Ryan Naraine | December 14, 2006 5:12 PM
German researcher Stefan Esser has quit the PHP Security Response Team in disgust, accusing the open-source group of hiding the slow response time to fixing vulnerabilities and, even worse, refusing to fix known flaws for months.
Ryan Naraine | December 12, 2006 1:12 PM
A "sophisticated computer hacker" has broken into a restricted UCLA campus database containing personal information about current and some former students, faculty, and staff, the university confirmed in an e-mail to those affected.
Ryan Naraine | December 07, 2006 10:12 AM
UPDATE: More than 48 hours after the confirmation of active exploits of a zero-day vulnerability in Microsoft Word, anti-virus protection remains largely nonexistent -- even through Microsoft's own Windows Live OneCare security product.
Ryan Naraine | December 04, 2006 12:12 PM
The OnSecurity podcast this week is an interview I did with hackmeister Dave Aitel of @stake/Immunity/DailyDave fame. We talk about Halvar Flake's claim that Windows Vista is the death knell for client-side vulnerabilities; new penetration testing tools and techniques; his unique take on the vulnerability disclosure debate; and Silica,
Ryan Naraine | December 04, 2006 11:12 AM
Links du jour: An assortment of security stories floating around blogland that you should be reading...