Web Application Security: Automated scanning versus manual penetration testing

Messagelabs - IT Security Threats of Today and Tommorrow Webcast Supporting Doc

Download

This document supports th silicon.com webcast which discusses some of the security threats to IT systems that organisations have to face on a daily basis - and what do about...

• Publisher:
• MessageLabs, now part of Symantec

• Tags:
• firewalls,
• threats,
• examples,
• daily basis

Best Practices in Chosing and Consuming Managed Security Services

Download

Managed Security Service Providers (MSSPs) for some or all of their IT security needs. Companies that are getting the best results from a security performance perspective all use managed security...

• Publisher:
• Google

• Tags:
• security applications,
• security services,
• managed security services,
• learned

Botnets and your Business

Download

This MessageLabs White Paper looks at the botnet threat and how it has evolved into a serious danger to business. It also gives a snapshot of botnet activity based on...

• Publisher:
• MessageLabs, now part of Symantec

• Tags:
• security applications,
• messagelabs,
• botnet,
• connections

MessageLabs - The Dark Art of Spam

Download

Quite simply, MessageLabs anti-spam solution provides businesses with the quality of protection they urgently need if they are to stay a step ahead of the spammers - and the increasingly...

• Publisher:
• MessageLabs, now part of Symantec

• Tags:
• security applications,
• anti,
• urgently,
• spam

IBM Security Technology Outlook: An outlook on emerging security technology trends

Download

In the next 2-5 years, emerging technology and social trends will have far-reaching implications for enterprise secruity. This white paper will out-line the fundamental technology trends an organisations can expect...

• Publisher:
• IBM

• Tags:
• security tools,
• implications,
• technology trends,
• secruity

IBM Security Technology Outlook: An outlook on emerging security technology trends

Download

In the next 2-5 years, emerging technology and social trends will have far-reaching implications for enterprise secruity. This white paper will out-line the fundamental technology trends an organisations can expect...

• Publisher:
• IBM

• Tags:
• security tools,
• implications,
• technology trends,
• secruity

Not an End In Itself: Information Protection and Return on Risk

Download

Information protection, a core discipline of information stewardship, must balancing rick mitigation with utility. This white paper deals with the shift in "is this technology secure enough" to "we can...

• Publisher:
• IBM

• Tags:
• web development and design,
• deals,
• shift,
• discipline

Take a holistic approach to business-driven security

Download

Corporate leaders face multiple challenges including the need to address complience measures and protection against external and internal threats. This white paper introduces actions that organizations can take to drive...

• Publisher:
• IBM

• Tags:
• security applications,
• promote,
• actions,
• perspective

Understanding Web application security challenges

Download

Business has grown increasingly independent upon web applications and they are becoming more difficult to secure. This paper explains what you can do to protect your organization and improve Web...

• Publisher:
• IBM

• Tags:
• security management,
• protect

Web Application Security: Automated scanning versus manual penetration testing

Download

Research has shown that a vast number of Web sites are vulnerable to application attacks, most occurring over HTTP/S protocols. There are two methods to detect Web vulnerability: using manual...

• Publisher:
• IBM

• Tags:
• security applications,
• methods,
• attacks,
• vulnerabilities

Slammer time - SQL worm brings net to its knees over weekend

This will prevent external attacks from exploiting the vulnerability. Although a patch has been available since then, many system administrators have failed to install the patch, leaving their computers vulnerable.

• Channel:
• Security Strategy

Windows hacks available on the net

The center, which tracks attacks and worms by analysing firewall records, indicated that would-be intruders are scanning companies for vulnerable systems, and when they find such systems, they attack.

• Channel:
• Security Strategy

'Dangerous' Sasser variants already on the loose

The worm spreads by scanning different ranges of internet addresses using a specific application data channel, or port, numbered 445. By Monday morning, Symantec was able to confirm - by scanning for open FTP servers on computers, from which the...

• Channel:
• Security Strategy

HP to hack its customers

The penetration-testing service, HP Active Countermeasures (HPAC), will use a single server and eight to 10 scanning clients per 250,000 connected devices. HP is to launch a penetration-testing service for businesses in October but has denied...

• Channel:
• Security Strategy
• Tags:
• penetration testing,
• hp

Microsoft warns of 'critical' Windows flaw

A successful attack will give full control over a vulnerable machine without any user interaction, Microsoft said. Windows 2000 Server Service Pack 4, Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 are vulnerable...

• Channel:
• Malware
• Tags:
• vulnerability,
• symantec,
• windows dns flaw

Why you should hack your own systems

Therefore the best practice is to take a multi-tiered approach to testing software applications for security flaws, by using static code and dynamic program analysis along with vulnerability assessment and scanning tools, and penetration testing.

• Channel:
• Security Strategy
• Tags:
• security,
• penetration testing,
• phishing,
• vulnerabilities