Network World

The improper use of a federal database two decades ago by Erroll Southers, the White House nominee to be administrator of the Transportation Security Administration (TSA), has caught the attention of GOP lawmakers.

Juniper Networks has issued seven security advisories for its products, including a fix for a nasty bug that could be used to crash the company's routers.

Rootkits, a type of stealth technology used by malware malefactors, attempt to hide in the dark corners of an infected PC and evade detection. A new post out today from the Microsoft Malware Protection Center shines the spotlight on the evil tools.

If you sent an email in the first few hours of 2010, there is a chance that it never reached its recipient thanks to an embarrassing ‘2010' bug buried in the open source SpamAssassin anti-spam engine used by many Internet Service Providers.

Hackers are exploiting a bug in Adobe's PDF software with both target and large-scale attacks a week before a patch is slated to be released.

Portable technology--laptops and iPhones particularly--come with their own special security risks. They can be lost, for starters. And iPhones can be made especially vulnerable if you jailbreak them. Here are some tips for keeping your mobile technology--and you--safe.

It's that time of year again -- time to look back and offer my 2009 awards for the most malicious, obnoxious, offensive, or nonsensical behavior in technology. The 10 winners this year include some of the best-known companies on the planet, as well as some obscure but worthy candidates.

Microsoft today said it will deliver a single security update on Tuesday to patch just one vulnerability in Windows.

The Veterans Administration and Kaiser Permanente unveiled a pilot program that shares patients' electronic health records between the two organizations. The system is the first of its kind.

Storage startup ioSafe has shown off its idea of indestructible storage, the Solo SSD, which it claims can survive almost any shock, drop, flood or even fire hazard business disaster can throw at it.

An administration official told CSOonline.com Monday night that IT security veteran Howard Schmidt will be the new White House cybersecurity coordinator, a position President Obama created seven months ago.

U.S. authorities are investigating the theft of an estimated tens of millions of dollars from Citibank by hackers partly using Russian software tailored for the attack, according to a news report.

By recommending that users exclude some file extensions and folders from antivirus scans, Microsoft may put users at risk, a security company said today.

The Federal Government has moved to streamline the use of authentication tools among departments and agencies.

A resourceful CISO arranges low-cost training for his staff by working with a local security company. Another tip: Take a cop to lunch.

Howard Schmidt, former eBay CISO and vice chairman of the President's Critical Infrastructure Protection Board, and the folks from ICSA Labs, a vendor-neutral testing and certification lab, offer 10 predictions for security in 2009. (Second of 2 parts).

Server virtualization has reached an inflection point in the enterprise at the 10-year mark. Capital expense savings from physical server consolidation are leveling off and early gains in IT operational efficiency are at risk due to rapidly growing and increasingly complex virtual infrastructures. Moreover, business-critical production applications -- the next virtualization frontier -- demand higher levels of service and strict security and compliance oversight, further challenging IT operations teams.

If you use Gmail, Google Calendar, Google Docs, or any of the ever-growing array of Google services, you may have cringed at the trove of personal data the company has gathered. To allay concerns, Google launched Dashboard, a single page housing privacy controls and settings for most of its services.

The FireFound add-on for the Firefox browser adds tracking and remote wipe features that can help with lost or stolen computers.

A dangerous vulnerability in Internet Explorer 6 and 7 became publicly known before a fix was available, raising the specter of a high-risk zero-day attack.