Recent articles by Dan Kaplan

Exploits in the wild for Microsoft Workstation Service flaw

Exploits in the wild for Microsoft Workstation Service flaw

Two in-the-wild exploits for the Microsoft Workstation Service vulnerability appeared today, two days after the dangerous flaw was patched as part of the software giant's monthly fix cycle, researchers said.
Dan Kaplan Nov 16 2006 10:47PM Security
Worm uses Real Media files to infect

Worm uses Real Media files to infect

McAfee is warning of a new worm that modifies Real Media files and launches a malicious website without a user prompt.
Dan Kaplan Nov 16 2006 8:26PM Security
Secunia tracking flaws in Panda virus scan

Secunia tracking flaws in Panda virus scan

Vulnerability assessment firm Secunia said today it is tracking two bugs and a weakness in Panda Software's free virus scan that could lead to remote code execution.
Dan Kaplan Nov 16 2006 7:29PM Security
Human error named in latest SANS Top 20

Human error named in latest SANS Top 20

The SANS Institute, (SysAdmin, Audit, Network, Security Institute), has for the first time named human error to its twice-annual Top 20 Internet Security Attack Targets list, a line-up that, until now, was reserved solely for technology.
Dan Kaplan Nov 15 2006 9:43PM Security
Microsoft files suit against spyware operation

Microsoft files suit against spyware operation

Microsoft announced today that it has filed a lawsuit against a spyware distributor, one day after the Federal Trade Commission (FTC) announced the company was shut down by a U.S. District Court judge.
Dan Kaplan Nov 14 2006 6:10PM Security
Broadcom wireless drivers vulnerable to attack, says Metasploit creator

Broadcom wireless drivers vulnerable to attack, says Metasploit creator

Just when you thought that spilling a hot cup of latte was all you had to worry about while surfing the web at your local Starbucks - or any public place for that matter - think again: Nearby attackers can now exploit the wireless drivers used in many popular laptops to assume control of your machine, and there is little you can do to stop them.
Dan Kaplan Nov 13 2006 10:37PM Security
No patch, just a crash for Microsoft PowerPoint flaw

No patch, just a crash for Microsoft PowerPoint flaw

One the eve of another Patch Tuesday, Microsoft revealed some good news Friday when engineers reported that a PowerPoint flaw revealed last month cannot be exploited for remote code execution.
Dan Kaplan Nov 13 2006 5:34PM Security
Microsoft warns of attacks on Visual Studio 2005 flaw

Microsoft warns of attacks on Visual Studio 2005 flaw

Microsoft is warning of attacks exploiting a recently reported zero-day vulnerability in Visual Studio 2005, according to an amended advisory released late Wednesday by the software giant.
Dan Kaplan Nov 9 2006 5:51PM Security
Mozilla urges upgrades for product flaws

Mozilla urges upgrades for product flaws

Mozilla is reporting three vulnerabilities affecting its products - the most severe being a JavaScript flaw that could allow for the remote execution of code - US-CERT (the U.S. Computer Emergency Readiness Team) said today in an alert.
Dan Kaplan Nov 8 2006 11:05PM Security
Empowered Democrats could push information security legislation

Empowered Democrats could push information security legislation

Democratic lawmakers supportive of privacy and information security reform will soon get the chance to quicken legislation after the GOP on Tuesday lost control of the House of Representatives and likely the Senate, a leading security lobbyist said today.
Dan Kaplan Nov 8 2006 9:36PM Security
Attacks exploit Microsoft XML Core Services flaw

Attacks exploit Microsoft XML Core Services flaw

Attacks exploiting a dangerous zero-day vulnerability in Microsoft XML Core Services were spotted over the weekend.
Dan Kaplan Nov 6 2006 5:56PM Security
PoC Macarena virus targets Mac OS X

PoC Macarena virus targets Mac OS X

Security researchers today reported a replicating proof-of-concept virus affecting Mac OS X platforms.
Dan Kaplan Nov 4 2006 1:24AM Security
Another VA breach affects 1,600 veterans from New York system

Another VA breach affects 1,600 veterans from New York system

The Department of Veterans Affairs (VA) is again warning veterans their identity may be at risk following the theft of an unencrypted laptop from the agency's New York Harbor Healthcare System.
Dan Kaplan Nov 2 2006 5:08PM Security
Microsoft warns of Visual Studio 2005 flaw

Microsoft warns of Visual Studio 2005 flaw

The Microsoft software used by programmers to develop web services is suffering from a serious zero-day vulnerability that is being actively exploited to execute remote code, the software giant announced in an advisory late Tuesday.
Dan Kaplan Nov 1 2006 4:30PM Security
Enterprises beware: IM attacks break record, again

Enterprises beware: IM attacks break record, again

The prevalence of instant messenger (IM) attacks has reached record numbers for the second consecutive month, an IM security firm announced this week.
Dan Kaplan Oct 31 2006 6:07PM Security
DoS exploit for Windows XP firewall, ICS in the wild

DoS exploit for Windows XP firewall, ICS in the wild

Windows XP platforms running a shared internet access service are at risk from an in-the-wild remote DoS exploit, vulnerability management firm nCircle reported Sunday.
Dan Kaplan Oct 30 2006 10:50PM Security
Password-stealing MySpace log-in page removed

Password-stealing MySpace log-in page removed

Popular social networking site MySpace has shut down a bogus profile page that was used to relay usernames and passwords to a remote server in France.
Dan Kaplan Oct 30 2006 4:50PM Security
Sourcefire going public

Sourcefire going public

Sourcefire, maker of the popular open-source Snort intrusion prevention technology, has filed for an initial public offering (IPO) to raise up to $75 million in stock, six months after plans to be acquired by Check Point fizzled out amid a federal investigation.
Dan Kaplan Oct 27 2006 6:13PM Security
Researchers cite risks in swipe-free credit cards

Researchers cite risks in swipe-free credit cards

Swipe-free credit cards are gaining in popularity, but there are significant information security risks associated with the cards' radio frequency identifier (RFID) technology, a group of Massachusetts researchers have determined in findings released this week.
Dan Kaplan Oct 26 2006 11:17PM Security
From InfoSecurity NY: Physical, IT security coming together

From InfoSecurity NY: Physical, IT security coming together

The convergence of physical and IT security within organisations soon will become the norm - not the exception - but key challenges await those businesses and government agencies adopting the new business model, a panel of experts said today at InfoSecurity NY.
Dan Kaplan Oct 25 2006 11:22PM Security

Log In

  |  Forgot your password?