Security and the Net

News and opinions about security, the internet and more

Entries for the ‘Short newslinks’ Category

Black Hat Europe update: Trust issues?

The “Kaminsky 2.0” at Black Hat today turned out to be ┬áthe talk from Daniel Mende and Enno Rey, dealing with vulnerabilities in the BGP and MPLS protocols. From what I can tell, there was no real news; most of the information they presented has been available for a while. The fact that BGP has […]

Leave a Comment

Adobe finally patches flaw in Reader, needs to update blog platform

Almost a month after admitting there was an easily exploitable buffer overflow in its Reader product, Adobe has finally managed to produce patches for Adobe Reader versions 7 and 8.

Leave a Comment

Microsoft’s Silverlight used on YouTube

If the rumors about IBM buying Sun weren’t enough, this news should prove once and for we live in interesting times: Silverlight has made its way to YouTube. It’s used on the CBS March Madness channel, and the feeds themselves are not served by Google, but it is an interesting development nonetheless.

Leave a Comment

MS09-08: When is a patch not a patch?

… when it doesn’t patch! That was an easy question, but Microsoft has a different opinion on this. In this blog post at 360 Security, Tyler Reguly explains why he thinks MS09-08 is not really a patch; it doesn’t actually fix the vulnerability that it is supposed to fix.

Leave a Comment

Google adds Apps Status Dashboard

Following the large Gmail outage earlier this week, Google has launched a status page for their most important hosted services called Google Apps Status Dashboard.

Leave a Comment

Did the EU just admit Skype calls can be intercepted?

Eurojost, the European Union’s Judicial Cooperaion Unit, has just issued a press release that was meant to clarify reports about the EU looking into methods to intercept Skype calls. Instead, it has only increased speculation about alleged backdoors built into the Skype software:

Leave a Comment

Wikileaks leaks identities of 58 donors

The popular leaks website wikileaks.org has become the victim of it’s own success: last week, private information about Wikileaks was posted on wikileaks.org!

Leave a Comment

Patch Tuesday: does Microsoft need a new severity rating?

I’ve never quite liked Microsoft’s severity rating system for security vulnerabilities; todays pre-announcement for this months patch tuesday provides a very good example of the problem I have with it. Microsoft provides four severity levels for security issues, and the different ratings appear to make sense at first sight:

Comments (1)

Gmail also hit by incorrect malware list

After receiving some reports of mail incorrectly flagged as spam or phishing attempts, Google has confirmed that the problem with their malware list also caused mail to Gmail accounts to be marked as spam:

Leave a Comment

Enhancing Blackberry security

While I don’t like to read press releases, let alone quote them, this one managed to catch my attention. It introduces a product called “Mobile PKI” for Blackberry’s, that promises to enhance the security of communications between Blackberry devices and your company’s servers:

Comments (1)