What we're reading, week of 12/15
von VPNHaus | 15.12.2008 |Highlights
Jeremiah Grossman on Justifying Security Spending
Richard Bejtlich points us to Jeremiah Grossman's list of five ways to justify security spending. A very well-reasoned contribution to the "security ROI in a recession" debate.
From Rational Survivability...
Beyond the Sumo Match: Crosby, Herrod, Skoudis and Hoff...VirtSec Death Match @ RSA!
Christofer Hoff announces that he'll be speaking on a virtualization security panel at RSA alongside executives from Citrix, VMware, and InGuardians. A sumo suit wrestling match may be involved.
From Security Fix...
Microsoft: Big Security Hole in All IE Versions
Brian Krebs reports on a critical security hole in all versions of Internet Explorer. "Microsoft now says the flaw affects all supported versions of IE, and because security experts are warning that a large number of sites are being compromised in an effort to exploit this vulnerability and install malware on vulnerable systems."
From Zero Day...
Firefox tops list of 12 most vulnerable apps
Meanwhile, Ryan Naraine points out that Firefox is having some problems of its own. Other unlikely candidatesd in the the top 12 list of vulnerable programs included iTunes, Adobe Acrobat and MSN Messenger.http://blogs.zdnet.com/security/?p=2304