The best time to eliminate software bugs is early on in the application development lifecycle. Doing so helps ensure better code is released in the first place; it will be less vulnerable to attack and more secure. But, how do you get closer to achieving the ultimate goal of bug free code that delivers to…
DetailsFederal law enforcement notified more than 3,000 U.S. companies in 2013 that their computer systems and networks had been breached, according to a Washington Post report. Lisa Monaco, deputy national security adviser for homeland security and counterterrorism, first disclosed how many times the government had tipped off the private sector to cyber-attacks at a White…
DetailsImagine for a moment a villain (or villains) trapped powerless for years. After being reanimated by an unsuspecting populace, the newly-released evil goes forth to wreak havoc until it’s only once again conquered through tremendous effort and sacrifice. Sound familiar? It should. What’s described above is a routinely-occurring fictional trope (often referred to as “Sealed Evil…
DetailsFirewall maker Palo Alto Networks Inc. said it will buy Israeli security firm Cyvera for about $200 million in cash and stock, the company said in a release. After the announcement Palo Alto shares fell almost 5 percent at noon trading to $72.84. The deal also appears to be pushing down shares of Palo Alto…
DetailsIt should come as no surprise to anyone that Symantec’s recently fired CEO Steve Bennett’s strategy of cut costs and improve operations has failed miserably. As I wrote when Symantec’s board replaced then CEO Enrique Salem with Bennett, in the IT security industry innovation far outweighs the usual business practices of accounting, inventory control, and workforce “optimization.” …
DetailsA former Microsoft employee has been arrested for allegedly stealing trade secrets related to Windows 8, according to the Seattle Post-Intelligencer. Alex Kibkalo, a former senior architect at Microsoft, is accused of stealing Windows-related trade secrets while working for the company, according to a complaint filed on March 17 in the U.S. District Court for…
DetailsConsidering that many vendors and online services are rushing to encrypt their user communications and other network traffic in the wake of the Edward Snowden revelations, it’s surprising that Twitter may have shelved its own encryption project. Anonymous sources told The Verge that Twitter has stopped a project to encrypt direct messages sent between users.…
DetailsWhile Ukraine gears up for a military offensive in response to the referendum in Crimea voting to secede and join Russia, attackers on both sides of the border have already begun lobbing attacks in the cyber realm. Attackers operating under the name “Cyber Berkut” launched a series of distributed denial-of-service attacks against a number of…
DetailsAttackers don’t need special tools or malware to launch distributed denial-of-service attacks. A recent DDoS attack that brought down a site involved 162,000 WordPress sites and a documented feature. A popular WordPress site was hit by a large HTTP-based (Layer 7) distributed flood attack, sending hundreds of requests per second, said Daniel Cid, CTO of…
DetailsThe Vietnamese national who sold criminals access to the Experian-owned database containing information on 200 million US Consumers pleaded guilty to running an identity theft service, according to a report by security writer Brian Krebs. Vietnamese national Hieu Minh Ngo admitted at a March 3 federal court hearing to letting criminals search the Court Ventures database…
Details