SecurityRatty: tag: third-parties

Third Annual Movie-Plot Threat Contest Winner

2008-05-15 06:24:06 by schneier in Schneier on Security

On April 7 -- seven days late -- I announced the Third Annual Movie-Plot Threat Contest: For this contest, the goal is to create fear. Not just any fear, but a fear that you can alleviate through the sale of your new product idea. There are lots of risks out there, some of them serious, some of them so unlikely that we shouldn't worry about...

Third Annual Movie-Plot Threat Contest

2008-04-07 15:50:38 by schneier in Schneier on Security

I can't believe I let April 1 come and go without posting the rules to the Third Annual Movie-Plot Threat Contest. Well, better late than never For this contest, the goal is to create fear. Not just any fear, but a fear that you can alleviate through the sale of your new product idea. There are lots of risks out there, some of them serious, some...

Tags: movie-plot threat, annual movie-plot threat, criminal risk, risk, common household risk, product idea, product, terrorism risk, entries

Third Annual Movie-Plot Threat Contest Semi-Finalists

2008-05-07 14:33:13 by schneier in Schneier on Security

A month ago I announced the Third Annual Movie-Plot Threat Contest: For this contest, the goal is to create fear. Not just any fear, but a fear that you can alleviate through the sale of your new product idea. There are lots of risks out there, some of them serious, some of them so unlikely that we shouldn't worry about them, and some of them...

Tags: risk, criminal risk, common household risk, annual movie-plot threat, terrorism risk, product idea, product, fear, toothpaste test strips

SQL injection attack in 'third wave,' says IBM

2008-05-15 00:00:00 by Jon Brodkin in Network World on Security

A SQL injection attack that has affected at least a half-million Web sites has entered a "third wave" that's more resistant than previous versions to traditional security measures

Tags: sql injection attack, traditional security measures, half-million web sites, previous versions, wave, resistant

Can Moodys solve your third party assessment problem?

2008-05-28 12:36:33 by Khalid Kark in Security & Risk Management

Moodys recently launched their Vendor Information Risk (VIR) ratings service. The main objective of this service is to reduce the overall burden of conducting risk assessments for organizations, as well as their service providers. The whole idea being that if Moodys can do a risk assessment on behalf of multiple subscribers, it can make the...

Tags: service provider environment, service, ratings service, vir service, service providers, service provider, assessment, service provider stays, moodys

Third-party advertisers tracking users in Google ad network

2008-05-29 00:00:00 by Grant Gross in Network World on Security

Google is apparently allowing third-party advertisers to track consumers using the company's ad network, a practice that raised concerns from one privacy advocate

Tags: third-party advertisers, track consumers, google, network, apparently, practice, concerns, privacy, company

One-third of IT admins admit snooping with privileged passwords

2008-06-20 13:00:00 by Editor in Computerworld Security News

One-third of IT administrators surveyed during a recent security conference in London said that they or one of their colleagues have used top-level admin passwords to access confidential information at work

Tags: access confidential information, top-level admin passwords, recent security conference, one-third, administrators, london, colleagues

Google updates Chrome to third beta

2008-10-30 04:00:00 by Editor in Computerworld Security News

Google has released the third beta version of its Chrome browser to fix a single security vulnerability and address several other problems

Tags: single security vulnerability, google, chrome browser, beta version, fix, address

Minimizing the Attack Surface, Part 2

2008-07-07 21:10:25 by Chris Eng in Zero in a bit

Im finally getting around to finishing my post on minimizing attack surfaces. Heres Part 1 , in case you missed it First, a quick clarification. I noticed that some of the readers who commented on that first post wanted to talk about improving security through the use of various development methodologies or coding frameworks. Those are...

Tags: dwr-invoker dwr, dwr-invoker, dwr library, dwr, library, security, dwr dispatcher, security posture, point-in-time application profile

Recent Symantec and IBM vulnerabilities, giblets, banned APIs and the SDL

2008-01-04 23:37:00 by sdl in The Security Development Lifecycle

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo