McAfee 2Q profit rises (AP)
McAfee 2Q profit rises SANTA CLARA, Calif. – Computer-security software maker McAfee Inc. said Thursday that its second-quarter profit rose 38 percent, helped by growth in its corporate and consumer businesses. For the April-June period, McAfee earned $39.4 million, or 25 cents per share, compared with $28. Read more »
Related Bugtraq Messages
Internet upgraded to foil cyber crooks (AFP)
Internet upgraded to foil cyber crooks LAS VEGAS (AFP) – The Internet has undergone a key upgrade that promises to stop cyber criminals from using fake websites that dupe people into downloading viruses or revealing personal data. The agency in charge of managing Internet addresses teamed with online security services firm VeriSign and the US Department of Commerce to give websites encrypted identification ... Read more »
Related Bugtraq Messages
Verizon: Data Breaches Often Caused by Configuration Errors (PC World)
Verizon: Data Breaches Often Caused by Configuration Errors Hackers appear to be increasingly counting on configuration problems and programming errors rather than software vulnerabilities in order to steal information from computer systems, according to a new study from Verizon. Verizon issues an annual report on data breaches, but this year had access to statistics related to investigations done ... Read more »
Related Bugtraq Messages
Kerry Prepping Online Privacy Bill (PC Magazine)
Kerry Prepping Online Privacy Bill Sen. John Kerry said Tuesday that he will join his House colleagues and take a crack at privacy legislation. "And as a matter of law, we need new baseline standards for privacy protection that ensure people's identity is treated with the respect it deserves," Kerry, a Massachusetts Democrat, said in a statement. Read more »
Related Bugtraq Messages
- Safari browser port blocking bypassed by integer overflow
- CFP for HITBSecConf2008 - Dubai now open
- EUSecWest 2010 MiniCFP (conf Jun 16/17) and PacSec 2010 CFP (conf Nov 10/11, deadline July 30)
- Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
- CORE-2010-0323: XSS Vulnerability in NextGEN Gallery Wordpress Plugin
- MacOS X 10.5/10.6 libc/strtod(3) buffer overflow
- [ GLSA 200807-16 ] Python: Multiple vulnerabilities
- ZDI-10-030: Apple WebKit CSS run-in Attribute Rendering Remote Code Execution Vulnerability
- iDefense Security Advisory 06.07.10: Multiple Vendor WebKit HTML Caption Use After Free Vulnerability
- ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability
DHS Exec Takes Hard Questions on Cybersecurity (PC World)
DHS Exec Takes Hard Questions on Cybersecurity The U.S. Department of Homeland Security sent its highest-ranking official ever to speak at the Black Hat conference this week, and its Deputy Secretary Jane Holl Lute ended up fielding a few tough questions from skeptical computer security professionals in attendance. Read more »
Related Bugtraq Messages
For the past several years, I have been archiving Bugtraq emails and placing them on LinuxRocket, mainly for my own use. It was a good resource, but needed more functionality, especially with regard to grouping related information. Recently, I decided to build a custom tf-idf engine, using LinuxRocket's Bugtraq archive as the corpus. Preliminary results were promising, so LinuxRocket now leverages that index along with a new engine that creates mutual document associations for those emails. The functionality was then extended to also tie in relevant documents from the AP Security feed.
On the front page, you now see the results of this mutual document association engine. Below each AP security news article are the top 10 most-relevant Bugtraq emails. Upon clicking on one, you are taken to a page where you can read the entire message. At the top of that page you will see a group of related terms. These terms are ones that have been identified as the most relevant to that page and link to other such pages within LinuxRocket. Clicking on one of those links you are then taken to a Term Landing Page that lists the top 30 emails, each with a snippet that includes the relevant terms.
This engine is a custom application written in C++. It uses libexpat, htmltidy, libcurl, and the snowball stemmer. The index generation is completely written from scratch. It runs as a background process and provides regularly updated results in the form of a feed for the frontend webserver to retrieve and display.
People have used LinuxRocket to monitor vulnerabilities, malware reports and software security. Often, emails within Bugtraq suggest security measures that are needed to thwart these issues. LinuxRocket is not a security service, but an information portal for the security minded.
