Microsoft security trouble: early alert for exclusive group only

Grok Headline matches for Microsoft security trouble: early alert for exclusive group only

Single New Security Alert From Microsoft
For May

Single New Security Alert From Microsoft
For May 05/11/2004 01:44 PM
Windows XP/2003 Help system could execute attack code. In contrast to last month's flood of severe problems, a single "Important" vulnerability in some Windows versions, and re-released of two previous ones.

Windows gamers targeted by Microsoft
security alert

Windows gamers targeted by Microsoft
security alert 06/09/2004 07:42 AM
PC Pro Jun 9 2004 12:23PM GMT

Microsoft Security Update Alert -
Reminder to Patch

Microsoft Security Update Alert -
Reminder to Patch 05/02/2004 04:33 AM

Microsoft Offering Early Security
Warnings

Microsoft Offering Early Security
Warnings 09/16/2004 09:28 AM
Washington Post Sep 16 2004 1:42PM GMT

Early heads-up on Microsoft security
flaws

Early heads-up on Microsoft security
flaws 09/16/2004 05:48 AM
Seattle Post Intelligencer Sep 16 2004 9:20AM GMT

Microsoft gives big customers an early
heads-up on security flaws

Microsoft gives big customers an early
heads-up on security flaws 09/16/2004 02:59 PM
Seattle Post Intelligencer Sep 16 2004 6:34PM GMT

Startups Still Having Trouble Raising
Early Rounds?

Startups Still Having Trouble Raising
Early Rounds? 09/13/2004 05:19 AM
Here in Silicon Valley there's been a noticeable buzz among both startups and VCs that the funding gates have opened again and, while it may not be easy to get money, there is money to be had. However, a study now claims that ve ry little venture cash is going into early stage startups, with most of it going to later stage deals. This has been a general trend in VC over the last few years anyway, as the earlier stages are often funded more with angel funds or smaller VC firms that focus almost exclusively on early stages. Of course, it also depends on how you define "early stage." What used to be called "friends and family" or "seed" rounds are often called A rounds to make them seem more important. Also, the biggest reason why this study may not sound right is that it's already out of date. The data seems to be from 2003. It's not entirely clear why it's taken nearly a year to compile this data, but it wouldn't be at all surprising to find the trend heading back in the other direction in 2004.

Wal-Mart Early Bird Exclusive?

Wal-Mart Early Bird Exclusive? 03/24/2005 04:59 AM
Yesterday we got word of a Wal-Mart exclusive planned for the April 2nd release of Revenge of the Sith. What's lurking in the Wal-Mart stockrooms? We've got another piece of the puzzle!

More On The Wal-Mart Early Bird
Exclusive

More On The Wal-Mart Early Bird
Exclusive 03/27/2005 03:15 AM
We have the answer to what's inside this pallet sitting in the back rooms at Wal-Mart stores. This is a good one.

Wal*Mart Exclusive Early Bird Kit

Wal*Mart Exclusive Early Bird Kit 03/28/2005 04:11 PM
Well Hasbro updated a bit today and now we have the very fist images of the Wal*Mart exclsuive early bird kit. There's also an auction online for one and from the images I could see that these four figures will be updated versions of the original series, plus it is limited to 50,000 pieces!

myITforum Membership Early Bird Sign-up
for Microsoft Security Summit

myITforum Membership Early Bird Sign-up
for Microsoft Security Summit 02/19/2004 08:43 AM

[AppSecInc Security Alert] Microsoft
Active Server Pages Cookie Retrieval
Issue

[AppSecInc Security Alert] Microsoft
Active Server Pages Cookie Retrieval
Issue 05/06/2004 12:58 PM
Aaron C. Newman (Application Security, Inc.) (May 05 2004)

BugTraq: [AppSecInc Security Alert]
Microsoft Active Server Pages Cookie
Retrieval Issue

BugTraq: [AppSecInc Security Alert]
Microsoft Active Server Pages Cookie
Retrieval Issue 05/07/2004 01:59 AM
SecurityFocus May 7 2004 4:58AM GMT

Wal-Mart Exclusive Early Bird Kit Hints
At New Star Wars Line

Wal-Mart Exclusive Early Bird Kit Hints
At New Star Wars Line 03/30/2005 01:01 AM
We've got some new information on the Wal-Mart exclusive, and what it means for future Star Wars toys.

Is RFID worth the trouble? Early
adopters share their experiences in
deploying radio-frequency tracking
techno

Is RFID worth the trouble? Early
adopters share their experiences in
deploying radio-frequency tracking
techno 04/18/2005 04:25 AM
CNET Asia Apr 18 2005 8:53AM GMT

EBay, Microsoft Form Internet Security
Group

EBay, Microsoft Form Internet Security
Group 11/13/2003 04:16 AM
Los Angeles Times Nov 13 2003 3:25AM ET

Trouble in East Fishkill? IBM chip group
struggles

Trouble in East Fishkill? IBM chip group
struggles 04/21/2004 12:47 PM
IBM Corp.'s server business is coming off one of its better quarters, but its new sibling in the Systems and Technology Group, IBM's microelectronics division, continues to struggle as yield problems plague its new manufacturing facility in East Fishkill, New York, where IBM makes the PowerPC 970 and 970FX chips used in Apple's Power Mac G5 and Xserve G5.

Trouble in East Fishkill? IBM chip group
struggles (MacCentral)

Trouble in East Fishkill? IBM chip group
struggles (MacCentral) 04/21/2004 02:18 PM
MacCentral - IBM Corp.'s server business is coming off one of its better quarters, but its new sibling in the Systems and Technology Group, IBM's microelectronics division, continues to struggle as yield problems plague its new manufacturing facility in East Fishkill, New York, where IBM makes the PowerPC 970 and 970FX chips used in Apple's Power Mac G5 and Xserve G5.

"Enterprise Security Center sponsored by
McAfee Security: Exclusive"

"Enterprise Security Center sponsored by
McAfee Security: Exclusive" 06/15/2004 10:23 AM

MEDIA ALERT: Secure Elements Discusses
IT Security for Higher Education at
EDUCAUSE Security Professionals
Conference

MEDIA ALERT: Secure Elements Discusses
IT Security for Higher Education at
EDUCAUSE Security Professionals
Conference 03/31/2005 03:03 AM
Daniel Bezilla, Secure Elements’ chief technology officer, will explore how educational communities can benefit from implementing an Enterprise Vulnerability Management solution. [PRWEB Mar 31, 2005]

Earnings alert: Oracle's steady; SCO
Group falters

Earnings alert: Oracle's steady; SCO
Group falters 06/16/2004 06:06 PM
Plus: Novell's loss narrows...Dell on the money...Gateway's loss bigger than expected...Time Warner beats expectations.

Security Alerts: Qt Trouble

Security Alerts: Qt Trouble 08/27/2004 01:31 PM
Noel Davis looks at problems in Qt, SpamAssassin, MySQL, rsync, NetBSD ftpd, Xine-lib, KDE, Adobe Acrobat Reader, Gaim, and xv.

Security Alerts: CDE Trouble

Security Alerts: CDE Trouble 08/10/2004 07:16 PM
Noel Davis looks at problems in CDE's dtlogin, Oracle, SquirrelMail, SoX, phpMyAdmin, wvWare, Openftpd, CVSTrac, PostgreSQL's ODBC driver, PuTTY, and Citadel/UX.

Security Alerts: PHP Trouble

Security Alerts: PHP Trouble 07/27/2004 07:34 PM
Noel Davis look at problems in PHP, Samba, mod_ssl, HP-UX's xfs and stmkfont, Ethereal, l2tpd, Domino, APC PowerChute Business Edition, Webmin, and Lexmark network printers.

Security: Trouble in mind

Security: Trouble in mind 01/16/2004 12:59 PM
From viruses and worms to spam, fraud and theft, security problems have become perhaps the biggest headache in the high-tech industry today.

Begging for trouble on security

Begging for trouble on security 08/12/2004 07:26 AM
Securify founder Taher Elgamal says a patchwork mentality has effectively turned network security into an IT budget black hole.

df|Media Group And The Hollywood Edge
Announce At NAB, The Exclusive Release
Of The AFX™ – Advanced Audio Effects
Sound Effect Series

df|Media Group And The Hollywood Edge
Announce At NAB, The Exclusive Release
Of The AFX™ – Advanced Audio Effects
Sound Effect Series 04/19/2005 03:41 AM
NAB Show Las Vegas: The multi-award winning teams at Soundelux’s The Hollywood Edge and df|Media Group announce the release of AFX – Advanced Audio Effects sound effect series at the 2005 NAB Show. This leading edge library was designed specifically for interactive, entertainment and game development producers and is exclusively available through the Hollywood Edge. [PRWEB Apr 19, 2005]

Security Alerts: Trouble in the Kernel,
VMware, and PostgreSQL

Security Alerts: Trouble in the Kernel,
VMware, and PostgreSQL 03/14/2005 05:29 PM
Noel Davis looks at problems in the Linux kernel, VMware, PostgreSQL, Squid, MySQL, codemailman/code, Apple OSX HFS+, codemovemail/code with GNU Emacs or XEmancs, KStars, codetypespeed/code, codeawstats/code, and codesynaesthesia/code.

Security Alert

Security Alert 09/21/2004 04:41 PM

Mac Security Alert

Mac Security Alert 05/12/2004 09:43 AM
A UK government organization responsible for gathering information on IT security incidents has issued two security advisories regarding recently identified vulnerabilities in Mac OS X. By Macworld UK (via MyAppleMenu)

PHP Security Alert

PHP Security Alert 06/05/2005 11:38 PM
PHP Advanced Transfer Manager Include File Error Lets Remote Users Execute Arbitrary Commands

Yet another Windows security alert

Yet another Windows security alert 03/19/2003 10:25 PM
Microsoft has released Security Bulletin MS03-007, which simply says: An identified security vulnerability in Microsoft® Windows® 2000 could allow an attacker to take control of your computer. This issue is most likely to affect computers used as Web servers. You can help protect your computer from this vulnerability by installing this update from Microsoft. If you're using Windows 2000, make sure you install it.

Security Alert: Another IE6
Vulnerability

Security Alert: Another IE6
Vulnerability 11/25/2002 11:55 AM
A new exploit has been found in IE6 that allows a serious security vulnerability. Although this is not directly related to PHP Freaks, I thought I would take a moment to point this out to our readers.

Security Alert: Voluntary XSS

Security Alert: Voluntary XSS 04/09/2004 05:30 PM

This is a personal security alert against a dangerous yet increasingly popular practice which I call Voluntary XSS.  Voluntary XSS involves a website voluntarily embedding script fragments hosted by another, typically very popular, website.  Here is an example:

Voluntary XSS is dangerous because the practice builds a hub-and-spoke (or star) vulnerability network which exposes all the spoke websites to  weaknesses in the hub website.  Since active contents of 'bar.js' from the hub website in the example above is typically injected into every page served by spoke websites, penetration at the hub website allows hackers to change contents of all pages served by spoke websites instantly by replacing the content of 'bar.js' with their own script.

As to how wide spread the use of Voluntary XSS is, Google uses Voluntary XSS to display ads at Google AdSense sites and Technorati uses Voluntary XSS for blog claiming blogs.  I haven't checked Amazon and Yahoo yet, but I intend to soon.

Since this is a personal security alert, allow me to be more blunt than formal security alerts: This is serious shit folks.  By inserting those HTML fragments into your webpages, you are betting that websites hosting those HTML fragments are and will remain impenetrable.Voluntary XSS makes those key websites very attractive to hackers and I seriously doubt any website can withstand constant onslaughts by smart hackers.

My other posts on this topic:

Cross-Site Scripting Network

APWG Threat Advisory Alert on Visual Spoofing

Community News: PHP Security Alert

Community News: PHP Security Alert 02/13/2004 09:13 AM
In a posting from the fine folks at PHP Magazine:

Security Alert: PHPNuke Strikes Again

Security Alert: PHPNuke Strikes Again 02/04/2003 08:40 AM

Feds Alert to Web Security Threat

Feds Alert to Web Security Threat 03/21/2003 05:59 AM
The Department of Homeland Security advises Americans to brace themselves for acts of cyberterror. But computer security experts say Internet users probably aren't much more vulnerable than usual. By Joanna Glasner.

Security alert at Bute House

Security alert at Bute House 06/12/2004 04:49 AM
A security alert is sparked after a man is seen outside Jack McConnell's official home carrying what looked like a bomb.

Gates sparks security alert

Gates sparks security alert 07/30/2004 06:26 AM

Grok Description matches for Microsoft security trouble: early alert for exclusive group only
GrokA matches for Microsoft security trouble: early alert for exclusive group only

Microsoft security trouble: early alert for exclusive group only

The following phrases have been identified by the grok system as matching this entry: