Posted via email from danielmiessler.com | posterous Related Content4S FlowerStudent FailFlowers and StoneCrescent Tree Shadows from EclipseMe in the Army
Company Products Services Resources Veracode Blog All Things Security Our take on the daily happenings in the world of Application Security All Things Security Research Infographics Veracode Security Blog : Application security research , security trends and opinions ALL THINGS SECURITY Paying Lip Service Mostly To User Education Paying Lip Service Mostly To User Education Posted by Paul Roberts in ALL THINGS SECURITY , September 27, 2012 Comments 0 How well do consumer cyber security awareness efforts work That’s a good question , and one somebody might consider answering The connection between improved security and user education is so well-established as to be almost axiomatic . Better technology , coding practices and testing can only accomplish so much . If customers or employees
We're back from the Gartner UK event in London! Thank you to everyone who came by our booth or attended our Solutions Provider Session.
Here are a few pictures of the Veracode booth at the Mixology reception:
September was an active month in terms of security commentary and news; ranging from an alleged Apple data hack to an IE 0day out-of-band patch release. Since I’m sure many of you are still catching up on the news, for your convenience I’ve included some of the more insightful September coverage below. I also encourage [...]
:
Navigating the security superhighway of application perimeters, vendor software and in house development efforts can be a complex and intimidating task. We aim to shift your efforts to the fast lane with our new program, VAST!
Today marks the official launch of our new Vendor Application Security Testing (VAST) program, designed to help enterprises manage the risks inherent in vendor-supplied software applications. 
via mgalligan.com Great collection of information. Posted via email from danielmiessler.com | posterous Related ContentAndroid vs. iPhone Support LifecyclesThe iPhone is the World’s #1 CameraTry a BookHow to Nap | Boston GlobeThe Chart That Should Accompany All Discussions of the Debt Ceiling – The Atlantic
In today’s ever expanding virtualized data center it’s critical to ensure hypervisors/host systems are properly secured and patched to prevent bleed over into often dense populations of the corporate infrastructure. According to a recent blog post on Threatpost, French research firm VUPEN security has revealed exploit code that takes advantage of a vulnerability in Xen [...]
Doug Burks has done a great work integrating NetworkMiner into Security Onion. One really cool thing he has done is to build a Debian repository that includes NetworkMiner. This means that NetworkMiner (and its dependencies) can be installed on Debian / Ubuntu machines by using apt-get! How to insta[...]
Last week our security research team provided some very enlightening information on a nasty Oracle Java vulnerability that until recently was a zero-day. Oracle provided a patch for the vulnerability found in advisory (CVE-2012-4681) and as a follow-up to the blog post by our security research team we wanted to share with you some easy [...]