Tuesday, May 10, 2011

Security firm exploits Chrome zero-day, escapes sandbox

Computerworld Security: May 10, 2011
===============================================================

Security firm exploits Chrome zero-day, escapes sandbox

French security company Vupen said today that it's figured out how to hack
Google's Chrome by sidestepping not only the browser's built-in "sandbox" but
also by evading Windows 7's integrated anti-exploit technologies.
http://cwonline.computerworld.com/t/7330020/818816221/510988/0/

~~~~~~~~~~~~~~~~~~~WHITE PAPER: VeriSign Authentication Services, now from Symantec~~~~~~~~~~~~~~~~~~~~~

7 Practical Ideas for Security Awareness

In these articles, Computerworld and its sister publications CIO, CSO and
Network World explore best enterprise security practices and discuss the latest
thinking and technologies for securing increasingly open, mobile and virtualized
environments.

http://cwonline.computerworld.com/t/7330020/818816221/510989/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


IN THIS ISSUE

1. Darlene Storm: Whitehats steal Chrome security crown, hack browser
http://cwonline.computerworld.com/t/7330020/818816221/510990/0/

2. NASA, Stanford sites hit by search engine scammers
http://cwonline.computerworld.com/t/7330020/818816221/510991/0/

3. Skype patches 'wormable' Mac bug
http://cwonline.computerworld.com/t/7330020/818816221/510992/0/

4. Verisign expands cloud-based DDoS protection
http://cwonline.computerworld.com/t/7330020/818816221/510993/0/

5. Sony reported to be considering bounty for PSN attack
http://cwonline.computerworld.com/t/7330020/818816221/510994/0/

6. WebGL hit by hard-to-fix browser security flaw
http://cwonline.computerworld.com/t/7330020/818816221/510995/0/

7. Catch a clue from an EDU: Universities that get security right
http://cwonline.computerworld.com/t/7330020/818816221/510996/0/

8. iPhone location-tracking incident boosts stock of 'privacy by design'
http://cwonline.computerworld.com/t/7330020/818816221/510997/0/

9. Privacy groups support new do-not-track bill
http://cwonline.computerworld.com/t/7330020/818816221/510998/0/


~~~~~~~~~~~~~~~~~~~WHITE PAPER: Red Hat~~~~~~~~~~~~~~~~~~~~~

The Linux Factor

Linux offers robust security—required by many government applications—and
provides unprecedented value because of its hardware and application
independence, according to recent research. Read this white paper to see how its
cost savings, security and flexibility can benefit your organization.

http://cwonline.computerworld.com/t/7330020/818816221/510999/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Darlene Storm: Whitehats steal Chrome security crown, hack browser

If you've been using Google Chrome as your browser, liking the speed while
feeling safe from web attacks, then I hate to tell you but someone did more than
pee in your sandbox. Chrome lost its security crown and was hacked.

http://cwonline.computerworld.com/t/7330020/818816221/510990/0/

NASA, Stanford sites hit by search engine scammers

Scammers looking to flog cheap software have hacked Web pages on high-profile
websites, including those belonging to NASA and Stanford University.
http://cwonline.computerworld.com/t/7330020/818816221/510991/0/

Skype patches 'wormable' Mac bug

As it promised last week, Skype today began serving up an update to Mac users of
its chat and Internet phone software, fixing a dangerous bug that a researcher
said could be used to build a worm.
http://cwonline.computerworld.com/t/7330020/818816221/510992/0/

Verisign expands cloud-based DDoS protection

Citing a rise in the number and scope of distributed denial-of-service attacks
across the Internet, Verisign is expanding its cloud-based DDoS protection
service to cover small and midsize businesses that are increasingly frequent
targets.
http://cwonline.computerworld.com/t/7330020/818816221/510993/0/

~~~~~~~~~~~~~~~~~~~WHITE PAPER: Cisco~~~~~~~~~~~~~~~~~~~~~

Social Technologies Add Business Value

Social technologies are moving from the consumer space into the enterprise, and
Enterprise Social Software (ESS) is changing how people work. A white paper
based on a Forrester Consulting survey commissioned by Cisco reveals the
benefits and inhibitors faced by decision makers and how ESS is transforming
business processes.

http://cwonline.computerworld.com/t/7330020/818816221/507837/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Sony reported to be considering bounty for PSN attack

Sony is reported to be considering offering a reward for information leading to
the arrest and prosecution of those behind the recent breach of its PlayStation
Network (PSN).
http://cwonline.computerworld.com/t/7330020/818816221/510994/0/

WebGL hit by hard-to-fix browser security flaw

The WebGL graphics technology turned on by default in Firefox and Chrome poses a
serious security risk and IT managers should consider disabling it, a security
consultancy has recommended.
http://cwonline.computerworld.com/t/7330020/818816221/510995/0/

Catch a clue from an EDU: Universities that get security right

With a diverse mobile workforce and a bevy of consumer devices, corporate
America is more like a university campus than ever before. They can learn a
thing or two by studying the way some leading schools approach security.
http://cwonline.computerworld.com/t/7330020/818816221/510996/0/

iPhone location-tracking incident boosts stock of 'privacy by design'

With a Senate hearing scheduled for tomorrow, the concept of privacy by design
could get more attention.
http://cwonline.computerworld.com/t/7330020/818816221/510997/0/

Privacy groups support new do-not-track bill

Privacy and civil liberties groups support a new online do-not-track bill.
http://cwonline.computerworld.com/t/7330020/818816221/510998/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

CAST YOUR VOTE IN OUR LATEST QUICKPOLL


Are you OK with carriers blocking Android's tethering applications?

http://cwonline.computerworld.com/t/7330020/818816221/510417/0/



SHARK TANK OF THE DAY
______________________

What's in a name?

This IT contractor pilot fish gets a call from one of his company's newest
customers, complaining that their terminal server is running slowly. Turns out
there's a reason for that.

http://cwonline.computerworld.com/t/7330020/818816221/510705/0/

NEW COMPUTERWORLD JOB BOARD
______________________________

Search multiple listings now and get new job alerts as they are posted.

http://cwonline.computerworld.com/t/7330020/818816221/156832/0/


Get more IT peer perspective online:

LinkedIn Group: http://cwonline.computerworld.com/t/7330020/818816221/311619/0/

Facebook: http://cwonline.computerworld.com/t/7330020/818816221/311620/0/

Twitter: http://cwonline.computerworld.com/t/7330020/818816221/311621/0/

===============================================================

CONTACTS/SUBSCRIPTIONS

You are currently subscribed to computerworld_security as: jonsan3511@gmail.com.

To unsubscribe from this newsletter, go to:
http://cwonline.computerworld.com/t/7330020/818816221/131135/0/?90482085=aHR0cDovL2N3b25saW5lLmNvbXB1dGVyd29ybGQuY29tL3U%2faWQ9ODE4ODE2MjIxLjRhYjhkNzUwOWY0NGExODFmZDY2YmZlOGMyNDBhMjllJm49VCZsPWNvbXB1dGVyd29ybGRfc2VjdXJpdHkmbz03MzMwMDIw&x=74e30623

To manage your subscription preferences, go to:
http://cwonline.computerworld.com/t/7330020/818816221/72510/0/

To subscribe to a newsletter, go to:
http://cwonline.computerworld.com/t/7330020/818816221/231613/0/

Computerworld's online privacy policy is at:
http://cwonline.computerworld.com/t/7330020/818816221/72509/0/

If you are interested in advertising in this newsletter, please contact: bglynn@cxo.com

To contact Computerworld, please send an e-mail to online@computerworld.com.

Copyright (C) 2011 Computerworld, 492 Old Connecticut Path, Framingham MA 01701

** Please do not reply to this message. If you want to contact someone directly,
send an e-mail to online@computerworld.com **

ads

Ditulis Oleh : Angelisa Vivian Hari: 11:01 AM Kategori:

0 comments:

Post a Comment

 

Blog Archive