- Articles
- Authors
- Blogs
- Free Tools
- Links
- Message Boards
- Newsletter
- Security Tests
- Services
- Software
- White Papers
WindowSecurity.com blogs RSS
Welcome to our Network Security blogs. The blogs are updated on a regular basis with the latest news, information and insider gossip within the network security world and security related fields, such as cryptography.
Deb Shinder's Blog - FEATURED RSS
Deb Shinder is MS SECURITY. An Enterprise Security MVP, she has the “inside story” on all topics related to securing Microsoft networks, from the server all the way down to the network-connected smart phone. Her blog will address Microsoft’s security products and technologies including those built into the operating system (access controls and permissions, EFS, BitLocker, etc.), network security technologies (Active Directory, IPsec, DirectAccess, etc.) and separate security products (ISA Server/TMG, IAG, ILM and the Forefront family of client and server security products and services). This blog focuses on how network administrators and network security specialists can create a multi-layered security strategy, develop sound security policies, and build a strong line of defense around the network to prevent both internal and external attack.
George Chetcuti’s Blog RSS
George Chetcuti is a promoter of effective IT governance and IT security best practices. With a personal experience of many years managing complex setups, his contribution to this community is to provide security related info and tips. This blog is aimed at increasing security awareness among IT professionals.
Latest Windows Security blog posts
- Would a .secure top-level domain make the Internet safer?
- Date - May 16th, 2012
- Here’s an interesting idea: a security startup has proposed a new top level domain that would be called .secure, and would require web sites using it to live up to a higher standard of security. The advantage for web users would be that you could visit such sites with confidence, without having to worry about security issues. more...
- Chrome 19 fixes 20 security flaws
- Date - May 16th, 2012
- Google’s Chrome web browser has become popular in many organizations, and it’s known for its sandbox security, but that doesn’t mean it’s invulnerable to security issues. If you have users who use Chrome, be sure their computers all get upgraded to the latest release, v19, which contains fixes for 20 vulnerabilities, 8 of which are of high severity. The new version is available for Windows, Mac, Linux and Chrome Frame. more...
- Adobe changes mind about free security fixes
- Date - May 16th, 2012
- There’s good news for organizations that use PhotoShop, Illustrator and other Creative Suite 5.x products from Adobe. The company had said that customers would have to upgrade to CS6 in order to get security fixes, but a post to their blog indicates that’s no longer the case; the company is working on patches for vulnerabilities in the CS5 suite. more...
- Hosting providers losing half of capacity to bots
- Date - May 16th, 2012
- A recent report from Incapsula indicates that more than half of the traffic to the average web site may be generated by bots – automated software constructs, rather than humans sitting at a computer. Some of the bots are malicious and some aren’t, but all result in increased overhead and wastage of bandwidth and power. And this is just for those “average” sites that get 50,000 to 100,000 hits per month. more...
- Writing Malware Reports
- Date - May 16th, 2012
- Were you ever asked to write a malware report? What are the elements that should be present in a malware report? The report should follow a malware analysis and in order to help incident response and facilitate further investigations, the report should at least include a general overview or executive summary, how the malware interacts with the environment, detailed specs and any forensics footprints, and a final section with your recommendations. more...
- IT security professional failing on risk strategies
- Date - May 15th, 2012
- According to a survey done by HP at a recent InfoSecurity conference in London, European IT security pros have “significant” gaps in enterprise risk strategy, with only about 14 percent being very confident that their current solutions are giving them a complete and concise picture of their security and risk state. 44 percent said they can’t uncover and report vulnerabilities in custom applications, and only 60 percent are doing real-time monitoring of security events. more...
- APT attackers using booby-trapped RTF docs
- Date - May 15th, 2012
- The Advanced Persistent Threat (APT) is a type of attack that has been in the news a lot lately, but exactly what techniques do APT attackers use to infect systems? Trend Micro researchers report that one of the most common is the use of “booby-trapped” rich text (RTF) documents created with Microsoft Office software (Word). more...
- Is the Cloud the solution to SMB security woes?
- Date - May 15th, 2012
- Microsoft thinks so – and they have the statistics to back up that opinion. Once upon a time, there was a lot of distrust of cloud computing, especially among small businesses, but that seems to be changing. more...
- Antivirus update gone seriously wrong
- Date - May 15th, 2012
- In a demonstration of how serious it can be when antivirus software goes awry, today an update from Avira for its antivirus software is wreaking havoc across the globe as it blocks some of Windows’ most important processes, such as explorer.exe, rundll32.exe and dllhost.exe. The program is falsely detecting these as viruses and killing them, which effectively cripples the OS. But that’s not all – other major programs (Opera, Google Talk, even Microsoft Office) are being blocked. more...
- Free BlackHat Webinar: Making Life Difficult for Malware
- Date - May 15th, 2012
- It’s a good bet that malware will be with us always – but that doesn’t mean we’re powerless to do anything about it. Just as protecting your home from burglars is all about making it more difficult for them to get in and do their dirty deeds, malware protection is about making it harder for malicious code to infiltrate our systems. Malware is like human bad guys in that it prefers to attack the easy targets. more...
Archived Blogs
Featured Links*
Become a WindowSecurity.com member!
Discuss your security issues with thousands of other network security experts. Click here to join!