In the firing line Cyber-criminals are building country-specific botnets to target UK bank consumers with dedicated malware, security company Trusteer has reported. Rev: nc  Read More →

Microsoft confirms critical bug is under attack Nearly a month after a Google engineer released details of a new Windows XP flaw, criminals have dramatically ramped up online attacks that target the bug. Rev: nc  Read More →

Technology and a slow help desk undo Russian spies The Russian ring charged this week with spying on the United States faced some of the common security problems that plague many companies – misconfigured wireless networks, users writing passwords on slips of paper and laptop help desk issues that take months to resolve. Rev: nc  Read More →

Alcatel-Lucent, Bradford, Enterasys, ForeScout, McAfee go above and beyond One of the main promises of network access control is that you can ensure that endpoint security tools are up to date and that non-compliant machines can be identified or blocked. As regulatory compliance has grown in importance, NAC vendors have reacted by building strong feature sets aimed at endpoint security and compliance.... (more...)

No shortage of approaches to achieving access control via NAC products To understand how access control is done in NAC products, you have to look along three dimensions: where access controls are enforced, how access control is communicated, and the granularity of access control. But first you need to decide if you want to enforce access control at all. There are two reasons why you might not want... (more...)

Are you ready for 802.1X? In the network access control products we tested, authentication varies from very strong to very weak, and every point in-between. When starting down your path of evaluating NAC products, decide very early what kind of authentication mechanism you want, if any. Rev: nc  Read More →

Choosing the right NAC management system for your network requires careful planning In testing 12 NAC products, we discovered an incredible variety of management styles. To organise our results, we broke things up into three main categories: overall management, separation of control and high availability. Rev: nc  Read More →

Open source encryption on Brazilian banker’s hard drive baffles police dictionary attack The FBI has admitted defeat in attempts to break the open source encryption used to secure hard drives seized by Brazilian police during a 2008 investigation. Rev: nc  Read More →

Patch for security holes in Adobe’s Acrobat and Reader versions 9.x Adobe released a long-awaited patch that addresses a number of vulnerabilities in versions of its Acrobat Pro and Reader offerings. Rev: nc  Read More →

And cheaper 128-bit AES iStorage has announced a new version of its unusual PIN security diskGenie portable hard drive based on solid-state (SSD) drive technology. Rev: nc  Read More →