guinness_duck - Slashdot User

Submission + - Disabling Javascript doesn't mitigate PDF Zero-day (secunia.com)

Submitted by zonky on Tuesday February 24, 2009 @10:24PM

zonky writes: It turns out that Disabling JavaScript in Acrobat Reader doesn't totally mitigate the Zero-day Adbobe bug, according to Secunia in this blog posting: http://secunia.com/blog/44/. While disabling JavaScript does defeat the publicly known exploits, Secunia managed to create a reliable, fully working exploit which does not use JavaScript and can therefore successfully compromise users, who may think they are safe because JavaScript support has been disabled. Oh well. Only 14 days to go until a Adobe patch.

Submission + - SPAM: 15 real ways to secure teleworkers

Submitted by

coondoggie

on Tuesday February 24, 2009 @10:07PM

coondoggie writes: "Security continues to be one of the top bugaboos to letting employees telecommute. As gas prices have stayed high and the economy continues to drive itself into the ground, telecommuting continues to be a viable and cost-effective way for companies to keep employees connected to the home office, but at what price? Lost laptops? Network hacks? Stolen data? Certainly telecommuting isn't to blame for all of these seemingly daily occurrences. It is into this environment that the National Institute of Standards and Technology (NIST) recently updated what many consider to be the bible on maintaining teleworker data security. "In terms of remote access security, everything has changed in the last few years. Many Web sites plant malware and spyware onto computers, and most networks used for remote access contain threats but aren't secured against them," says Karen Scarfone of NIST's Computer Security Division in a release. Above all, an organization's policy should be to expect trouble and plan for it. [spam URL stripped]"
Link to Original Source

Slashdot Top Deals