- BlackBerry Storm vs. the iPhone
- 2008 IT industry graveyard
- Top 10 worst uses for Windows
- Economic crisis means double duty for IT pros
- BlackBerry Storm, RIM's first touchscreen device, rolls in
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
For no apparently technical reason, July has traditionally been a bad month for the security world. Major vulnerabilities have been announced (i.e., the Cisco IOS hole revealed last July 18), exploits have been released, research findings presented by security firms trying to demonstrate their level of expertise, and past presentations at BlackHat and Defcon (always held in July) have covered previously unknown vulnerabilities.
But July 2004 was relatively quiet, security-speaking. There were no major vulnerabilities actively being dealt with around the time of the premier hacker conference in Las Vegas, which usually lead to discussions in the hallways, at the bar or around the pool.
Attendees at BlackHat were clearly disappointed that the “Zero Day” track of presentations did not include anything new from security researcher David Lichfield of Next Generation Security Software in the UK. Litchfield is famous for finding many problems in the database world, like the SQL vulnerability that led to the Slammer worm (see a story on Litchfield’s findings here). This year, he was expected to release more, but instead he explained how he has in fact found more vulnerabilities, but can’t announce them. He gave no explanation.
Well, I guess there's always next July.
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment