News

IT management

• April 12, 2007 12 Apr'07

  Microsoft investigates DNS server flaw

  Attackers could exploit a DNS flaw in Microsoft Windows 2000 Server and Windows Server 2003 and run malicious code on the system. A workaround is suggested until a patch is issued.

• April 12, 2007 12 Apr'07

  Microsoft DNS server flaw called dangerous

  UPDATE: Microsoft said Sunday that attacks are still limited, but a proof of concept code to exploit the vulnerability is publicly available.

• April 11, 2007 11 Apr'07

  Instant messaging threats become more sophisticated

  Instant messaging faces greater threats as more enterprises begin to utilize it, making it a more appealing target to hackers.

• April 11, 2007 11 Apr'07

  Architectural firm swaps online data backup service providers

  As online data backup services take off, one early adopter slashed costs dramatically by switching to a newer service on the market.

• April 10, 2007 10 Apr'07

  Capacity planning software specifications

  Gauging storage needs over time is one of the biggest challenges faced by IT administrators, and a new generation of capacity planning tools is emerging to help forecast growth and utilisation of storage resources.

• April 09, 2007 09 Apr'07

  HP renews SMB storage campaign

  With the launch of the new All-in-One 1200 and the shifting of executives to a new SMB business unit, HP is focused on its low-end products in an effort to boost growth.

• April 08, 2007 08 Apr'07

  How data deduplication eases storage requirements

  Storage administrators are struggling to handle spiraling volumes of documents, audio, video, images and large email attachments. Adding storage is not always the best solution, and many companies are turning to data reduction technologies such as ...

• April 08, 2007 08 Apr'07

  Spam campaign uses Storm-like attack technique

  Spammers used an attack technique much like last January's "Storm" assault to dupe people into downloading malware over the weekend. This time, they used fake WWIII headlines.

• April 08, 2007 08 Apr'07

  Symantec fixes 'high-risk' flaw in Enterprise Security Manager

  Attackers could hijack machines from remote locations by exploiting a flaw in Symantec Enterprise Security Manager (ESM). Kaspersky Lab users also have a flaw to deal with.

• April 05, 2007 05 Apr'07

  Goldman Sachs: Interest in NetApp SAN products wanes

  A survey by the investment firm shows enterprise storage buyers had a declining interest in NetApp SAN products over the last year.

• April 04, 2007 04 Apr'07

  Storage vendors propose FC over Ethernet standard

  A group of nine storage vendors led by Emulex is proposing a Fibre Channel over Ethernet (FCoE) standard .

• April 04, 2007 04 Apr'07

  Data security breach at UCSF may have exposed thousands

  The University of California at San Francisco (UCSF) acknowledged Wednesday that a security hole in a computer server may have exposed 46,000 people to potential identity fraud.

• March 26, 2007 26 Mar'07

  What are some of the best practices for managing the growth of unstructured data?

  It starts with corporate policies around data management...

• March 26, 2007 26 Mar'07

  Web 2.0: CIOs want it their way

  A new study found CIOs want Web 2.0 technology, but they're a little insecure about getting it from emerging specialized vendors.

• March 26, 2007 26 Mar'07

  Metasploit Framework 3.0 released

  Brief: Metasploit Framework 3.0 contains 177 exploits, 104 payloads, 17 encoders and 30 auxiliary modules that perform such tasks as host discovery and protocol fuzzing.

• March 26, 2007 26 Mar'07

  How can a company set retention policies with such a glut of unstructured data?

  It depends; there are no easy answers to this. There are a number of initiatives that a company should undertake, including disaster recovery, business continuity planning, Sarbanes-Oxley compliance and data security...

• March 26, 2007 26 Mar'07

  How is unstructured data affecting storage administrators and other staff?

  There is absolutely an effect. Additional data volume translates into...

• March 26, 2007 26 Mar'07

  Are there regulatory compliance issues related to unstructured data?

  The most important issue is legal discovery. You may not know what you have or how to find it, so it can be very difficult to find the files that may be required by a court of law...

• March 26, 2007 26 Mar'07

  What are some of the hidden costs of managing unstructured data?

• March 25, 2007 25 Mar'07

  Microsoft investigates Windows Vista Mail flaw

  Attackers could exploit a flaw in Windows Vista Mail to compromise PCs by tricking the user into opening a malicious email attachment. Microsoft is investigating.

• March 22, 2007 22 Mar'07

  Midrange storage array purchase considerations

  A Buying Guide focusing on specific considerations for midrange disk array systems. Also find a series of specifications to help make on-the-spot product comparisons between v

• March 22, 2007 22 Mar'07

  Flaws haunt protocol tied to national infrastructure

  Also: A weakness is found in Windows settings, Microsoft investigates a new Vista flaw, and flaws are addressed in OpenOffice.org and Firefox.

• March 22, 2007 22 Mar'07

  Mozilla releases Firefox fix

  One newly-discovered flaw and several glitches introduced in the last update have been fixed with Mozilla's release of Firefox 2.0.0.3 and 1.5.0.11.

• March 22, 2007 22 Mar'07

  Midrange storage array specifications

  Product snapshots highlighting key specifications for a cross section of midrange storage array products.

• March 21, 2007 21 Mar'07

  Storage Security FAQ audiocast

  Don't have time to dig into the FAQ text now? Download the audiocast in MP3 format and listen in the car, at the gym -- wherever you want. You can download the entire presentation or the individual questions that you are most interested in.

• March 21, 2007 21 Mar'07

  Hackers broaden reach of cross-site scripting attacks

  An explosion of AJAX-based applications has increased the damage that cross-site scripting (XSS) attacks can inflict on machines. A new tool uses XSS flaws to create a botnet.

• March 20, 2007 20 Mar'07

  NAC panel says technology may not add up

  A panel discussing the potential of using network access control (NAC) says the technology may not be worth the price of deploying and maintaining it.

• March 19, 2007 19 Mar'07

  Internet complexity, insecurity could stifle innovation, expert says

  Security threats are driving vendors to produce software and devices that automatically update and run only proprietary software with no effort from the end user. The result could be less flexibility and innovation, one expert says.

• March 18, 2007 18 Mar'07

  Symantec: Data thieves thrive on zero-day flaws

  According to Symantec's threat report for the second half of 2006, attackers exploited misplaced USB drives and zero-day flaws to steal vast amounts of data. Expect more of the same in 2007.

• March 18, 2007 18 Mar'07

  Hacker techniques use Google to unearth sensitive data

  Those who know where to look could use Google to dig up all sorts of sensitive company information, including intellectual property and passwords, one security expert warns.

• March 18, 2007 18 Mar'07

  Cisco stamps on Brocade in Q4, Dell'Oro says

  For the second quarter in a row Cisco is gaining SAN switch market share on Brocade, according to the latest report by the Dell'Oro Group. But the numbers are causing a firestorm.

• March 15, 2007 15 Mar'07

  Cisco buys WebEx for $3.2 billion

  Cisco plans to buy WebEx, maker of hosted, on-demand collaboration applications.

• March 13, 2007 13 Mar'07

  NEC reveals HydraStor grid storage

  NEC announces its HydraStor array for secondary storage, touting its grid storage architecture, automated policies for data management and scalable deduplication.

• March 13, 2007 13 Mar'07

  What are some best practices for retaining data in a highly regulated business environment?

  Have a good information retention policy. I see a lot of organizations where they retain backups or copies of databases, but they don't know why they're retaining it or for how long...

• March 08, 2007 08 Mar'07

  Review: eGuardPost a B+ overall

  eGuardPost is a well-designed and highly capable product that meets an important need. It has strong security and great forensics capabilities.

• March 08, 2007 08 Mar'07

  Review: Sun Java System Identity Manager 7.0 'impressive'

  Hot Pick: Sun Java System Identity Manager 7.0 excels with agentless connectors, scalability and amazing auditing.

• March 07, 2007 07 Mar'07

  Symantec acquires automated risk assessment firm

  Symantec has acquired Reston, Va.-based 4FrontSecurity, a maker of automated risk analysis and security management tools. An expert says it's the latest sign that the security risk assessment market is heating up.

• March 04, 2007 04 Mar'07

  WordPress upgrade fixes 'dangerous' flaw

  Developers of the open source blogging platform WordPress say users should upgrade to version 2.1.2 immediately to address a "dangerous" security hole that was recently attacked.

• March 04, 2007 04 Mar'07

  Buzz builds around data reduction for primary storage

  Analysts predict that in-band compression offerings from StoreWiz, newly updated this week, are the first step toward a new wave of primary storage deduplication products.

• March 04, 2007 04 Mar'07

  Expert: NAC not a network security cure-all

  According to an expert at Black Hat DC, NAC success demands careful planning and a good understanding of the company network; otherwise, implementations can quickly go awry.

• March 02, 2007 02 Mar'07

  Police force secures data with biometrics

  Humberside Police has issued biometric USB drives among staff to maintain data security.

• March 01, 2007 01 Mar'07

  Linksys, Gateway launch low-end NAS

  Cisco subsidiary Linksys and PC maker Gateway launch new NAS products for small businesses and consumers.

• February 28, 2007 28 Feb'07

  RFID cloning presentation moves forward despite legal threats

  Chris Paget, director of research and development at IOActive spoke mainly about the science behind RFID tags and readers and the inherent security issues of the technology.

• February 27, 2007 27 Feb'07

  McAfee fixes flaw in Mac antivirus software

  Attackers could exploit the hole in McAfee's Virex 7.7 antivirus program for Mac OS X to bypass the malware scanner, but a fix is available.

• February 27, 2007 27 Feb'07

  'Worm' targets Sun Solaris Telnet flaw

  Security researchers have found evidence that a worm is trying to exploit the recently patched Telnet flaw in Sun Solaris. Experts say it's another reason to stay away from Telnet.

• February 27, 2007 27 Feb'07

  Wireless security: IT pros warily watching mobile phone threats

  Security experts have warned repeatedly that mobile phone attacks will grow as the devices become more sophisticated. IT administrators are starting to believe them.

• February 27, 2007 27 Feb'07

  Black Hat presenter nixes RFID cloning demo under pressure

  A demonstration of a device that could easily clone radio frequency identification (RFID) badges, was pulled from a conference presentation under pressure from a chip maker.

• February 26, 2007 26 Feb'07

  Sun scraps 6920 array, offloads support to HDS

  The long-rumored deal that Sun will sell its 6920 virtualization array to HDS is done. But rather than developing the product, HDS will upgrade users to its TagmaStore instead.

• February 26, 2007 26 Feb'07

  Storm rages again: Self-morphing Trojan uses blogs to spread rootkits

  A new variant of the Storm Trojan that changes with each download is infecting blog sites with malicious URLs, intercepting traffic when visitors try to post comments.

• February 25, 2007 25 Feb'07

  Storage switch startup burns out, turns to security

  The company formerly known as Maxxan has been rechristened CipherMax and is now marketing a storage switch/encryption appliance with one point of management.