Archive for 'Blind spots' Category
Attackers now targeting small business?
At the Visa Security Summit last week there was a panel discussion on “Small Business: The New Target of Data Thieves.” We do a lot of work helping protect small and mid-sized business (SMBs), and it’s great to see these organizations get attention. An article over at at Dark Reading covered the Visa discussion well: [...]
Read the rest of this entry...Major new flaw in Adobe Flash Player – Windows, Linux and Mac
A couple days ago Adobe admitted to three separate vulnerabilities in their Flash player plugin for web browsers. The vulnerabilities affect Windows, Mac and Linux and allow arbitrary code execution, cross-site request forgery (CSRF), and logging of keystrokes (!). The official announcement from Adobe CVE numbers: CVE-2007-3456 , CVE-2007-3457 and CVE-2007-2022 Now, normally I avoid [...]
Read the rest of this entry...Reducing spreadsheet errors by suggestion?
Number-oriented people love their spreadsheets. Every once in a while I run into someone who has created a prized Excel document encrusted with VBA macros, filters and formulas that make String Theory look simple. Usually these monsters started life as a quick-and-dirty “what if” then grew over several years like fungus. As I’ve written before, [...]
Read the rest of this entry...Attacks on Virtual Machines
More reading on the security of virtual machines like VMware: a researcher at Symantec has released a great little paper Attacks on Virtual Machine Emulators (hat tip to Computer Defense for point it out). The paper covers a few of the recent VM-specific malware like the SubVirt rootkit (PDF) but mostly concentrates on methods of [...]
Read the rest of this entry...Shocker: Internet files are searchable!
Last week Google released a code search engine that makes it easier to search through programming code that has been made publicly available on web and FTP sites. It’s nothing new… other code-specific search engines like koders.com have been around for a while and it’s always been possible to use Google and other search engines [...]
Read the rest of this entry...