Click here

Open Source Security 

OpenStack Hardening Security for Open Source Cloud Platform

OpenStack Security Group makes progress securing the open source cloud platform, but lots of work remains.

Making Enterprise Penetration Testing Less Mysterious

With its Metasploit 4.6 Pro release, Rapid7 aims to make penetration testing less of a dark art and more accessible for enterprises.

Snort Founder Still Supports Open Source Security [VIDEO]

Hundreds of millions of dollars after building a commercial security vendor, Sourcefire founder Martin Roesch hasn't forgotten his open source roots.

Is Cloud PaaS Safe?

Security researchers from Trustwave take aim at Platform-as-a-Service and find security controls to be lacking

SSL Certificate Authorities Team up to Boost Web Security

SSL Certificate Authorities claim a 99.995 accuracy rate, despite headline-making Web security breaches in the last two years.

Metasploit Goes Phishing

Leading open source penetration testing framework adds phishing attacks to its arsenal. What can and should an enterprise do?

Is OpenStack Cloud Platform Secure?

Security efforts are ramping up as adoption of the OpenStack cloud platform grows.

Why Are Web Applications a Security Risk?

The CTO of Qualys explains how the shift from traditional to Web applications will require developers to raise their security games.

NSA: Building a More Secure Android

They're from the government, and they're here to help secure the Android kernel.

How to Prevent Cross-Site Scripting (XSS) Attacks

Input sanitization is key to defending against XSS attacks. Is your company's website secured?

Black Hat: Wintel Flaw Remained Unpatched For Six Years

Linux patched the Intel kernel privilege escalation flaw in 2006 -- but Windows, FreeBSD, and NetBSD remained vulnerable until just six weeks ago.

Black Hat: Open Source Web Application Firewall Comes to Microsoft IIS

After 10 years on Apache, the popular open source ModSecurity web application firewall is expanding its footprint to Microsoft's IIS web server.

AlienVault Raises $34 Million for Open Source Based Unified Security Management

Former leaders of HP's Fortify business unit build a new class of threat management platform, powered by open source innovation.

Sourcefire Pushes Open Source ClamAV Forward

The leaders of ClamAV are leaving Sourcefire, but the future's still bright for the popular open source anti-virus tool.

How to Run Your Own Certificate Authority

Your business can save money by issuing its own digital certificates for internal corporate resources such as intranets and VPNs.

MySQL, MariaDB Security Flaw Found

According to Sergei Golubchik, the flaw makes password protection 'as good as nonexistent.'