Growing fears of identity theft and e-mail phishing scams, exacerbated by the recent data leaks at ChoicePoint and Bank of America, are pushing companies to adopt new IT security tools in a bid to bolster consumer confidence in online transactions.
Users surprised that even "PIN" messages can be logged
As expected, Microsoft Wednesday released an out-of-cycle security bulletin and patch designed to fix a critical hole in the Internet Explorer Web browser that is already being widely exploited by attackers. The company also announced a change to Windows Update for three previously issued fixes from October for some users of Windows XP Service Pack 1.
Microsoft Corp.'s monthly patch release cycle may be making it more predictable for users to deploy software updates, but there appears to be little letup in the number of holes being discovered in the company's software.
Not so much about technology as reducing competition, analyst says
EBay's popularity clearly has a downside. The company has become a prime target for "phishing" attacks by online perpetrators who email unsuspecting users and set up websites in the guise of the popular online auctioneer.
Oracle's ongoing effort to portray itself as a vendor of "unbreakable" technology received a setback last week when a British bug hunter disclosed that he had found 34 security vulnerabilities in its products.
Microsoft on Friday released an out-of-cycle patch to fix three critical and previously disclosed holes in Internet Explorer. The company also released an updated version of a software tool for cleaning out the prolific Mydoom virus and its variants from infected systems.
A new version of the Lovegate worm has begun infecting computers worldwide, including those belonging to several Fortune 500 companies, according to a statement from antivirus firm McAfee
Cisco Systems last week rolled out the first set of products under its Network Admission Control program, which is designed to help companies enforce security policies on network endpoint devices such as PCs and mobile systems.
Microsoft is telling systems administrators to make sure they have installed a previously announced patch to guard against security problems currently affecting websites using the company's Internet Information Services (IIS) 5.0 server.
The growing speed at which malicious hackers can exploit new vulnerabilities is creating a need for intrusion-prevention technologies capable of proactively detecting and blocking attacks even before software fixes become available for them.
Sun Microsystems on Tuesday will announce a consolidated line of identity management products that combines its own technologies with those obtained from its acquisition of Waveset Technologies.
The need for companies to respond in real time to both external and internal network attacks is fueling interest in automated intrusion-response technologies.
Despite the speed with which the alleged perpetrator of the recent Sasser outbreak was nabbed, the security community is still doing too little to bring malicious attackers to justice, several experts said Monday.