Help Net Security
Attacking the Build through Cross-Build Injection
A poorly designed software build process can allow an attacker to insert malicious code into the final product or to take control of a build machine. This paper surveys …
CompTIA survey reveals one-fifth of tech budgets now allocated for security
Spending on security technology, training, assessments, and certification now accounts for one-fifth of total technology budgets, according to research from the Computing …
Microsoft releases four critical security bulletins
Another Patch Tuesday and Microsoft comes out with a variety of patches, and this series is quite serious. The critical vulnerabilities are in: Windows, Outlook Express, …
Two FREE CSI 2007 three-day conference passes for HNS readers
We have a couple of complimentary access passes to the upcoming CSI 2007. The conference will be held November 5-7 in suburban Washington, DC. These full three-day conference …
Forensics edition of Password Recovery Bundle
Russian password experts Elcomsoft recently released Password Recovery Bundle – Forensics Edition. This software suite includes the high-end versions of all of …
New WhiteHat website security statistics report
Web application security experts at WhiteHat released a new Website Security Statistics Report – the aggregate vulnerability data they’ve collected when assessing …
Trojans top the charts in September
Trojans have held off worms and bots to top the charts as the most active type of malicious code, according to data compiled by Panda’s ActiveScan online antivirus …
Nigerian email scammers now using puppies
Sophos has reminded computer users of the danger of email scams following an attempted financial fraud which posed as a communication from a Christian couple offering their …
Good S/MIME – Good Mobile Messaging Secure Multipurpose Internet Mail Extensions
Motorola recently introduced Good Mobile Messaging Secure Multipurpose Internet Mail Extensions (Good S/MIME). Designed specifically to meet federal government security policy …
SEC’s Anti-Spam Initiative causes reduction in financial spam
The Securities and Exchange Commission continued its assault on stock market e-mail spam by suspending trading in the securities of three companies that haven’t provided …
New innovative ID verification system using grids
GrIDsure Limited has announced its revolutionary new approach to authentication – designed to tackle many of the problems currently being suffered by consumers buying …
Users demand more fraud protection from banks and card companies
Results of a new survey carried out by GrIDsure show banks and card companies could do more to protect customers from fraud, and might benefit from taking into account how …
Featured news
Resources
Don't miss
- Radio signals could give attackers a foothold inside air-gapped devices
- Product showcase: RoboForm password manager for iOS
- LLMs are automating the human part of romance scams
- Superagent: Open-source framework for guardrails around agentic AI
- Security chaos engineering matters when nothing is broken