Duqu exploits same Windows font engine patched last month, Microsoft confirms

---

• Duqu exploits same Windows font engine patched last month, Microsoft confirms
• Clouds of anxiety: Companies worry about security of cloud computing
• Hacker selling access to compromised websites gets hacked
• Microsoft issues workaround for Duqu attack while it prepares a patch
• Bloodiest tech industry layoffs of 2011
• Dome9 centrally manages cloud server firewalls
• Mozilla, Microsoft withdraw trust in Malaysian intermediate CA
• Microsoft to patch critical Windows 7 bug in 'upside down' update next week
• Simon Crosby, the godfather of Xen, on virtualization, security and wimpy private clouds
• Study: IT's future lies with cloud computing, security and mobile
• Godfather of Xen: Virtualization holds a key to public-cloud security
• Amazon adds app for easier two-factor authentication

Duqu exploits same Windows font engine patched last month, Microsoft confirms Posted: 04 Nov 2011 07:45 AM PDT Microsoft on Thursday confirmed that the Windows kernel vulnerability exploited by the Duqu Trojan is within the TrueType parsing engine, the same component it last patched just last month.

Clouds of anxiety: Companies worry about security of cloud computing Posted: 04 Nov 2011 06:44 AM PDT While organizations continue to embrace cloud-computing platforms, surveys find organizations are concerned about security and their very ability to manage it in the cloud.

Hacker selling access to compromised websites gets hacked Posted: 04 Nov 2011 05:33 AM PDT A hacking group called d33ds broke into the online shop of a rival hacker who sells unauthorized access to high-profile websites and data.

Microsoft issues workaround for Duqu attack while it prepares a patch Posted: 04 Nov 2011 02:57 AM PDT Microsoft has published code to temporarily blunt attacks against a software vulnerability exploited by Duqu, an advanced piece of malicious software still being closely analyzed by security researchers.

Bloodiest tech industry layoffs of 2011 Posted: 02 Nov 2011 11:56 PM PDT Job cuts in the U.S. technology industry in 2011 are down significantly from a year ago and turnover levels in IT shops have returned to pre-recessionary levels, but that doesn't make the tens of thousands of people in the United States who have been laid off from electronics, telecommunications and computer industry jobs feel much better.

Dome9 centrally manages cloud server firewalls Posted: 04 Nov 2011 03:00 AM PDT Many companies are hesitant to adopt hosted solutions or cloud computing because of security fears. One of the biggest areas of vulnerability is also the first line of defense: the host firewall. Administrators leave ports open so they can access their servers and applications for routine operations and maintenance. Dome9 provides a SaaS solution aimed at controlling and monitoring those ports to reduce vulnerabilities.

Mozilla, Microsoft withdraw trust in Malaysian intermediate CA Posted: 04 Nov 2011 08:19 AM PDT Mozilla and Microsoft said Thursday they are revoking trust in all certificates issued by Digicert, a Malaysian intermediate certificate authority (CA) , after it was found that it had issued 22 certificates with weak 512-bit keys and missing certificate extensions and revocation information.

Microsoft to patch critical Windows 7 bug in 'upside down' update next week Posted: 03 Nov 2011 12:31 AM PDT Microsoft today said it will issue four security updates next week to patch four vulnerabilities in Windows.

Simon Crosby, the godfather of Xen, on virtualization, security and wimpy private clouds Posted: 02 Nov 2011 11:47 PM PDT Bromium is a well funded startup that promises to tap some little-used inherent strengths of Xen virtualization to secure public clouds, opening up the possibility of greater cost savings for businesses that will be able to trust more data to these services.

Study: IT's future lies with cloud computing, security and mobile Posted: 02 Nov 2011 11:09 PM PDT Cloud computing, security and the mobile space hold the most growth potential in the coming years, according to IT professionals surveyed by tech staffing firm Modis.

Godfather of Xen: Virtualization holds a key to public-cloud security Posted: 02 Nov 2011 10:55 PM PDT While conventional wisdom says virtualized environments and public clouds create massive security headaches, the godfather of Xen, Simon Crosby, says virtualization actually holds a key to better security.

Amazon adds app for easier two-factor authentication Posted: 03 Nov 2011 09:20 AM PDT Amazon Web Services has added the option to use applications to create codes for its Multi-Factor Authentication (MFA) service, the company said on Wednesday.

You are subscribed to email updates from "Cisco" via Ehsan in Google Reader To stop receiving these emails, you may unsubscribe now.	Email delivery powered by Google
Google Inc., 20 West Kinzie, Chicago IL USA 60610