How secure is Linux? It is so secure it is now being used to protect Microsoft Windows. Adrian Kingsley-Hughes gives a first hand review of the 'Yoggie Pico Pro'. The Yoggie, no relation to a the baseball player, is an embedded computer the size of a USB drive that plugs right into a computer USB port. The little gadget then allows the user to run 13 security applications that won't bog down his normal computing experience. Its a must have for any one that has a laptop and likes to plug into public networks.
Source: Network World - Posted by Eckie Silapaswang
Just one day after a security researcher showed how Google's Firefox toolbar could be exploited in an online attack, a similar flaw has been discovered in the Google Desktop.
Source: Network World - Posted by Eckie Silapaswang
Makers of some of the most popular extension software used by the Firefox browser are not doing enough to secure their software, a security researcher said Wednesday.
In last week’s column, I argued that vendors should close all known security holes. A reader wrote me with a somewhat interesting argument that I’m still slightly debating, although my overall conclusion stands: Vendors should close all known security holes, whether publicly discussed or not. The idea behind this is that any existing security vulnerability should be closed to strengthen the product and protect consumers. Sounds great, right?
BackTrack is a live CD Linux distribution that focuses on penetration testing. A merger of two older security-related distros -- Whax and Auditor Security Collection -- BackTrack bundles more than 300 security tools.
It turns out that, after years of engineering work and collaboration efforts with strategic partners such as IBM, Red Hat's March 14 release of Red Hat Enterprise Linux 5 had the misfortune of coinciding with the company's release of a whopping 11 security advisories.
Source: Dark Reading - Posted by Eckie Silapaswang
Starting to get worried about the exposure of those thousands of virtual servers in your data center? The bad news is no one knows for sure what security threats lurk in the virtual world. The good news is, security tools are finally starting to emerge.
Source: LinuxTracker - Posted by Eckie Silapaswang
Remote-Exploit has announced the release of BackTrack 2.0, SLAX-based live CD with a comprehensive collection of security and forensics tools: After many months of work, we're finally happy enough with BackTrack to call it v.2.0 Final.
App security vendor Watchfire and anti-malware vendor Panda Software both launched web-based apps this week.
Watchfire's new release, Appscan Enterprise 5, checks source code under development for security problems. The latest version includes a new “point and shoot” testing tool called Quickscan and integrated Computer Based Training, which Watchfire said will "accelerate the adoption of security testing by QA and development teams".
Software companies should be made liable for the security problems that arise in their products, according to security guru Bruce Schneier.
In a presentation at the LinuxWorld OpenSolutions Summit, the BT Counterpane CEO said that this was the only way to help improve IT security, the effects of which were currently taken for granted.
