers can replace their credit and debit cards with an electronic wallet. So how...

Microsoft Patch Tuesday – April 2013

The Microsoft security update for Apr is relatively 'light' in terms of impact. Of the nine bulletins, only two are rated 'Critical' and seven are rated 'Important'. KB2828223 addresses a single use-after-free in RDP while (not surprising) KB2817183...