-
BackTrack 5 training guide: Part V - Pen-testing in a nutshell
Use this step-by-step BackTrack 5 training guide to conduct ethical hacking and penetration testing, for identifying vulnerabilities in your network. Tutorial
-
SQL Azure security terrifies IT, but loss of control might be real fear
The primary obstacle to SQL Azure security is not specific security gaps, but rather DBAs' reluctance to give up control over SQL Server environments. Feature
-
Application whitelisting: an extra layer of malware defense
Application whitelisting was hyped as an antivirus killer. Its real role is serving as an added weapon in the battle against malware Feature
-
20 days to a more secure enterprise
Desktop administrators can improve the security of their organizations by doing a little each day. Learn how small steps can help you keep up. Step-by-Step Guide
-
VMware downplays ESX hypervisor source code leak
Company says source code was leaked online but says may not mean increased risk. News | 25 Apr 2012
-
Microsoft April 2012 Patch Tuesday repairs critical IE flaws, ActiveX control issue
Microsoft repaired 11 vulnerabilities in April, including a critical update to its Internet Explorer browser and an ActiveX fix that affects a variety of software and server systems. News | 10 Apr 2012
-
Hunting for application logic flaws requires people, expert says
Rafal Los, a software security expert and consultant with Hewlett Packard, says humans far outgun automated tools in the hunt for costly application logic flaws. News | 10 Apr 2012
-
Cisco IOS gets fixes for 12 DoS bugs
Cisco releases 9 advisories to address 13 vulnerabilities on March patch day as part of its bi-annual IOS patching exercise. News | 02 Apr 2012
-
Web browser attacks aimed at plug-ins despite rise in flaws, IBM finds
An IBM report found a slight increase in browser-based vulnerabilities, but security features are driving attackers to target components rather than the browser itself. News | 28 Mar 2012
-
University researchers document Android adware privacy risks
Researchers at NC State found that ad libraries used in Android apps access personal information unnecessary for proper functionality. News | 20 Mar 2012
-
Apple iOS 5.1 patches 81 vulnerabilities
Alongside its ‘new iPad’ release, Apple Inc. releases iOS 5.1, the latest version of its mobile computing platform with fixes for 81 security holes. News | 09 Mar 2012
-
NIST releases SP 800-153 WLAN security guidelines
The recently released NIST SP 800-153 addresses security of WLANS. Join us, as we take a closer look at the document’s recommendations. News | 07 Mar 2012
-
CrowdStrike to make RSA 2012 debut with Android attack via Webkit
Firm led by well-known security experts George Kurtz and Dmitri Alperovitch will focus on defending against targeted attacks. News | 25 Feb 2012
-
RSA 2012 talk to offer help understanding IPv6 security issues
Understanding IPv6 security issues can be a challenge, but the protocol's co-inventor says enterprises can no longer afford to ignore IPv6 security concerns. News | 22 Feb 2012
- See More: News on Windows and other OS security best practices
-
How to recognize and prevent a hypervisor attack to protect data
A hypervisor attack can hand hackers the keys to your virtual kingdom. But, with the proper precautions and tools, you can minimize the risk. Tip
-
Building a compliance culture means learning from mistakes
In this bonus to our "Compliance scorecard" Security School lesson, Eric Holmquist covers the importance of learning from failure by assessing how and why mistakes happen. Tip
-
Cyber security threats: Will your enterprise be the next victim?
The old cyber security model is crumbling in the face of new, advanced cyber security threats. A paradigm shift in the approach to cyber security is crucial. Tip
-
iPhone's Siri security flaws: Is IT powerless?
The new iPhone's Siri voice-recognition service bypasses many iPhone security features, and IT admins can't do much about it. Tip
-
Create a BlackBerry security policy based on BES or BES Express
Mobile security expert Lisa Phifer outlines the many ways security solution providers can secure their customers’ BlackBerry devices. Tip
-
Virtualization security: How vulnerable is your hypervisor?
Choosing the right hypervisor for your infrastructure is not only critical for deployment and management purposes, but it also comes into play with virtualization security. Tip
-
Securing Windows 7 desktops in 5 quick steps
Although Windows 7 is more secure than its predecessors, it remains vulnerable to security threats. In this tip, Brien Posey details five steps for securing Windows 7 desktops. (TIP) Tip
-
Improving security vulnerabilities in open source Web applications
Hackers thrive on exploiting open source Web application source code. But these tactics can protect your corporate applications from common security vulnerabilities and breaches. Tip
-
Pros and cons of Windows Server drive encryption
Despite the drawbacks of server-based drive encryption, tools like BitLocker can be invaluable protection against data breaches and other external threats. Tip
-
OPINION: Ditch the App Store security FUD
An attempt to spread fear, uncertainty and doubt about apps for iOS 4 has backfired, writes Simon Sharwood. Tip
- See More: Tips on Windows and other OS security best practices
-
An intro to free Microsoft security tools for secure software development
Free Microsoft security tools Threat Modeling, MiniFuzz and RegExFuzz are designed to help developers build secure software. Answer
-
How penetration testing helps ensure a secure data store
A third-party penetration test is the best way to determine whether an online data store can be compromised. Answer
-
What are the security risks of Windows Vista RSS functionality?
The RSS support in Windows Vista exposes feed handling and management to other Windows applications. However, any technology that allows data to be shared across applications carries risks, says expert Michael Cobb Ask the Expert
-
What is the best operating system for an FTP server implementation?
When it comes to recommending an operating system for a task such as hosting an FTP server, expert Michael Cobb says it depends on what in-house expertise you have. Ask the Expert
-
The risks of disabling User Account Control (UAC) on Windows Vista
It may upgrade the user experience to disabe the User Account Control (UAC) feature, but there are some serious security risks. Application security expert Michael Cobb gives advice. Ask the Expert
-
How to perform Microsoft Baseline Security Analyzer (MBSA) scans
This month, Peter Giannoulis of TheAcademyPro.com and TheAcademyHome.com offers an overview of the free Microsoft Baseline Security Analyzer. Video
-
How to perform Microsoft Baseline Security Analyzer (MBSA) scans
This month, Peter Giannoulis of TheAcademyPro.com and TheAcademyHome.com offers an overview of the free Microsoft Baseline Security Analyzer. Video
-
VMware downplays ESX hypervisor source code leak
Company says source code was leaked online but says may not mean increased risk. News
-
Microsoft April 2012 Patch Tuesday repairs critical IE flaws, ActiveX control issue
Microsoft repaired 11 vulnerabilities in April, including a critical update to its Internet Explorer browser and an ActiveX fix that affects a variety of software and server systems. News
-
Hunting for application logic flaws requires people, expert says
Rafal Los, a software security expert and consultant with Hewlett Packard, says humans far outgun automated tools in the hunt for costly application logic flaws. News
-
How to recognize and prevent a hypervisor attack to protect data
A hypervisor attack can hand hackers the keys to your virtual kingdom. But, with the proper precautions and tools, you can minimize the risk. Tip
-
Cisco IOS gets fixes for 12 DoS bugs
Cisco releases 9 advisories to address 13 vulnerabilities on March patch day as part of its bi-annual IOS patching exercise. News
-
Web browser attacks aimed at plug-ins despite rise in flaws, IBM finds
An IBM report found a slight increase in browser-based vulnerabilities, but security features are driving attackers to target components rather than the browser itself. News
-
University researchers document Android adware privacy risks
Researchers at NC State found that ad libraries used in Android apps access personal information unnecessary for proper functionality. News
-
Apple iOS 5.1 patches 81 vulnerabilities
Alongside its ‘new iPad’ release, Apple Inc. releases iOS 5.1, the latest version of its mobile computing platform with fixes for 81 security holes. News
-
NIST releases SP 800-153 WLAN security guidelines
The recently released NIST SP 800-153 addresses security of WLANS. Join us, as we take a closer look at the document’s recommendations. News
-
CrowdStrike to make RSA 2012 debut with Android attack via Webkit
Firm led by well-known security experts George Kurtz and Dmitri Alperovitch will focus on defending against targeted attacks. News
- See More: All on Windows and other OS security best practices
About Windows and other OS security best practices
Ensure Windows, Unix and Linux security with expert tips and deployment advice. Implement Windows server security. Evaluate security software for different OSs. Manage group security policies in Windows, Unix and Linux environments. Update your OS security domain expertise. Track the latest OS security patches and updates with our news section. Discover OS network security secrets.