WE RECOMMEND THE FOLLOWING PLANS

  • Advertise Here
  • Advertise Here
  • Advertise Here
  • Advertise Here

Adobe Issues Flash Update Out of Abundance of Caution

Posted by eXactBot Hosting | News | Sunday 30 November 2014 4:04 pm

Typically, an out-of-band patch update is a rare event that is reserved for severe and risky zero-day flaws, but that’s not quite what is going on with the new Adobe update.

The CVE-2014-8439 vulnerability was actually first mitigated during Adobe’s regular patch Tuesday update on Oct. 14. Adobe spokesperson, Heather Edell told eWEEK that that October update included a proactive mitigation, which typically is not assigned a common vulnerabilities and exploits, or CVE, number. “We were later notified that there was an attack in the wild, and we identified that the proactive mitigation was blocking this attack,” Edell said. “Since there was a specific attack in this area, we added further mitigations in today’s release.”

Read the full story at eWEEK:
Adobe Issues Out-of-Band Patch for Flash Player

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Black Friday Security? Don’t Panic

Posted by eXactBot Hosting | News | Saturday 29 November 2014 3:53 pm

The bottom line is that risk is present and always has been in retail. In the pre-digital processing age, carbon receipts were a risk that could have enabled fraud. Even just ordering a pizza on the phone and giving your credit card number could be a path to fraud.

Vigilance has always been key to consumer safety with credit cards, and vigilance remains the watchword for Black Friday 2014 as well.

Simply stated: Don’t panic.

Read the full story at eWEEK:
Don’t Panic Over Black Friday Security Despite Rash of Retail Breaches

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Why the US Postal Service Waited before Remediating its Breach

Posted by eXactBot Hosting | News | Friday 28 November 2014 3:46 pm

The United States Postal Service (USPS) publicly admitted that it was the victim of a cyber-intrusion on Nov. 10. As it turns out, the USPS had been aware of a potential intrusion since Sept. 11, and it took several months of planning and strategic actions until the public and USPS employees were informed.

Full details on the USPS breach were provided by Randy Miskanic, vice president of secure digital solutions at the USPS, in testimony before the Subcommittee on Federal Workforce, U.S. Postal Service the Census at the U.S. House of Representatives. The testimony, which took place on Nov. 19, is posted online and provides 11 pages of details on the actions and timeline of the USPS breach incident.

The testimony gives insight into how much time and process is involved in detecting and responding to a breach, which is far from a rapid process.

Read the full story at eWEEK:
Post Office Takes Unusual Approach to Handling Breach

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

HP Racing Toward Company Split

Posted by eXactBot Hosting | News | Friday 28 November 2014 3:46 pm

On October 6, HP announced its intention to split and become two separate companies. HP Enterprise will focus on enterprise services and technologies while HP Inc will handle the consumer business and printing.

Whitman noted that over the last month, she has met with many customers, partners and employees and the feedback was overwhelmingly positive.

“They are excited about the potential of these two laser-focused companies that will each be leaders in their respective markets and what that can mean for their businesses and their careers,” Whitman said. “It’s still early in the process but we have a comprehensive plan to ensure that we execute a successful separation with minimal disruption to the business.”

Read the full story at Datamation:
HP’s Future is about Cloud and 3D Printers

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Docker 1.3.2 Fixes Priviledge Escalation Vulnerability

Posted by eXactBot Hosting | News | Thursday 27 November 2014 3:30 pm

On Nov. 24, the Docker open-source project released version 1.3.2, fixing a pair of critical security vulnerabilities. One of the issues, identified as CVE-2014-6407, is a host privilege escalation flaw.

“The Docker engine, up to and including version 1.3.1, was vulnerable to extracting files to arbitrary paths on the host during ‘docker pull’ and ‘docker load’ operations,” Docker warned in its security advisory. “This vulnerability could be leveraged to perform remote code execution and privilege escalation.”

The second issue patched in Docker 1.3.2, identified as CVE-2014-6408, is vulnerability related to how security options were connected to images.

Read the full story at eWEEK:
Docker Update Fixes Pair of Critical Security Flaws

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Brocade 2014 Revenue Hits $2.21 Billion

Posted by eXactBot Hosting | News | Wednesday 26 November 2014 3:27 pm

For the fourth quarter, Brocade reported revenue of $564 million for a one percent year-over-year gain. For the full year, revenue was reported at $2.21 billion for a one percent year-over-year decline. Brocade CTO Dan Fairfax said during his company’s earnings call with analysts, that the revenue decline was due to the divestiture and repositioning of certain product lines that Brocade announced a year ago, as well as the challenging federal spending environment in the first half of the year.

Net income for the fourth quarter was reported at $83 million, up from $64 million in the fourth quarter of 2013. For the full year, net income was reported at $237.97 million up from $208.62 million in 2013.

“Fiscal 2014 was the most profitable year in the company’s history, reflecting our continued focus on efficiency, and delivering on the leverage in our business model,” Brocade CEO Lloyd Carney said.

Read the full story at Enterprise Networking Planet:
Brocade Declares that 2014 was its Most Profitable Year Yet

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Google Santa Brings Open-Source Security

Posted by eXactBot Hosting | News | Tuesday 25 November 2014 3:23 pm

Over the past few weeks Google has released multiple security tools and open source efforts to help end-users and organizations defend themselves from modern threats.

One of the most recent tools released by Google is called Santa (yeah, that Santa), which is a Mac OS X security tool.

“Santa is named because it keeps track of binaries that are naughty and nice,” states Google’s Github page on Santa.

Read the full story at eSecurityPlanet:
Google Brings Open Source Security Gifts

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

How Elasticsearch Uses Open-Source Community to Build Analytics Software

Posted by eXactBot Hosting | News | Monday 24 November 2014 3:22 pm

In a video interview with Leslie Hawthorne, community manager at Elasticsearch, Hawthorne explains how the ELK stack came to be and the role the open-source community has played in its development and popularity.

Hawthorne is no stranger to the open-source community. Between 2007 and 2010, Hawthorne was an open-source program manager at Google, where she helped lead community efforts for Google’s Summer of Code program. She has also worked as a community manager at Enterprise Linux vendor Red Hat and has been at Elasticsearch since August of 2013.

The original motivation to build Elasticsearch and its data query capabilities, according to Hawthorne, came from the wife of Elasticsearch creator Shay Banon, who needed a technology to be able to search through her recipes.

Read the full story at Enterprise Apps Today:
Elasticsearch Uses Power of Community for Open Source Analytics [VIDEO]

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

EFF Backs New Effort for Free SSL CA

Posted by eXactBot Hosting | News | Sunday 23 November 2014 2:58 pm

A group of organizations—including Mozilla, Cisco, Akamai, Electronic Frontier Foundation, IdenTrust and researchers at the University of Michigan—joined with the Internet Security Research Group (ISRG) to announce the Let’s Encrypt initiative.

The goal behind Let’s Encrypt is to make it easier to get a proper Secure Sockets Layer/Transfer Layer Security (SSL/TLS) certificate that can be deployed to secure a Web server and its users. Let’s Encrypt is aiming to deploy a free certificate authority at letsencrypt.org that will provide the certificate, as well as be a source to verify the certificate’s integrity and authenticity. While the Let’s Encrypt effort is being announced today, the free Certificate Authority service will not be generally available until early in 2015.

Read the full story at eWEEK:
Let’s Encrypt Effort Aims to Improve Internet Security

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

EFF Backs New Effort for Free SSL CA

Posted by eXactBot Hosting | News | Sunday 23 November 2014 2:58 pm

A group of organizations—including Mozilla, Cisco, Akamai, Electronic Frontier Foundation, IdenTrust and researchers at the University of Michigan—joined with the Internet Security Research Group (ISRG) to announce the Let’s Encrypt initiative.

The goal behind Let’s Encrypt is to make it easier to get a proper Secure Sockets Layer/Transfer Layer Security (SSL/TLS) certificate that can be deployed to secure a Web server and its users. Let’s Encrypt is aiming to deploy a free certificate authority at letsencrypt.org that will provide the certificate, as well as be a source to verify the certificate’s integrity and authenticity. While the Let’s Encrypt effort is being announced today, the free Certificate Authority service will not be generally available until early in 2015.

Read the full story at eWEEK:
Let’s Encrypt Effort Aims to Improve Internet Security

Sean Michael Kerner is a senior editor at InternetNews.com. Follow him on Twitter @TechJournalist.

Next Page »