Information Security

Today's Security News Sign up for Security RSS feeds  Featured Video Dan Kaminsky on DNS, Web attacks Noted network security researcher Dan Kaminsky, director of penetration testing at IOActive, shares his research on DNS and Web-based attack techniques. DNS flaw handling leaves Kaminsky pleased ARTICLE - Network security researcher, Dan Kaminsky sheds light on how he discovered the DNS cache poisoning flaw. More on Emerging Information Security Threats Initial virtualization costs could outweigh benefits ARTICLE - It could be costly for companies to sort out the new governance, oversight and manageability issues being introduced by virtualized environments. More on Virtualization Security DNS exploit code released by Metasploit founder ARTICLE - Experts say DNS attacks against unpatched servers are imminent. More on Emerging Information Security Threats Smart Defenses virtual trade show WHAT'S NEW - Information security requires an active stance that anticipates the attacker's next move and stops him in his tracks. The Smart Defenses virtual trade show on Thurs., July 31, ... What's New... Focused on Finance? Missed our Financial Information Security conference? Download the content! 2008 Readers' Choice Awards Smart Defenses: Virtual Seminar 10 Second Site Sign-Up Receive site updates, white papers and more! Smart Defenses: Virtual Seminar 10 Second Site Sign-Up Receive site updates, white papers and more! Win a $200 Amazon Gift Card! Send your suggestions to the editorial teams of SearchSecurity.com and Information Security   SPECIAL SECTION   GET E-MAIL UPDATES Receive Security-related news, tech tips, and more delivered directly to your Inbox. Sign-up by selecting one or more topics and submit your e-mail address below.   Security IT Downloads   Security Wire Perspectives   Security Wire Daily Not a member? We'll activate your FREE membership with your subscription. MEMBER BENEFITS Information Security Quizzes Member Benefits SECURITY TOPICS Network Security Network Architecture, Virtual Private Network (VPN), Intrusion Detection/Analysis, Wireless Security Identity management and access control Identity Management, Authentication, Web Access Control Platform Security OS security, Secure Data Storage, Vulnerability Management, Virtualization Security Application Security Email Security, Web Security, IM Security, Application Firewalls, Database Security, Secure Software Development, Securing Productivity Applications Open Source Security Tools Information Security Threats Viruses, worms and other malware, Spyware, Adware and Trojans, Rootkits, Identity Theft and Data Security Breaches, Web Threats, Email and Messaging Threats, Emerging Information Security Threats... Security Management Market Trends, Predictions & Forecasts, Security News Makers, Audit and Compliance, Information Security Standards, Laws, Investigations and Ethics, Enterprise Risk Management... Information Security Careers, Training and Certifications Information Security Jobs, Information Security Certifications, Information Security Training SECURITY INFO CENTERS SearchSecurity.com Info Centers offer IT professionals in-depth news and technical advice on the hottest topics in the Security industry. (ISC)2 Topical SPONSORED BY: (ISC)2 Best Practices for Preventing Identity Thefts and Breaches SPONSORED BY: Guardium Vulnerability Management Topical SPONSORED BY: Lumension Security PKI and Layered Security SPONSORED BY: Entrust IBM Governance and Risk Management SPONSORED BY: IBM Lumension Security Data Protection SPONSORED BY: Lumension Security Spyware, Trojans, and Rootkits SPONSORED BY: ESET Kaspersky Lab Virus, Worms, and Other Malware SPONSORED BY: Kaspersky Lab SITE HIGHLIGHTS Screencast: Catching network traffic with Wireshark: See how Peter uses Wireshark to hack into a recorded VoIP phone call. Compliance recycling: Combining compliance efforts to manage PCI DSS: While the Payment Card Industry Data Security Standard looms large over most enterprises' compliance efforts, it... A Guide to Extended Validation SSL Certificates: In an excerpt from Dan Sullivan's book, "A Shortcut Guide to Extended Validation SSL Certificates," the author explains some of the l... Enterprise role management: Trends and best practices: Enterprise role management technology is intended to help an enterprise keep tabs of who has access to various network resource... MORE NEWS DNS flaw handling leaves Kaminsky pleased ARTICLE - Network security researcher, Dan Kaminsky sheds light on how he discovered the DNS cache poisoning flaw. DNS exploit code released by Metasploit founder ARTICLE - Experts say DNS attacks against unpatched servers are imminent. Smartphones opening up enterprise risks ARTICLE - A new survey found more consumers using their smartphones to access sensitive corporate data opening huge security gaps for enterprises. Initial virtualization costs could outweigh benefits ARTICLE - It could be costly for companies to sort out the new governance, oversight and manageability issues being introduced by virtualize... Apple iPhone mail, Safari prone to spoofing ARTICLE - A security researcher discovered some design flaws in Apple's iPhone that could leave the smartphone vulnerable to phishers and spammers. MORE NEWS SITE INDEX Security. Security news, technical tips and industry experts available at your fingertips! Use our site map below to navigate resources on top of mind topics such as: Authentication, Email Security, Firewalls, Intrusion Prevention, and SSL (Secure Socket Layer). SITE FEATURES All-in-One Guides Ask the Experts Discussions Downloads Events & Conferences Featured Topic Glossary Information Security Magazine ITKnowledge Exchange Meet the Editors Multimedia News Polls Products & Vendors Readers' Choice RSS Search Security Schools