Brian Prince

The most problematic database security breaches often dont come from hackers, but from the inside. With that in mind, the software company CoSoSys has released Secure it Easy for Windows Vista, software that blocks the unauthorized transfer of data to portable storage devices. Its latest offering puts the Romania-based company in the league with other […]

Google has issued a patch for a serious vulnerability involving Google Desktop that would have allowed attackers to steal personal information and possibly take control of a system remotely. Researchers at Watchfire found the product was susceptible to cross-site scripting attacks that hijack the Google Web interface in order to jump from the Internet to […]

Watchfire has released a new vulnerability scanning and reporting tool aimed at finding security flaws early in the software development lifecycle. Appscan Enterprise 5 features Web-based scanning and on-demand training designed to simplify application security for developers, Watchfire officials said. The product can be installed on a central server, making it easy for companies with […]

Database auditing vendor Lumigent Technologies announced the availability Feb. 20 of a new product that will leverage IBM DB2 across numerous systems. Lumigent Audit DB enables IBM customers to both audit the DB2 data server and use DB2 as an enterprise-wide repository for Audit DB audit data from systems such as Oracle databases, Sybase ASE […]

The Stop & Shop Supermarket chain announced Feb. 17 that thieves had tampered with check-out lane computers and had stolen account and personal identification numbers from customers credit and debit cards at two of its stores in Rhode Island. /zimages/4/28571.gifA man pleads guilty in the DuPont theft case. Click here to read more. Officials at […]

A bug was recently uncovered in Firefox that could allow a malicious Web site to appear authentic. The bug affects the way Firefox handles writing to the “location.hostname” DOM property, according to a posting by security researcher Michal Zalewski on the security mailing list Full Disclosure. The vulnerability could potentially allow a malicious Web site […]

Hackers have painted a bulls eye on Microsoft Word and Office programs yet again, and this time they seem to have hit their mark. The company issued a warning Wednesday stating there had been limited, targeted zero-day attacks exploiting a vulnerability that could allow code to be remotely inserted into a computer. The announcement came […]

The Storm worm that wreaked havoc in January has opened up a new front in its war against users—instant messaging. The Trojan virus that was responsible for countless spam e-mails sent around the globe has spawned a new variant that is using AOL Instant Messenger, Google Talk and Yahoo Messenger to proliferate. The worm attacks […]

Researchers at Symantec and the Indiana University School of Informatics have uncovered a new threat to broadband users. The attack, nicknamed “Drive-by Pharming”, uses JavaScript on a Web site created by a hacker to reconfigure broadband routers. Once the user clicks on a link, the malicious JavaScript code changes the DNS settings on the users […]

Oracle has released a new in-memory relational database designed to meet the faster response time needs of enterprises. Oracle TimesTen In-Memory Database Release 7 is the first major version of the TimesTen database developed internally by Oracle since the company purchased TimesTen, a startup firm that specialized in data management, in 2005. The new release […]