http://www.windowsitpro.com/authors/author/author/4188404/rss/4188404en-USSun, 27 May 2012 03:27:10 GMTSun, 27 May 2012 03:27:10 GMThttp://www.windowsitpro.com/article/security/microsoft-releases-5-critical-patches
By Mark Joseph Edwards
Microsoft unleashed a series of critical security patches during its September software update cycle.]]>Mark Joseph EdwardsWed, 09 Sep 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/microsoft-releases-5-critical-patcheshttp://www.windowsitpro.com/article/security/wordpress-2-8-4-fixes-a-big-security-hole
By Mark Joseph Edwards
Time to upgrade your Wordpress sites. A vulnerability in versions prior to 2.8.4 could let the bad guys reset passwords. And there’s a nasty worm infiltrating sites based on an older vulnerability in the code.]]>Mark Joseph EdwardsWed, 09 Sep 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/wordpress-2-8-4-fixes-a-big-security-holehttp://www.windowsitpro.com/article/security/how-to-help-secure-http-data-without-ssl
By Mark Joseph Edwards
If you don’t have SSL available to transmit data via HTTP you can still help protect that data during transit using a little jQuery magic.]]>Mark Joseph EdwardsThu, 13 Aug 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/how-to-help-secure-http-data-without-sslhttp://www.windowsitpro.com/article/security/securetweets-for-twitter
By Mark Joseph Edwards
Since Twitter is so hugely popular it makes sense that someone would create a tool to help protect users from malicious URLs within the posts at the site.]]>Mark Joseph EdwardsWed, 12 Aug 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/securetweets-for-twitterhttp://www.windowsitpro.com/article/security/sometimes-the-cookie-doesn-t-crumble
By Mark Joseph Edwards
Ever heard of Flash cookies? They’re often used to track your activity. And sometimes even if you delete them they reappear.]]>Mark Joseph EdwardsWed, 12 Aug 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/sometimes-the-cookie-doesn-t-crumblehttp://www.windowsitpro.com/article/security/making-data-vanish-automatically
By Mark Joseph Edwards
University of Washington researchers have a created a way to automate encryption key expiration, which means data can become inaccessible over a given period of time.]]>Mark Joseph EdwardsThu, 23 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/making-data-vanish-automaticallyhttp://www.windowsitpro.com/article/security/chrome-os-who-would-ve-guessed-
By Mark Joseph Edwards
By now you’ve heard the news that Google will eventually release an operating system called Chrome OS. There’s no big surprise there. But the future of desktops might become surprising. ]]>Mark Joseph EdwardsThu, 23 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/chrome-os-who-would-ve-guessed-http://www.windowsitpro.com/article/security/firefox-s-future-content-security-policy
By Mark Joseph Edwards
It appears that Firefox will gain some much-needed Content Security Policy (CSP) that will help defend against XSS attacks, Clickjacking, and packet sniffing.]]>Mark Joseph EdwardsMon, 13 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/firefox-s-future-content-security-policyhttp://www.windowsitpro.com/article/security/sans-reports-internet-explorer-0-day-exploit
By Mark Joseph Edwards
SANS reports (via CSIS in Denmark) that a new 0-day exploit against Microsoft DirectShow is loose on the net.]]>Mark Joseph EdwardsWed, 08 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/sans-reports-internet-explorer-0-day-exploithttp://www.windowsitpro.com/article/security/kon-boot-lets-you-bypass-logon-for-windows-and-linux
By Mark Joseph Edwards
Kon-Boot looks like a very interesting tool since it can get you into a system without having to logon first.]]>Mark Joseph EdwardsWed, 08 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/kon-boot-lets-you-bypass-logon-for-windows-and-linuxhttp://www.windowsitpro.com/article/security/adios-milw0rm
By Mark Joseph Edwards
It looks like the popular milw0rm site has gone offline - possibly never to return.]]>Mark Joseph EdwardsWed, 08 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/adios-milw0rmhttp://www.windowsitpro.com/article/security/wireshark-1-2-0-sports-lots-of-new-features
By Mark Joseph Edwards
Wireshark 1.2.0 is out. The new version of this popular packet sniffer includes many new features, including GeoIP integration, a 64-bit Windows installer, and more.]]>Mark Joseph EdwardsWed, 01 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/wireshark-1-2-0-sports-lots-of-new-featureshttp://www.windowsitpro.com/article/security/securebrowsing-extension-for-ie-and-firefox
By Mark Joseph Edwards
Finjan released SecureBrowsing, which is a browser extension than scan Web pages in realtime to detect potentially malicious content.]]>Mark Joseph EdwardsWed, 01 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/securebrowsing-extension-for-ie-and-firefoxhttp://www.windowsitpro.com/article/security/will-icann-ban-top-level-dns-wildcarding-
By Mark Joseph Edwards
Some registrars use wildcard DNS systems to redirect users to their own sites when a DNS lookup fails, which can occur in a variety of circumstances. ICANN’s Security and Stability Advisory Committee wants to ban the practice.]]>Mark Joseph EdwardsWed, 01 Jul 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/will-icann-ban-top-level-dns-wildcarding-http://www.windowsitpro.com/article/security/sniffing-browser-history-without-javascript
By Mark Joseph Edwards
Someone discovered a way to sniff sites from your browser history without using Javascript. Instead it uses an iframe that loads a server-side PHP script to do all the heavy lifting.]]>Mark Joseph EdwardsWed, 17 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/sniffing-browser-history-without-javascripthttp://www.windowsitpro.com/article/security/iphone-recovery-over-usb
By Mark Joseph Edwards
Jonathan Zdziarski’s hour-long presentation regarding iPhone Forensics is now online at YouTube.]]>Mark Joseph EdwardsWed, 17 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/iphone-recovery-over-usbhttp://www.windowsitpro.com/article/security/gmail-to-go-with-https-by-default
By Mark Joseph Edwards
Webmail is inherently insecure for several different reasons - one of which being that without SSL your correspondence is easily sniffed and possibly even stored in your browser’s cache.]]>Mark Joseph EdwardsWed, 17 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/gmail-to-go-with-https-by-defaulthttp://www.windowsitpro.com/article/security/google-posts-top-10-malware-sites
By Mark Joseph Edwards
Google released some statistics that reveal the top 10 malware sites in the world according to their site scanning research. You might want to blacklist all of them.]]>Mark Joseph EdwardsThu, 11 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/google-posts-top-10-malware-siteshttp://www.windowsitpro.com/article/security/strongwebmail-weak-on-the-inside
By Mark Joseph Edwards
Last week I mentioned StrongWebMail - a company that claimed they offer the strongest Web mail on the planet. That claim was proven false when a team of researchers bypassed security using an obvious inroad.]]>Mark Joseph EdwardsWed, 10 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/strongwebmail-weak-on-the-insidehttp://www.windowsitpro.com/article/security/more-firefox-add-on-controversy-and-an-impending-fix-
By Mark Joseph Edwards
Firefox users were up in arms over a Microsoft .NET extension that was silently installed without direct user approval. The extension was a bit tedious to remove for some people. Mozilla could move to at least alert users of such an installation.]]>Mark Joseph EdwardsWed, 10 Jun 2009 00:00:00 GMThttp://www.windowsitpro.com/article/security/more-firefox-add-on-controversy-and-an-impending-fix-