News (38)

TCP flaw threatens Web servers

Two researchers in Sweden have found multiple flaws in the TCP stack that could lead to massive denial-of-service attacks if exploited. At present there is no workaround and there are no patches available. Read more »

Kaminsky details DNS flaw

Security researcher Dan Kaminsky has offered more details about a fundamental flaw in the Domain Name System and the extent of the vulnerability. Read more »

Flaw in BGP net protocol

Security researchers have warned of an underlying security issue concerning the Border Gateway Protocol, the core internet routing protocol. Read more »

DNS exploits are happening

A fatal flaw with the DNS (Domain Name System) was currently being exploited in internet attacks and more attacks were likely, the security researcher who discovered the flaw said on Thursday in the US Read more »

Researchers: Digital encryption standard flawed

An encryption standard widely used in digitally signing documents and programs has a flaw in it that could allow for the creation of forgeries, sources said on Wednesday. Read more »

Expert: Hold developers liable for flaws

Software developers should be held personally accountable for the security of the code they write, said Howard Schmidt, a former White House cybersecurity adviser. Read more »

Antivirus insecurity at Black Hat confab

Experts are warning that the popularity of antivirus software could turn the defensive measure into a security risk. Read more »

Judge halts Defcon hacking speech

A federal judge on Saturday in the US granted the Massachusetts transit authority's request for an injunction preventing three MIT students from giving a presentation about hacking smartcards used in the Boston subway system. Read more »

Facebook admits it's the in thing for spammers

The popular social-networking site Facebook is coming under increased attack by spammers and phishers, the company's security chief has revealed. Read more »

Black Hat with a Vista twist

Black Hat is not just about breaking and entering this year as Windows Vista and IE7 come under the spotlight. Read more »

More Attack, Conference, Flaw News Results

Features (3)

Bug hunters, software firms in uneasy alliance

Although many software makers promote responsible disclosure, it isn't universally backed by the security community. Critics say it could make security companies lazy in patching. Full disclosure of flaws is better is preferred. Read more »

Is Agile development secure?

Agile development methodologies might be the new fad in software design but how much emphasis is there on secure code? Read more »

ASP.NET security holes

Learn about the recently discovered holes in ASP.NET, and ponder who should be responsible for security. Read more »

Log in


Sign up | Forgot your password?

Blogs

RSS feed

  • Staff Crying, mooning and leaving

    In this week's roundup we see that continuous whining can get results, Linux users get 64-bit Flash and Moonlight previews, the latest in the Yahoo/Microsoft relationship and Senator Conroy ducks and weave in Senate Question Time. Read more »

    -- posted by Staff

  • Brendon Chase Sun eye Web developers with Netbeans 6.5

    Despite the recent employment axe hitting Sun the company has pushed out a new release of its Netbeans open source IDE with an eye to appeal more to Web developers. Read more »

    -- posted by Brendon Chase

  • Renai LeMay BarCamp buzz: Let the hacking continue

    Attending last weekend's BarCamp in Sydney, it was hard to escape the conclusion that a certain "dot-com bust" flavour had seeped into the kool aid previously being drunk by Australia's web 2.0 and early stage start-up sector. Read more »

    -- posted by Renai LeMay

What's on?