Archive for 'Blind spots' Category
Attackers now targeting small business?
At the Visa Security Summit last week there was a panel discussion on “Small Business: The New Target of Data Thieves.”
We do a lot of work helping protect small and mid-sized business (SMBs), and it’s great to see these organizations get attention.
An article over at at Dark Reading covered the Visa discussion well: Small [...]
Major new flaw in Adobe Flash Player – Windows, Linux and Mac
A couple days ago Adobe admitted to three separate vulnerabilities in their Flash player plugin for web browsers. The vulnerabilities affect Windows, Mac and Linux and allow arbitrary code execution, cross-site request forgery (CSRF), and logging of keystrokes (!).
The official announcement from Adobe
CVE numbers: CVE-2007-3456 , CVE-2007-3457 and CVE-2007-2022
Now, [...]
Read the rest of this entry...Reducing spreadsheet errors by suggestion?
Number-oriented people love their spreadsheets. Every once in a while I run into someone who has created a prized Excel document encrusted with VBA macros, filters and formulas that make String Theory look simple. Usually these monsters started life as a quick-and-dirty “what if” then grew over [...]
Read the rest of this entry...Attacks on Virtual Machines
More reading on the security of virtual machines like VMware: a researcher at Symantec has released a great little paper Attacks on Virtual Machine Emulators (hat tip to Computer Defense for point it out).
The paper covers a few of the recent VM-specific malware like the SubVirt rootkit (PDF) but mostly concentrates on methods of detecting [...]
Shocker: Internet files are searchable!
Last week Google released a code search engine that makes it easier to search through programming code that has been made publicly available on web and FTP sites. It’s nothing new… other code-specific search engines like koders.com have been around for a while and it’s always been possible to use Google and other search engines [...]
Read the rest of this entry...