unomaha.edu
security rss feeds.
Below are several RSS feeds that concern computer and cybersecurity. We do not provide a comprehensive list of these feeds.
SecurityFocus News
Groups warn travelers to limit laptop data
News: Patches pose significant risk, researchers sayPatches pose significant risk, researchers say
News: U.S. gov't pushes cybersecurity at conU.S. gov't pushes cybersecurity at con
>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your
Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
Web developers, fix thy Flash
Brief: Proposed cybersecurity bill to pressure DHSProposed cybersecurity bill to pressure DHS
US-CERT Cyber Security Alerts and Tips
Benefits and Risks of Free Email Services
ST05-008: How Anonymous Are You?How Anonymous Are You?
SA08-100A: Adobe Flash updates for Multiple VulnerabilitiesAdobe Flash updates for Multiple Vulnerabilities
SA08-099A: Microsoft Updates for Multiple VulnerabilitiesMicrosoft Updates for Multiple Vulnerabilities
SA08-094A: Apple QuickTime Updates for Multiple VulnerabilitiesApple QuickTime Updates for Multiple Vulnerabilities
Security News items, Blog posts on ZDNet
INSERT, the Information Security Research Team, has sucessfully created a proof of concept exploiting the "trust hierarchy" that exists between mail service providers. Taking advantage of the way Gmail forwards messages, the team was able to send 4000 messages in a short period of time from a single account...
News to know: Office 2007 SP1; Microsoft security; KVM vs. Xen; AMDNotable headlines: Mary Jo Foley: Mark your calendars: Microsoft to push Office 2007 SP1 on June 16 EIC podcast: SAP; JavaOne; AMD, Microhoo Larry Dignan: Microsoft previews three critical bulletins; two for Office Mary Jo Foley: Microsoft shares...
Microsoft shares more IE8 security detailsWhen Microsoft officials released a first test build of Internet Explorer (IE) 8 back in March, they said they were intentionally refraining from talking specifics about new security features and functionality that would be part of the next browser release. In the past few weeks, however, Microsoft...
Microsoft previews three critical bulletins; two for OfficeMicrosoft on Thursday previewed three critical bulletins for Microsoft Office and Windows and a moderate denial of service vulnerability for the company's security software. According to Microsoft's advance notification, the software giant will address the following in its Patch Tuesday update May 13: A...
Brewster Kahle offers a cookbook for fighting security lettersJust talked to Brewster Kahle at the Internet Archive about their successful settlement with the FBI of a lawsuit over a National Security Letter. The FBI had demanded personal information on a user; the Archive replied with a lawsuit challenging the propriety of the NSL. As part of the settlement,...
InfoWorld RSS Feed
Security researchers have developed a new type of malicious rootkit software that hides itself in an obscure part of a computer's microprocessor, hidden from current antivirus products.
Microsoft to appeal $1.3 billion EU fineMicrosoft is appealing the $1.3 billion (€899 million) fine imposed on it by the European Union for failing to honor a 2004 antitrust agreement, the company said Friday.
Vista as insecure as Windows 2000Good news for users of Windows Vista. According to figures compiled by PC Tools, the OS has experienced only slightly more vulnerabilities than Windows 2000, which appeared eight years ago when malware was far less common.
Four Microsoft security patches due next weekMicrosoft plans to fix critical bugs in its Word, Publisher, and Jet database software next week.
Judge slaps TorrentSpy with $111 million damagesA U.S. judge has ruled on a nearly $111 million copyright-infringement decision against TorrentSpy.com, the BitTorrent peer-to-peer search site.
Network World on Security
A group of U.S. Marines hunker down beside a building, enemy fire coming at them from somewhere up ahead. One soldier reaches into his pack and pulls out a few robots that look like large bugs. The bots fly down the street, sending back images that show where the enemy troops are hiding, how many there are and what weapons they're using.
Facebook, states agree to boost efforts to protect childrenSocial networking site Facebook Thursday announced that it is boosting its privacy protections as part of an ongoing effort to work with 49 state attorneys general to protect children online.
FBI worried as DoD sold counterfeit networking gearThe U.S. Federal Bureau of Investigation is taking the issue of counterfeit Cisco equipment very seriously, according to a leaked FBI presentation that underscores problems in the Cisco supply chain.
On the surface, security questions surrounding virtual servers don't seem much different than those for the physical machines on which they run. In fact, starting a virtual security audit by keeping in mind what you've already learned in the physical world is an excellent approach. Security analysts say the same practices, principles and basic common sense apply for a group of virtual servers as for any physical server farm. But, IT managers also need to factor in some additional considerations, due to the unique characteristics of the virtual world.
BLACK HAT - Hackers find a new place to hide rootkitsSecurity researchers have developed a new type of malicious rootkit software that hides itself in an obscure part of a computer's microprocessor, hidden from current antivirus products.
Microsoft Security Bulletins
Bulletin Severity Rating:Important - This important security update resolves a privately reported vulnerability in the Windows kernel. A local attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts.
MS08-024 - Critical: Cumulative Security Update for Internet Explorer (947864)Bulletin Severity Rating:Critical - This critical security update resolves one privately reported vulnerability. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS08-023 - Critical: Security Update of ActiveX Kill Bits (948881)Bulletin Severity Rating:Critical - This critical security update resolves one privately reported vulnerability for a Microsoft product. This update also includes a kill bit for the Yahoo! Music Jukebox product. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS08-022 – Critical: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)Bulletin Severity Rating:Critical - This critical security update resolves a privately reported vulnerability in the VBScript and JScript scripting engines in Windows. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
MS08-021 – Critical: Vulnerability in GDI Could Allow Remote Code Execution (948590)Bulletin Severity Rating:Critical - This critical security update resolves two privately reported vulnerabilities in GDI. Exploitation of either of these vulnerabilities could allow remote code execution if a user opens a specially crafted EMF or WMF image file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
