Microsoft has decided to issue a special patch outside its usual patchday rhythm for all its Internet Explorer versions to close a severe vulnerability issue. Downloads of Firefox have accordingly skyrocketed.more »
OpenVAS Exploring the OpenVAS vulnerability scannerDec 01, 2009
If you prefer to travel light and free, try OpenVAS, a GPLed fork of the Nessus scanning tool.more »
Security Visualization Tools Tools for visualizing IDS outputSep 01, 2009
Spot intruders with these easy security visualization tools.more »
Intrusion 101 A guided tour to someone else's networkSep 01, 2009
You need to think like an attacker to keep your network safe. We asked security columnist Kurt Seifried for an inside look at the art of intrusion.more »
Security Lessons Denial of service made easyJul 15, 2009
A slow death for the default configuration.more »
Forensics in Freiburg Hacker trainer for law enforcement agentsMay 01, 2009
A former intrusion specialist is training a gathering of European law enforcement agents in how the bad guys work on the Internet. Contributing editor Markus Feilner stops in for a lesson in attack techniques.more »
Security Lessons How hacking got easyNov 01, 2008
When it comes to security, public disclosure of vulnerabilities and working exploit code is now common. We look at why this can be both harmful and helpful to securing your systems.more »
Kernel king admits his tone has alienated volunteers, but says the demands of the process require directness.
New flaw in an old encryption scheme leaves the experts scrambling to disable SSL 3
Lennart Poettering wants to change the way Linux developers talk to each other.
Enterprise giant frees itself from ink and home PCs (and visa versa).
Mozilla’s product think tank sinks silently into history.
TODO group will focus on open source tools in large-scale environments.
New tool will look like GParted but support a wider range of storage technologies.
New public key pinning feature will help prevent man-in-the-middle attacks.
Carnegie Mellon researchers say 3 million pages could fall down the phishing hole in the next year.
The US government rolls new best-practice rules for protecting SSH.