Our Security Blog with topical news and information will keep you in the know.
PCI compliance, future requirements, and security best practices require retailers to make important choices. Retailers must control what data traffic may enter each store as well as what may leave. They also need to keep some things in each store separate from others. Methods used to secure data traffic can impact how retailers operate within them. Continue reading »
Since January 2010, over 100,000, possibly up to 5,000,000 websites have been unleashing drive-by download attacks on visitors that were using Internet Explorer or Adobe Reader/Acrobat. Less than a week ago, less than half of the roughly 50 leading antivirus products were detecting the attack. If during this time you visited a website without any content because the owner hasn’t posted any content yet, and there’s some kind of boilerplate content along the lines of ‘under construction’, and if such a “parked” page were hosted by Network Solutions Inc., which may be the largest in the industry, then your computer may be infected! Continue reading »
Ordinary video cards and botnets make cracking passwords trivial, affecting all that you do and see. As a ‘high assurance’ security vendor, as opposed to one that just plays one on ‘marketing content’, nearly all uses of authentication in our products are PKI-based. Continue reading »
Researchers at Black Hat 2010 and DefCon 18 demonstrated how to circumvent security restrictions intended to prevent malicious PowerShell scripts from doing harm. The researchers say antiVirus, host intrusion prevention system (HIPS), as well as software restriction policies (SRP) built into Windows Group Policies, and other advanced security software products cannot protect computers from these attacks. AppGuard protects Windows computers from these sophisticated zero day attacks. Continue reading »
Microsoft issued a critical security advisory on Friday (16 July 2010) concerning a vulnerability affecting most Windows operating systems. Security pundits consider this an extremely serious persistent [malware] threat (APT). Speculation suggests no Microsoft patch until August 10, but never for Windows XP SP2 users. This vulnerability poses little risk to AppGuard or AppGuard Enterprise protected Windows computers, even XP SP2. Continue reading »
