Microsoft has decided to issue a special patch outside its usual patchday rhythm for all its Internet Explorer versions to close a severe vulnerability issue. Downloads of Firefox have accordingly skyrocketed.more »
OpenVAS Exploring the OpenVAS vulnerability scannerNov 30, 2009
If you prefer to travel light and free, try OpenVAS, a GPLed fork of the Nessus scanning tool.more »
Security Visualization Tools Tools for visualizing IDS outputAug 31, 2009
Spot intruders with these easy security visualization tools.more »
Intrusion 101 A guided tour to someone else's networkAug 31, 2009
You need to think like an attacker to keep your network safe. We asked security columnist Kurt Seifried for an inside look at the art of intrusion.more »
Security Lessons Denial of service made easyJul 15, 2009
A slow death for the default configuration.more »
Forensics in Freiburg Hacker trainer for law enforcement agentsApr 30, 2009
A former intrusion specialist is training a gathering of European law enforcement agents in how the bad guys work on the Internet. Contributing editor Markus Feilner stops in for a lesson in attack techniques.more »
Security Lessons How hacking got easyOct 31, 2008
When it comes to security, public disclosure of vulnerabilities and working exploit code is now common. We look at why this can be both harmful and helpful to securing your systems.more »
HP's annual Cyber Risk report offers a bleak look at the state of IT.
But what do the big numbers really mean?
.NET Core execution engine is the basis for cross-platform .NET implementations.
The Xnote trojan hides itself on the target system and will launch a variety of attacks on command.
Spammers go low-volume, and 90% of IE browsers are unpatched.
Adobe scrambles to release patches for vulnerable Flash Player.
Four-inch-long computer on a stick lets you boot a full Linux system from any HDMI display device.
New statute would require companies to report break-ins to consumers.
Weird data transfer technique avoids all standard security measures.
FIDO alliance declares the beginning of the end for old-style login authentication.