Google Alert - Vulnerabilities

=== News - 4 new results for [Vulnerabilities] ===

Annual Symantec Internet Security Threat Report Reveals 81 Percent Increase
in ...
MarketWatch (press release)
(NASDAQ:SYMC) today announced the findings of its Internet Security Threat
Report, Volume 17, which shows that while the number of vulnerabilities
decreased by 20 percent, the number of malicious attacks continued to
skyrocket by 81 percent.
<http://www.marketwatch.com/story/annual-symantec-internet-security-threat-report-reveals-81-percent-increase-in-malicious-attacks-2012-04-30?reflink=MW_news_stmp>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/annual-symantec-internet-security-threat-report-reveals-81-percent-increase-in-malicious-attacks-2012-04-30%3Freflink%3DMW_news_stmp&hl=en&geo=us>

Symantec Threat Report: Malicious Attacks Up 81 Per Cent
ITProPortal
On the other hand, the better news was that new vulnerabilities discovered
decreased by 20 per cent, a significant drop. Although as Symantec notes,
this is partially a reflection of the amount of cyber-ne'er-do-wells who
are adopting easy to use ...
<http://www.itproportal.com/2012/04/29/symantec-threat-report-malicious-attacks-up-81-per-cent/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itproportal.com/2012/04/29/symantec-threat-report-malicious-attacks-up-81-per-cent/&hl=en&geo=us>

Loonie 6-Month Lead at Risk as First G-7 Rate Gain Looms
Bloomberg
'Vulnerabilities Exposed' The average home price is about 4.75 times
income, compared with a historical average of 3.5 times, Carney told the
House of Commons Finance Committee April 24 in Ottawa. "As soon as
something happens to challenge the ability ...
<http://www.bloomberg.com/news/2012-04-30/loonie-6-month-lead-at-risk-as-first-g-7-rate-gain-looms.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.bloomberg.com/news/2012-04-30/loonie-6-month-lead-at-risk-as-first-g-7-rate-gain-looms.html&hl=en&geo=us>

Flashback malware exposes big gaps in Apple security response
ZDNet (blog)
They had to do a lot of work to check the code to find mistakes and
vulnerabilities. Now it's time for Apple [to do that]. Let's be clear: Both
Microsoft and Apple are victims of organized crime in all of these attacks,
and they're in the unenviable ...
<http://www.zdnet.com/blog/bott/flashback-malware-exposes-big-gaps-in-apple-security-response/4904>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/blog/bott/flashback-malware-exposes-big-gaps-in-apple-security-response/4904&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

Defense to spy on its own data // April 26, 2012
Nextgov
The patented Passive Vulnerability Scanner is one of several new
surveillance systems that the Defense Information Systems Agency, the
Pentagon's information technology support arm, is delivering to military
services and select intelligence agencies ...
<http://www.nextgov.com/cybersecurity/2012/04/defense-spy-its-own-data/55428/?oref=dropdown>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.nextgov.com/cybersecurity/2012/04/defense-spy-its-own-data/55428/%3Foref%3Ddropdown&hl=en&geo=us>

Voluntary Internet filtering for smartphones leaves security holes
Mainichi Daily News
As smartphones have spread in use, so has their availability to children,
but three years after filtering software was imposed on regular cell
phones, smartphones have shown vulnerabilities. Digital Arts, a company
that sells filtering software for ...
<http://mainichi.jp/english/english/features/news/20120429p2a00m0na002000c.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://mainichi.jp/english/english/features/news/20120429p2a00m0na002000c.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

Telecommunications advisory panel to address supply chain vulnerabilities
on ...
Government Security News
Committee members will receive a briefing on supply chain threats and how
the government can best mitigate those vulnerabilities without impeding
commerce. "Disclosure of these vulnerabilities would provide a road map
to criminals who wish to increase ...
<http://www.gsnmagazine.com/node/26225?c=communications>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.gsnmagazine.com/node/26225%3Fc%3Dcommunications&hl=en&geo=us>

Conficker worm a continuing threat: Microsoft
Hindustan Times
In examining the reasons behind Conficker's prevalence in organizations,
research showed that 92 percent of Conficker infections were a result of
weak or stolen passwords, and eight percent of infections exploited
vulnerabilities for which a security ...
<http://www.hindustantimes.com/technology/BusinessComputing-Updates/Conficker-worm-a-continuing-threat-Microsoft/SP-Article1-846899.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.hindustantimes.com/technology/BusinessComputing-Updates/Conficker-worm-a-continuing-threat-Microsoft/SP-Article1-846899.aspx&hl=en&geo=us>

Google details Chrome browser security-testing technology
Network World
Since its full deployment late last year, ClusterFuzz has flagged 95 unique
vulnerabilities, 44 of which were fixed before making it into the most
recent stable release of the browser, according to a Google blog post. In
addition to benefiting users of ...
<http://www.networkworld.com/news/2012/042612-google-details-chrome-browser-security-testing-258737.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.networkworld.com/news/2012/042612-google-details-chrome-browser-security-testing-258737.html&hl=en&geo=us>

Conficker Worm Could Have Been Stopped by Basic Security
Midsize Insider
Conficker first burst onto the scene in late 2008, infecting PCs using a
vulnerability found in most versions of Windows. Microsoft had recently
released a patch to close the security hole, but that didn't stop the worm
from infecting a large number of ...
<http://midsizeinsider.com/en-us/article/conficker-worm-could-have-been-stopped-b>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://midsizeinsider.com/en-us/article/conficker-worm-could-have-been-stopped-b&hl=en&geo=us>

Oracle provides Java fixes directly to Mac users
Macworld
Apple eventually fixed the Java vulnerability with a Software Update
release, though you can't help but think that Flashback could have been
avoided entirely with an up-to-date Java. Hopefully, exploited Java
vulnerabilities will be a thing of the past ...
<http://www.macworld.com/article/1166603/oracle_provides_java_fixes_directly_to_mac_users.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.macworld.com/article/1166603/oracle_provides_java_fixes_directly_to_mac_users.html&hl=en&geo=us>

Sophos Finds Traces Of New Mac Malware, Windows Users Should Also Take Note
RedOrbit
Just like the 2 recent malware attacks which topped the headlines for weeks
now, this new malware attack takes advantage of the same Java vulnerability
which has been patched on Linux, Mac and Windows operating systems. Those
who have yet to install ...
<http://www.redorbit.com/news/technology/1112523559/sophos-finds-traces-of-new-mac-malware-windows-users-should-also-take-note/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.redorbit.com/news/technology/1112523559/sophos-finds-traces-of-new-mac-malware-windows-users-should-also-take-note/&hl=en&geo=us>

What a ClusterFuzz: Google details Chrome security
SlashGear
Over the past few months, the cluster has caught 95 unique vulnerabilities,
and 44 of those were fixed before final browser releases. Google hopes to
improve the system so that it catches even more regressions in the future.
<http://www.slashgear.com/what-a-clusterfuzz-google-details-chrome-security-27225050/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.slashgear.com/what-a-clusterfuzz-google-details-chrome-security-27225050/&hl=en&geo=us>

Google uses 'fuzzing' to automate Chrome security tests
The Verge
ClusterFuzz was brought online at the end of last year, and since that time
it has identified 95 vulnerabilities and was able to find fixes for 44 of
them before they were rolled into a stable release. This rapid security
testing benefits not only ...
<http://www.theverge.com/web/2012/4/27/2981781/google-uses-fuzzing-automate-chrome-security>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theverge.com/web/2012/4/27/2981781/google-uses-fuzzing-automate-chrome-security&hl=en&geo=us>

Order aims to protect troops from predatory school recruiters
GovExec.com
The order cites examples of institutions targeting veterans with serious
brain injuries and emotional vulnerabilities without providing academic
support and counseling. Vets have been encouraged to take out costly loans
instead of federal student loans ...
<http://www.govexec.com/defense/2012/04/order-aims-protect-troops-predatory-school-recruiters/55453/?oref=river>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.govexec.com/defense/2012/04/order-aims-protect-troops-predatory-school-recruiters/55453/%3Foref%3Driver&hl=en&geo=us>

Hacker could take over traffic and railroad control systems using backdoor
Infosecurity Magazine
Researchers Terry McCorkle and Billy Rios have identified a number of
vulnerabilities in the Invensys Wonderware Information Server that could
enable a denial-of-service attack, information disclosure, remote code
execution, or session credential ...
<http://www.infosecurity-magazine.com/view/25424/hacker-could-take-over-traffic-and-railroad-control-systems-using-backdoor>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infosecurity-magazine.com/view/25424/hacker-could-take-over-traffic-and-railroad-control-systems-using-backdoor&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Researcher Warns of Vulnerabilities in Samsung Devices
eSecurity Planet
"Auriemma claims that the vulnerabilities will affect all Samsung devices
with support for remote controllers, and that the vulnerable protocol is on
both TVs and Blu-Ray enabled devices," writes Threatpost's Brian Donohue.
"One of the bugs leads to a ...
<http://www.esecurityplanet.com/network-security/researcher-warns-of-vulnerabilities-in-samsung-devices.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/network-security/researcher-warns-of-vulnerabilities-in-samsung-devices.html&hl=en&geo=us>

Be Careful What You Share -- Numerous Vulnerabilities Found in Storage
Devices
MarketWatch (press release)
However, Codenomicon will not disclose any details of the vulnerabilities
publicly in order to protect the users of those devices. This research is
part of a series of publications in testing embedded devices used by home
consumers.
<http://www.marketwatch.com/story/be-careful-what-you-share-numerous-vulnerabilities-found-in-storage-devices-2012-04-26>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/be-careful-what-you-share-numerous-vulnerabilities-found-in-storage-devices-2012-04-26&hl=en&geo=us>

Google Details Chrome Browser Security-testing Technology
PCWorld
By Juan Carlos Perez, IDG News Since late last year, Google has been using
an industrial-strength testing system to identify, analyze and fix security
holes in its Chrome browser, helping it significantly cut down on the
number of vulnerabilities that ...
<http://www.pcworld.com/article/254553/google_details_chrome_browser_securitytesting_technology.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/article/254553/google_details_chrome_browser_securitytesting_technology.html&hl=en&geo=us>

Conficker worm a continuing threat: Microsoft
Zee News
The Microsoft Security Intelligence Report volume 12 (SIRv12) also revealed
the worm continues to spread because of weak or stolen passwords and
vulnerabilities for which a security update exists. The study analyzes data
from more than 600 million ...
<http://zeenews.india.com/news/net-news/conficker-worm-a-continuing-threat-microsoft_771887.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://zeenews.india.com/news/net-news/conficker-worm-a-continuing-threat-microsoft_771887.html&hl=en&geo=us>

Black Hat Expands Content Review Board
Sacramento Bee
Chris has discovered and published numerous security vulnerabilities
affecting web browsers, operating systems and more. He has spoken at
industry conferences including Black Hat and is the author of numerous open
source security tools Chris Wysopal, ...
<http://www.sacbee.com/2012/04/26/4445020/black-hat-expands-content-review.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sacbee.com/2012/04/26/4445020/black-hat-expands-content-review.html&hl=en&geo=us>

America's Stuxnet? Weakness found in systems used by Pentagon, power grid
MinnPost.com
The vulnerability means that hackers or other nations could potentially
take control of elements within crucial American infrastructure — from
refineries to power plants to missile systems — sabotaging their ability
to operate from within.
<http://www.minnpost.com/christian-science-monitor/2012/04/americas-stuxnet-weakness-found-systems-used-pentagon-power-grid>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.minnpost.com/christian-science-monitor/2012/04/americas-stuxnet-weakness-found-systems-used-pentagon-power-grid&hl=en&geo=us>

'Computer worm targetting Windows operating system detected'
Economic Times
The worm continues to spread because of weak or stolen passwords and
infections exploited vulnerabilities, the report added. "92 per cent of
Conficker infections were a result of weak or stolen passwords, and 8 per
cent of infections exploited ...
<http://economictimes.indiatimes.com/tech/software/computer-worm-targetting-windows-operating-system-detected/articleshow/12884371.cms>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://economictimes.indiatimes.com/tech/software/computer-worm-targetting-windows-operating-system-detected/articleshow/12884371.cms&hl=en&geo=us>

Google Increases Bug Award to $20000
Tom's Hardware Guide
Despite the increase in reward money for some bugs, Google said that it
will now pay less for vulnerabilities in non-integrated acquisitions and
for lower risk issues. "For example, while every flaw deserves appropriate
attention, we are likely to ...
<http://www.tomshardware.com/news/google-bu-bounty-reward,15456.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.tomshardware.com/news/google-bu-bounty-reward,15456.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

ControlPanelGRC Issues New Always Audit Ready(TM) Series Paper on SAP(R ...
MarketWatch (press release)
SAP, as the enterprise system of record for thousands of organizations, is
critical to a company's success yet many executives don't know how SAP
security vulnerabilities can impact audits or other compliance efforts.
These security risks can result in ...
<http://www.marketwatch.com/story/controlpanelgrc-issues-new-always-audit-readytm-series-paper-on-sapr-security-vulnerabilities-2012-04-25>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/controlpanelgrc-issues-new-always-audit-readytm-series-paper-on-sapr-security-vulnerabilities-2012-04-25&hl=en&geo=us>

Microsoft: Conficker biggest security threat
Times of India
The study revealed the worm continues to spread because of weak or stolen
passwords and vulnerabilities for which a security update exists.
WASHINGTON: Microsoft Corp has released the Microsoft Security Intelligence
Report volume 12 (SIRv12), ...
<http://timesofindia.indiatimes.com/tech/enterprise-it/security/Microsoft-Conficker-biggest-security-threat/articleshow/12878746.cms>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://timesofindia.indiatimes.com/tech/enterprise-it/security/Microsoft-Conficker-biggest-security-threat/articleshow/12878746.cms&hl=en&geo=us>

Microsoft: Two Basic Security Steps Might Have Stopped Conficker
PCWorld
According to the latest Microsoft Security Intelligence report, all cases
of Conficker infection stemmed from just two attack methods: weak or stolen
passwords and exploiting software vulnerabilities for which updates
existed. So using strong passwords ...
<http://www.pcworld.com/businesscenter/article/254497/microsoft_two_basic_security_steps_might_have_stopped_conficker.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/254497/microsoft_two_basic_security_steps_might_have_stopped_conficker.html&hl=en&geo=us>

LAN Attack Can Put Some Samsung TVs in Endless Restart Loop
PCWorld
By Lucian Constantin, IDG-News-Service:Romania-Bureau A vulnerability in
the firmware of several network-enabled Samsung TV models and possibly
Blu-ray players allows potential attackers to put the vulnerable devices
into an endless restart loop that ...
<http://www.pcworld.com/businesscenter/article/254455/lan_attack_can_put_some_samsung_tvs_in_endless_restart_loop.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/254455/lan_attack_can_put_some_samsung_tvs_in_endless_restart_loop.html&hl=en&geo=us>

Anonymous Hackers' New Best Friend: Automation
InformationWeek
Anonymous hacktivists and crime syndicates favor free, automated tools to
easily and quickly exploit website vulnerabilities. How can enterprises
fight back? By Mathew J. Schwartz InformationWeek How did an Austrian
teenager who's confessed to hacking ...
<http://www.informationweek.com/news/security/management/232900947>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/news/security/management/232900947&hl=en&geo=us>

IMF: Vulnerabilities Remain in Spain Banking System
MNI News
WASHINGTON (MNI) - While Spain's largest banks "appear sufficiently
capitalized," vulnerabilities remain in the banking system, especially
smaller banks dependent on state funding, and points to the need for
continued reform of the sector, ...
<http://mninews.deutsche-boerse.com/content/imf-vulnerabilities-remain-spain-banking-system>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://mninews.deutsche-boerse.com/content/imf-vulnerabilities-remain-spain-banking-system&hl=en&geo=us>

Metro derailment points to 'major vulnerabilities'
WTOP
"That is one of the major vulnerabilities of the system," says the source.
"It will only get worse when the rail to Dulles opens." Tuesday's
derailment happened in the area of a track switch that determines whether
trains follow the Blue or Orange Line ...
<http://www.wtop.com/?nid=654&sid=2841090>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.wtop.com/%3Fnid%3D654%26sid%3D2841090&hl=en&geo=us>

Microsoft Security Report: Conficker Still Top Security Concern
Redmondmag.com
"This trend is likely because of better development practices and quality
control throughout the industry, which results in more secure software and
fewer vulnerabilities from major vendors, who are most likely to have their
vulnerabilities associated ...
<http://redmondmag.com/articles/2012/04/25/conficker-still-top-security-concern.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://redmondmag.com/articles/2012/04/25/conficker-still-top-security-concern.aspx&hl=en&geo=us>

Microsoft Security Intelligence Report Warns of Ongoing Conficker Threat
and ...
MarketWatch (press release)
The study also revealed the worm continues to spread because of weak or
stolen passwords and vulnerabilities for which a security update exists.
According to the SIRv12, quarterly detections of the Conficker worm have
increased by more than 225 percent ...
<http://www.marketwatch.com/story/microsoft-security-intelligence-report-warns-of-ongoing-conficker-threat-and-clarifies-reality-of-targeted-attacks-2012-04-25>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/microsoft-security-intelligence-report-warns-of-ongoing-conficker-threat-and-clarifies-reality-of-targeted-attacks-2012-04-25&hl=en&geo=us>

Microsoft: Conficker still the top corporate network threat
CSO
On the rise are exploits that are carried out via vulnerabilities in HTML
and Java Script, which are up steeply in the second half of 2011, the
period covered by the report, Rains says. He did not quantify that jump.
Much of the increase can be blamed ...
<http://www.csoonline.com/article/704962/microsoft-conficker-still-the-top-corporate-network-threat>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.csoonline.com/article/704962/microsoft-conficker-still-the-top-corporate-network-threat&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Google Vulnerability Reward Program increases, Microsoft unfazed
TechTarget
Google has increased the bounty for reporting vulnerabilities that could
allow for code execution to $20000 as part of a larger change to the rules
of its Vulnerability Reward Program. Meanwhile, Microsoft remains steadfast
in its stance against paying ...
<http://searchsecurity.techtarget.com/news/2240149053/Google-Vulnerability-Reward-Program-increases-Microsoft-unfazed>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://searchsecurity.techtarget.com/news/2240149053/Google-Vulnerability-Reward-Program-increases-Microsoft-unfazed&hl=en&geo=us>

Google Announces Huge Increase in Vulnerability Rewards
eSecurity Planet
By Jeff Goldman | April 24, 2012 Google recently announced a new set of
rules for its Vulnerability Reward Program, adding a $20000 bounty for
qualifying vulnerabilities that allow code execution on the company's
production systems, and $10000 for SQL ...
<http://www.esecurityplanet.com/network-security/google-announces-huge-increase-in-vulnerability-rewards.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/network-security/google-announces-huge-increase-in-vulnerability-rewards.html&hl=en&geo=us>

Google Ups Bounty for Security Flaws to $20000
eWeek
The search giant is looking to encourage security pros and hackers who find
vulnerabilities in Google products to seek the company's reward rather than
sell them elsewhere. Google is increasing the amount of money it's willing
to pay to security ...
<http://www.eweek.com/c/a/Security/Google-Ups-Bounty-for-Security-Flaws-to-20000-751428/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.eweek.com/c/a/Security/Google-Ups-Bounty-for-Security-Flaws-to-20000-751428/&hl=en&geo=us>

Google's Vulnerability Program ups the ante for helpful hackers
Engadget
Previously, the search giant had set a max payout of $3133.7 for any
discovered vulnerabilities (a bizarre sum, we know), but that cap has now
seen an increase up to $20000 depending on the severity of the reported
bug. For a company with billion ...
<http://www.engadget.com/2012/04/24/googles-vulnerability-program-ups-the-ante-for-helpful-hackers/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.engadget.com/2012/04/24/googles-vulnerability-program-ups-the-ante-for-helpful-hackers/&hl=en&geo=us>

HP: Security vulnerabilities fewer, but deadlier
FierceCIO
Despite a downward trend in the volume of vulnerabilities, the risks posed
by security flaws are growing. So says Hewlett-Packard in its "Top
Cyber-Security Risks Report," released last week. To support its assertion,
HP (NYSE: HPQ) furnished numbers ...
<http://www.fiercecio.com/techwatch/story/hp-security-vulnerabilities-fewer-deadlier/2012-04-24>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.fiercecio.com/techwatch/story/hp-security-vulnerabilities-fewer-deadlier/2012-04-24&hl=en&geo=us>

CORE Security Announces CORE Insight Enterprise 2.0
Dark Reading
"By offering scanning, simulation, reporting and vulnerability
remediation in Insight 2.0, CORE Security has taken a major step in
delivering a single platform that provides actionable intelligence. As
important, the solution allows for the ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/232900883/core-security-announces-core-insight-enterprise-2-0.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/232900883/core-security-announces-core-insight-enterprise-2-0.html&hl=en&geo=us>

New Findings Support Theory that Smoking Causes Depression
PsychCentral.com
Although the link between smoking and depression is well-documented, the
results support the causal hypothesis regarding smoking and depression
rather than simply the "shared-vulnerability" hypothesis. "Under the
shared-vulnerability hypothesis, ...
<http://psychcentral.com/news/2012/04/24/new-findings-support-theory-that-smoking-causes-depression/37734.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://psychcentral.com/news/2012/04/24/new-findings-support-theory-that-smoking-causes-depression/37734.html&hl=en&geo=us>

Veracode Study of Software Related Cybersecurity Risks in Public
Companies ...
MarketWatch (press release)
Unlike previous Veracode State of Software Security reports, this feature
supplement hones in particularly on the vulnerabilities in the software
applications of publicly traded companies, following new SEC guidance
issued in the US last year relating ...
<http://www.marketwatch.com/story/veracode-study-of-software-related-cybersecurity-risks-in-public-companies-finds-that-majority-of-applications-are-a-risk-2012-04-24>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/veracode-study-of-software-related-cybersecurity-risks-in-public-companies-finds-that-majority-of-applications-are-a-risk-2012-04-24&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Google boosts Web bug bounties to $20000
Computerworld
The Vulnerability Reward Program (VRP) will now pay $20000 for
vulnerabilities that allow remote code execution against google.com,
youtube.com and other core domains, as well as what the company called
"highly sensitive services" such as its search ...
<http://www.computerworld.com/s/article/9226476/Google_boosts_Web_bug_bounties_to_20_000>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9226476/Google_boosts_Web_bug_bounties_to_20_000&hl=en&geo=us>

WordPress Security Update Patches External Libraries, Several
Vulnerabilities
PCWorld
By Lucian Constantin, IDG-News-Service:Romania-Bureau The WordPress
development team released WordPress 3.3.2 on Friday in order to address
several vulnerabilities in the popular blogging platform as well as in
three external libraries that are bundled ...
<http://www.pcworld.com/businesscenter/article/254291/wordpress_security_update_patches_external_libraries_several_vulnerabilities.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/254291/wordpress_security_update_patches_external_libraries_several_vulnerabilities.html&hl=en&geo=us>

Google Bumps Its Rewards For Friendly Hackers To As Much As $20000 Per Web
Bug
Forbes
On Monday Google announced that it's now offering as much as $20000 to
researchers who find new ways to hack its web services and then report
those security vulnerabilities to the company's security team to help them
fix the flaws.
<http://www.forbes.com/sites/andygreenberg/2012/04/23/google-bumps-its-rewards-for-friendly-hackers-to-as-much-as-20000-per-bug/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.forbes.com/sites/andygreenberg/2012/04/23/google-bumps-its-rewards-for-friendly-hackers-to-as-much-as-20000-per-bug/&hl=en&geo=us>

Google ups cash reward for being hacked
CNET
Many of the Web giant's products are susceptible to attacks -- that's why
the Web giant says it will now pay up to $20000 for anyone to find
"qualifying vulnerabilities." by Dara Kerr April 23, 2012 8:29 PM PDT
Follow @darakerr In an effort to cut down ...
<http://news.cnet.com/8301-1009_3-57419595-83/google-ups-cash-reward-for-being-hacked/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://news.cnet.com/8301-1009_3-57419595-83/google-ups-cash-reward-for-being-hacked/&hl=en&geo=us>

Google quintuples maximum bug bounty to $20000
ZDNet (blog)
Google today announced it is rolling out updated rules for its
Vulnerability Reward Program, in celebration of the program's recent
anniversary. These include new reward amounts for the various bugs security
researchers disclose.
<http://www.zdnet.com/blog/security/google-quintuples-maximum-bug-bounty-to-20000/11698>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/blog/security/google-quintuples-maximum-bug-bounty-to-20000/11698&hl=en&geo=us>

WordPress 3.3.2 is out
ZDNet (blog)
It fixes a multitude of security vulnerabilities both in the main software
and in external libraries for the blogging tool. WordPress has announced a
new security update for all previous versions of its free and open source
blogging tool.
<http://www.zdnet.com/blog/security/wordpress-332-is-out/11678>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/blog/security/wordpress-332-is-out/11678&hl=en&geo=us>

LogRhythem, Qualys, partner on SIEM/vulnerability management integration
eChannelLine
LogRhythm and Qualys have announced their partnership and the integration
of LogRhythm's best-in-class SIEM 2.0 platform with Qualys' award-winning
QualysGuard Vulnerability Management. The integration of QualysGuard's
accurate vulnerability data with ...
<http://www.echannelline.com/usa/brief.cfm?item=19022>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.echannelline.com/usa/brief.cfm%3Fitem%3D19022&hl=en&geo=us>

CETECOM Selects Codenomicon Defensics for Security Vulnerability Testing
of ...
MarketWatch (press release)
CETECOM will include Codenomicon's vulnerability testing technology as part
of a joint security certification program provided by CETECOM as an
independent third-party test lab. CETECOM becomes a Codenomicon Preferred
Testing Partner.
<http://www.marketwatch.com/story/cetecom-selects-codenomicon-defensics-for-security-vulnerability-testing-of-wireless-devices-and-mobile-applications-2012-04-23>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/cetecom-selects-codenomicon-defensics-for-security-vulnerability-testing-of-wireless-devices-and-mobile-applications-2012-04-23&hl=en&geo=us>

LogRhythm Partners with Qualys to Integrate SIEM 2.0 and QualysGuard ...
EON: Enhanced Online News (press release)
The integration of QualysGuard's accurate vulnerability data with SIEM
2.0's network security event information provides customers with deeper
insight and greater situational awareness for better protection against
cyber threats.
<http://eon.businesswire.com/news/eon/20120423005228/en/LogRhythm/Qualys/QualysGuard>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://eon.businesswire.com/news/eon/20120423005228/en/LogRhythm/Qualys/QualysGuard&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

New Java trojan and old MS Word vulnerabilities need patching
ZDNet (blog)
By David Morgenstern | April 22, 2012, 10:44pm PDT Intego warned of SabPab,
which can exploit the same Java vulnerability as the Flashback trojan.
SabPab is a backdoor that seeks to connect to remote command and control
servers, presumably to harvest ...
<http://www.zdnet.com/blog/apple/new-java-trojan-and-old-ms-word-vulnerabilities-need-patching/12803>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/blog/apple/new-java-trojan-and-old-ms-word-vulnerabilities-need-patching/12803&hl=en&geo=us>

Apple reports higher security vulnerabilities than Microsoft, Google
NDTV
As per the quarterly roundup report of security major Trend Micro, Apple
has claimed the unwanted crown of the technology major with most reported
security vulnerabilities in Q1 2012. As per the report, Apple topped the
list with 91 reported security ...
<http://gadgets.ndtv.com/shownews.aspx?id=GADEN20120200456&Sec=NEWS&nid=201006>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://gadgets.ndtv.com/shownews.aspx%3Fid%3DGADEN20120200456%26Sec%3DNEWS%26nid%3D201006&hl=en&geo=us>

Tough bug bounty programs exclude amateurs
iT News
By Darren Pauli, Marcos Colon on Apr 23, 2012 10:32 AM (1 hour ago) The
number of vulnerabilities reported last year has fallen by nearly a fifth,
leaving a majority of users unaware of smaller, non-critical software
faults, according to researchers.
<http://www.itnews.com.au/News/297963,tough-bug-bounty-programs-exclude-amateurs.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itnews.com.au/News/297963,tough-bug-bounty-programs-exclude-amateurs.aspx&hl=en&geo=us>

Imperva gurus to share security tips at M.Tech events
CSO Magazine
Security-related topics to range from defending against attacks to
cautioning against vulnerabilities in enterprise databases. SYDNEY, April
23, 2012. M.Tech Australia and Imperva announced today that they will host
a joint series of educational events ...
<http://www.cso.com.au/mediareleases/14001/imperva-gurus-to-share-security-tips-at-mtech/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cso.com.au/mediareleases/14001/imperva-gurus-to-share-security-tips-at-mtech/&hl=en&geo=us>

Severe attacks against corporate computers increasing – report
Computing
By Graeme Burton Known vulnerabilities in commercial applications are
declining, but 'severe' attacks have increased against both client/server
and web applications, according to HP's 2011 Top Cyber Security Risks
report. New vulnerabilities in ...
<http://www.computing.co.uk/ctg/news/2169448/severe-attacks-corporate-computers-increasing-report>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computing.co.uk/ctg/news/2169448/severe-attacks-corporate-computers-increasing-report&hl=en&geo=us>

TV-based botnets? DoS attacks on your fridge? More plausible than you think
Ars Technica
By Dan Goodin | Published April 22, 2012 6:00 PM It's still premature to
say you need firewall or antivirus protection for your television set, but
a duo of recently diagnosed firmware vulnerabilities in widely used TV
models made by two leading ...
<http://arstechnica.com/business/news/2012/04/tv-based-botnets-ddos-attacks-on-your-fridge-more-plausible-than-you-think.ars?clicked=related_right>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://arstechnica.com/business/news/2012/04/tv-based-botnets-ddos-attacks-on-your-fridge-more-plausible-than-you-think.ars%3Fclicked%3Drelated_right&hl=en&geo=us>

Cow Power topic of PBS series
Barre Montpelier Times Argus
The show, titled "Electric Nation," will explore "the intricacies,
vulnerabilities and remarkable ingenuity required to keep American's modern
electric power grid up and running." PBS host Yul Kwon visited Blue
Spruce Farm in Bridport, where co-owner ...
<http://www.timesargus.com/article/20120423/BUSINESS03/704239972/1006/BUSINESS>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.timesargus.com/article/20120423/BUSINESS03/704239972/1006/BUSINESS&hl=en&geo=us>

Chelsea can grab a result at Barcelona, says Arsène Wenger
The Guardian
The subject had turned to something more exciting than this derby stalemate
and the Arsenal manager highlighted Barcelona's vulnerabilities and why it
is "far from impossible" that Chelsea will overcome them in the Champions
League semi-final second ...
<http://www.guardian.co.uk/football/2012/apr/22/arsenal-chelsea-arsene-wenger?newsfeed=true>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.guardian.co.uk/football/2012/apr/22/arsenal-chelsea-arsene-wenger%3Fnewsfeed%3Dtrue&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

Mac Flashback Attack Started With Compromised WordPress Blogs
eWeek
"This was because Apple never uses patches from Oracle and creates its
own patches to close Java vulnerabilities," he wrote. "The [Apple]
patch for Mac OS X which closed the … vulnerability was released in early
April." Such a two-month delay is ...
<http://www.eweek.com/c/a/Security/Mac-Flashback-Attack-Started-With-Compromised-WordPress-Blogs-345275/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.eweek.com/c/a/Security/Mac-Flashback-Attack-Started-With-Compromised-WordPress-Blogs-345275/&hl=en&geo=us>

Romney must learn from primary errors
TheReporter.com
Yet Romney gave his GOP opponents openings with verbal gaffes that
highlighted his vulnerabilities. He let states such as South Carolina and
Colorado slip away, unexpected losses that extended the campaign for the
nomination and prevented Romney from ...
<http://www.thereporter.com/news/ci_20454636/romney-must-learn-from-primary-errors>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.thereporter.com/news/ci_20454636/romney-must-learn-from-primary-errors&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Defense Information Systems Agency Selects HP to Enhance Assessment of ...
MarketWatch (press release)
The work performed will help enhance the DoD's ability to detect IT system
vulnerabilities, ensuring improved and efficient security. Under the terms
of the contract, the Assured Compliance Assessment Solution (ACAS) will be
available for ...
<http://www.marketwatch.com/story/defense-information-systems-agency-selects-hp-to-enhance-assessment-of-networks-for-vulnerabilities-2012-04-20?reflink=MW_news_stmp>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/defense-information-systems-agency-selects-hp-to-enhance-assessment-of-networks-for-vulnerabilities-2012-04-20%3Freflink%3DMW_news_stmp&hl=en&geo=us>

Top 5 WordPress Vulnerabilities and How to Fix Them
eSecurity Planet
The following five strategies can help any WordPress installation become
significantly more secure, and raise awareness of the types of
vulnerabilities to defend against. The problem: WordPress is a
database-backed platform that executes server-side ...
<http://www.esecurityplanet.com/open-source-security/top-5-wordpress-vulnerabilities-and-how-to-fix-them.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/open-source-security/top-5-wordpress-vulnerabilities-and-how-to-fix-them.html&hl=en&geo=us>

For some hacks, everything old is new again
GCN.com
What struck me from the report was the persistence of vulnerabilities in
software — both in newly developed applications and in deployed
applications that have not been patched — and how successfully they are
being exploited. The rate of disclosure ...
<http://gcn.com/articles/2012/04/20/cybereye-reports-software-vulnerabilites-persist.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://gcn.com/articles/2012/04/20/cybereye-reports-software-vulnerabilites-persist.aspx&hl=en&geo=us>

Apple Security: Products Surprisingly Vulnerable, Studies Find
Huffington Post
According to PCWorld, a report recently released by Internet security firm
Trend Micro shows that Apple posted the highest number of reported security
vulnerabilities during the first three months of 2012, leading all other OS
and software vendors with ...
<http://www.huffingtonpost.com/2012/04/20/apple-security_n_1440331.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.huffingtonpost.com/2012/04/20/apple-security_n_1440331.html&hl=en&geo=us>

100 million users might be affected by a social network vulnerability
Inquirer
The students told Ning about the exploit last month and since then the firm
has worked to fix it. This is not the first time that security students
have worked with Ning, and last year students reported five vulnerabilities
that included the threat of ...
<http://www.theinquirer.net/inquirer/news/2169403/100-million-users-affected-social-network-vulnerability>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theinquirer.net/inquirer/news/2169403/100-million-users-affected-social-network-vulnerability&hl=en&geo=us>

Integrating Security Into Software Development
AllAfrica.com
Once software has gone operational, vulnerabilities may be discovered and
security patches and updates must be applied to incorporate these
shortcomings. Any software system that runs on a network-connected platform
has its vulnerabilities exposed ...
<http://allafrica.com/stories/201204200837.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://allafrica.com/stories/201204200837.html&hl=en&geo=us>

WordPress releases version 3.3.2 as a security update, fixes 11
vulnerabilities
The Next Web
WordPress has just released version 3.3.2, which is a security update that
resolves a number of vulnerabilities found in previous releases. According
to the announcement, three external libraries included in WordPress
received security updates: ...
<http://thenextweb.com/apps/2012/04/20/wordpress-releases-version-3-3-2-as-a-security-update-fixes-11-vulnerabilities/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://thenextweb.com/apps/2012/04/20/wordpress-releases-version-3-3-2-as-a-security-update-fixes-11-vulnerabilities/&hl=en&geo=us>

Oracle Issues 88 Security Fixes
IT Business Edge (blog)
Oracle announced that it released 88 security patches for vulnerabilities
in 35 products. Of course, Oracle has Patch Quarters (as opposed to
Microsoft's monthly Patch Tuesday). However, as Wolfgang Kandek at Qualys
said in his blog post: From using ...
<http://www.itbusinessedge.com/cm/blogs/poremba/oracle-issues-88-security-fixes/?cs=50264>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itbusinessedge.com/cm/blogs/poremba/oracle-issues-88-security-fixes/%3Fcs%3D50264&hl=en&geo=us>

Tenable Network Security Named Assured Compliance Assessment Solution for
the ...
Citybizlist (press release)
Tenable's technology was selected by DISA because it met DISA's
requirements for a fully-integrated vulnerability assessment platform
offering. Tenable's technology offers: • Continuous visibility across the
enterprise by coupling active and passive ...
<http://dc.citybizlist.com/5/2012/4/20/Tenable-Network-Security-Named-Assured-Compliance-Assessment-Solution-for-the-Defense-Information-Systems-Agency.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://dc.citybizlist.com/5/2012/4/20/Tenable-Network-Security-Named-Assured-Compliance-Assessment-Solution-for-the-Defense-Information-Systems-Agency.aspx&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

HP: Fewer security vulnerabilities reported, but risk escalating
ZDNet (blog)
Fewer security vulnerabilities have been reported on an annual basis since
2006, but that doesn't mean the threats are getting any less severe,
according to Hewlett-Packard. Published on Thursday, HP's 2011 Top Cyber
Security Risks Report tackles what ...
<http://www.zdnet.com/blog/btl/hp-fewer-security-vulnerabilities-reported-but-risk-escalating/74862>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/blog/btl/hp-fewer-security-vulnerabilities-reported-but-risk-escalating/74862&hl=en&geo=us>

HP: Fewer but More Dangerous Software Security Vulnerabilities
eWeek
The number of disclosed software vulnerabilities continues to fall, but the
risk level of those that are around is climbing, HP says in its latest
security report. Hewlett-Packard officials are saying that the number of
vulnerabilities in commercial ...
<http://www.eweek.com/c/a/Security/HP-Fewer-but-More-Dangerous-Software-Security-Vulnerabilities-819706/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.eweek.com/c/a/Security/HP-Fewer-but-More-Dangerous-Software-Security-Vulnerabilities-819706/&hl=en&geo=us>

HP Research Identifies New Era of Security Risk, Shifting Vulnerability
Landscape
MarketWatch (press release)
Historically, the number of vulnerabilities disclosed in a year indicated
the current state of the security industry and helped organizations
prioritize their defenses. According to the report, pure vulnerability
volume is no longer a valid indicator ...
<http://www.marketwatch.com/story/hp-research-identifies-new-era-of-security-risk-shifting-vulnerability-landscape-2012-04-19?reflink=MW_news_stmp>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/hp-research-identifies-new-era-of-security-risk-shifting-vulnerability-landscape-2012-04-19%3Freflink%3DMW_news_stmp&hl=en&geo=us>

HP Report: More Attacks, Despite Fewer New Vulnerabilities Overall
eSecurity Planet
Attackers are taking advantage of high-severity and unpatched
vulnerabilities, according to HP's Top Cyber Security Risks Report. By Sean
Michael Kerner | April 19, 2012 For years, security vendors have been in an
arms race with hackers.
<http://www.esecurityplanet.com/network-security/hp-report-more-attacks-despite-fewer-new-vulnerabilities-overall.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/network-security/hp-report-more-attacks-despite-fewer-new-vulnerabilities-overall.html&hl=en&geo=us>

Apple Suffers More Vulnerabilities Than Google, Microsoft, Adobe In Last
Quarter
Cult of Mac
In fact, the Cupertino company suffered more vulnerabilities during the
last quarter than rivals like Oracle, Google, Adobe, and even Microsoft.
During the first three months of 2012, Apple reported 91 vulnerabilities in
total, according to the ...
<http://www.cultofmac.com/161822/apple-suffers-more-vulnerabilities-than-google-microsoft-adobe-in-last-quarter/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cultofmac.com/161822/apple-suffers-more-vulnerabilities-than-google-microsoft-adobe-in-last-quarter/&hl=en&geo=us>

Hacktivists, BotNets and More: Top Security Trends and Threats from the
HP ...
BankInfoSecurity.com
In the 2011 Cyber Security Risks Report, HP Enterprise Security provides a
broad view of the vulnerability threat landscape, as well as in-depth
research and analysis on security attacks and trends. This webcast will
highlight the latest threat trends ...
<http://www.bankinfosecurity.com/webinars/hacktivists-botnets-more-top-security-trends-threats-from-hp-w-274>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.bankinfosecurity.com/webinars/hacktivists-botnets-more-top-security-trends-threats-from-hp-w-274&hl=en&geo=us>

Apple tops list of vulnerabilities this quarter, Security Report Says
Macworld UK
Security firm Trend Micro says Apple topped its list of companies hit with
vulnerabilities followed by Oracle, and Google. Apple led all major
technology vendors in reported vulnerabilities in its operating system and
software during the first three ...
<http://www.macworld.co.uk/apple-business/news/?newsid=3352276&pagtype=allchandate>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.macworld.co.uk/apple-business/news/%3Fnewsid%3D3352276%26pagtype%3Dallchandate&hl=en&geo=us>

2 out of 10 spam mails come from India
NDTV
The report also found that Apple, which is considered to have one of the
safest operating systems, has the highest vulnerability. "Apple surpassed
Oracle, Google and Microsoft in reported vulnerabilities, with a total of
91. Oracle came in second, ...
<http://gadgets.ndtv.com/shownews.aspx?id=GADEN20120200168&Sec=NEWS&nid=199952>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://gadgets.ndtv.com/shownews.aspx%3Fid%3DGADEN20120200168%26Sec%3DNEWS%26nid%3D199952&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

Apple, Oracle, Google Lead Major Vendors with Software Vulnerabilities in
Q1 ...
PCWorld
By John P. Mello Jr., PCWorld Apr 18, 2012 11:29 AM Apple led all major
technology vendors in reported vulnerabilities in its operating system and
software during the first three months of 2012, according to a report
released Tuesday by Trend Micro.
<http://www.pcworld.com/article/254039/apple_oracle_google_lead_major_vendors_with_software_vulnerabilities_in_q1_security_report_says.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/article/254039/apple_oracle_google_lead_major_vendors_with_software_vulnerabilities_in_q1_security_report_says.html&hl=en&geo=us>

HP says commercial software vulnerabilities down almost 20% across industry
Network World
By Ellen Messmer, Network World A study done by HP shows that reported
vulnerabilities in commercial software applications dropped dramatically
last year compared with 2010 -- but that there's little reason to feel
complacent since the risk factors for ...
<http://www.networkworld.com/news/2012/041812-hp-security-report-258376.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.networkworld.com/news/2012/041812-hp-security-report-258376.html&hl=en&geo=us>

Oracle Patches 88 Vulnerabilities, Including Some that Allow Remote
Exploits ...
Threatpost (blog)
by Anne Saita Oracle yesterday released 88 security fixes for
vulnerabilities -- including several that allow for remote access without
authentication -- across its portfolio as part of its quarterly Critical
Patch Update. The company issued a Security ...
<http://threatpost.com/en_us/blogs/oracle-patches-88-vulnerabilities-including-some-allow-remote-exploits-without-authentication->
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/oracle-patches-88-vulnerabilities-including-some-allow-remote-exploits-without-authentication-&hl=en&geo=us>

Application Security, Inc.'s TeamSHATTER Discovers Seven Database ...
SunHerald.com
TeamSHATTER researchers have been credited for reporting vulnerabilities in
27 of the 30 Oracle CPUs since the program's inception in 2005. The April
2012 CPU contains a total of 88 security vulnerability fixes cross multiple
Oracle products, ...
<http://www.sunherald.com/2012/04/18/3890929/application-security-incs-teamshatter.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sunherald.com/2012/04/18/3890929/application-security-incs-teamshatter.html&hl=en&geo=us>

New HP Report Shows 19 Percent Drop in Reported Vulnerabilities
Threatpost (blog)
by Anne Saita A new study due for public release Thursday shows
vulnerabilities reported in commercial software applications fell
significantly last year, but almost a quarter of those found were
considered at high risk for exploitation.
<http://threatpost.com/en_us/blogs/new-hp-report-shows-19-percent-drop-reported-vulnerabilities-041812>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/new-hp-report-shows-19-percent-drop-reported-vulnerabilities-041812&hl=en&geo=us>

Apple, Oracle, Google Lead Major Vendors with Software Vulnerabilities ...
CIO India
Apple led all major technology vendors in reported vulnerabilities in its
operating system and software during the first three months of 2012,
according to a report released Tuesday by Trend Micro. Apple reported 91
vulnerabilities during the period, ...
<http://www.cio.in/news/apple-oracle-google-lead-major-vendors-software-vulnerabilities-q1-security-report-says-2515120>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cio.in/news/apple-oracle-google-lead-major-vendors-software-vulnerabilities-q1-security-report-says-2515120&hl=en&geo=us>

Bounties keep reported bug count low, but severity high
SC Magazine
The overall number of new vulnerabilities reported in 2011 has gone down,
but the decline could be tied to companies offering higher price tags for
information regarding flaws that are more difficult to find. According to
the biannual "2011 Top Cyber ...
<http://www.scmagazine.com/bounties-keep-reported-bug-count-low-but-severity-high/article/237137/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazine.com/bounties-keep-reported-bug-count-low-but-severity-high/article/237137/&hl=en&geo=us>

Oracle fixes 88 security vulnerabilities
Help Net Security
Oracle's Critical Patch Update for April 2012 fixes 88 security
vulnerabilities across the product line. The amount of fixes isn't really a
big concern; it's the criticality that really matters. There is quite an
uptick in criticality when you look at ...
<http://www.net-security.org/secworld.php?id=12764>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.net-security.org/secworld.php%3Fid%3D12764&hl=en&geo=us>

Former FBI Cybercrime Top Cop Joins Startup That Targets The Attacker
Dark Reading
"There is certainly a trend forming around understanding the threat, its
methods and techniques, its preferences and limitations, and its
vulnerabilities of choice that they like to exploit: They are also human
after all," says Jacques Remi Francoeur, ...
<http://www.darkreading.com/security-services/167801101/security/vulnerabilities/232900529/former-fbi-cybercrime-top-cop-joins-startup-that-targets-the-attacker.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/security-services/167801101/security/vulnerabilities/232900529/former-fbi-cybercrime-top-cop-joins-startup-that-targets-the-attacker.html&hl=en&geo=us>

CORE, NTO Partner To Provide Web App Security Analysis
Dark Reading
Security teams use application security scanners such as NTOSpider to
identify the application vulnerabilities and then use CORE's Insight threat
simulation and real-world threat replication technology to do deeper
testing on those vulnerabilities ...
<http://www.darkreading.com/database-security/167901020/security/news/232900544/core-nto-partner-to-provide-web-app-security-analysis.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/database-security/167901020/security/news/232900544/core-nto-partner-to-provide-web-app-security-analysis.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Oracle Patches 88 Issues in Mammoth Security Update
PC Magazine
By Fahmida Y. Rashid Oracle released 88 security fixes addressing
vulnerabilities in over 35 products in its portfolio as part of its
Critical Patch Update. Unlike Microsoft, which releases patches every
month, Oracle follows a quarterly patch schedule ...
<http://securitywatch.pcmag.com/vulnerabilities/296761-oracle-patches-88-issues-in-mammoth-security-update>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://securitywatch.pcmag.com/vulnerabilities/296761-oracle-patches-88-issues-in-mammoth-security-update&hl=en&geo=us>

Team identifies water vulnerability in border region
Phys.Org
Credit: Jamie McEvoy, 2008 The Arizona-Sonora region has been called the
front line of ongoing climate change, with global climate models projecting
severe precipitation decreases and temperature increases coupled with
vulnerability from urbanization, ...
<http://phys.org/news/2012-04-team-vulnerability-border-region.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://phys.org/news/2012-04-team-vulnerability-border-region.html&hl=en&geo=us>

Tenable Network Security Delivers New Edition of Unified Security
Monitoring ...
MarketWatch (press release)
SecurityCenter is the industry's only real time, continuous vulnerability
monitoring solution that can detect vulnerabilities 24x7 and pinpoint
targeted attacks, internal misuse, and compliance violations in virtual,
social, and mobile environments.
<http://www.marketwatch.com/story/tenable-network-security-delivers-new-edition-of-unified-security-monitoringtm-platform-2012-04-17>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/tenable-network-security-delivers-new-edition-of-unified-security-monitoringtm-platform-2012-04-17&hl=en&geo=us>

Tenable Network Security Releases Enhanced Version of the Nessus Perimeter
Service
MarketWatch (press release)
Tenable's Nessus Perimeter Service extends the power of the world's most
widely-deployed vulnerability scanner to help businesses protect payment
card data, identify network and web application vulnerabilities, and
demonstrate compliance with the PCI ...
<http://www.marketwatch.com/story/tenable-network-security-releases-enhanced-version-of-the-nessus-perimeter-service-2012-04-17>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.marketwatch.com/story/tenable-network-security-releases-enhanced-version-of-the-nessus-perimeter-service-2012-04-17&hl=en&geo=us>

Monitor OS X LaunchAgents folders to help prevent malware attacks
CNET (blog)
The same vulnerabilities that this and others have used are now cropping up
in other malware as well. These include yesterday's news of the SabPab
malware and its MacKontrol variant, and also the Olyx malware that is a
variant of the Tibet malware we ...
<http://reviews.cnet.com/8301-13727_7-57415311-263/monitor-os-x-launchagents-folders-to-help-prevent-malware-attacks/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://reviews.cnet.com/8301-13727_7-57415311-263/monitor-os-x-launchagents-folders-to-help-prevent-malware-attacks/&hl=en&geo=us>

Apple Reports Most Vulnerabilities In Q1
TechWeekEurope UK
Apple surpassed Oracle, Google and Microsoft in reported vulnerabilities
during the first quarter of 2012, while the popularity of the Android
mobile operating system has seen it increasingly targeted by
cybercriminals, according to the Trend Micro Q1 ...
<http://www.techweekeurope.co.uk/news/apple-security-vulnerabilities-trend-micro-2012-73311>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techweekeurope.co.uk/news/apple-security-vulnerabilities-trend-micro-2012-73311&hl=en&geo=us>

Oracle releases patch addressing 88 security vulnerabilities
V3.co.uk
by Alastair Stevenson Oracle has announced a massive new security patch
designed to fix 88 security vulnerabilities across 30 products. Within the
patch, a total of 33 flaws were classed as remote code execution (RCE)
vulnerabilities - a specific type ...
<http://www.v3.co.uk/v3-uk/news/2168243/oracle-releases-patch-addressing-security-vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.v3.co.uk/v3-uk/news/2168243/oracle-releases-patch-addressing-security-vulnerabilities&hl=en&geo=us>

Gessler: Colorado voters deserve integrity in and access to elections
Denver Post
Both sides agree that our system has vulnerabilities. The disagreement is
how we guard against those vulnerabilities. For instance, without photo ID,
an election judge cannot verify the person in front of him is, in fact, who
he says he is.
<http://www.denverpost.com/opinion/ci_20418670/gessler-colorado-voters-deserve-integrity-and-access-elections>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.denverpost.com/opinion/ci_20418670/gessler-colorado-voters-deserve-integrity-and-access-elections&hl=en&geo=us>

Oracle Issues Mammoth 88 Vulnerability Patch
TechWeekEurope UK
A number of the Fusion Middleware security holes scored the maximum CVSS
Base Score for vulnerabilities of 10.0. There are 15 new security fixes for
the Oracle Sun Products Suite, five of which could be remotely exploited
without the need for a ...
<http://www.techweekeurope.co.uk/news/oracle-vulnerability-patch-73162>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techweekeurope.co.uk/news/oracle-vulnerability-patch-73162&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail