Virtualization security needed - now!; Google Gadgets can be misused by phishers

Security News Alert This newsletter is sponsored by Secure Computing Live Webinar: Securing up network access Learn how token-based, one-time password authentication systems can help enterprises reduce business risk, better comply with regulations, are easy to manage and most importantly keep networks secure. Tune in to this live webinar August, 29, at 2:00 p.m. ET. Click here for more details Network World's Security News Alert, 08/20/07 Virtualization security needed – now!, 08/20/07: Experts say it’s only a matter of time before malware writers weasel their way into the core of a virtual server platform. Here’s how to stop them. Researcher: Google Gadgets can be misused by phishers, 08/17/07: The domain used to host small Google Gadget applications written by Web developers could be misused by phishers, a Web security researcher said Friday. Privacy breaches force online bill-payment company out of business, 08/17/07: Small mistakes can have big consequences. Last April when a network technician working for Bellevue, Wash.-based Web content-management company Verus failed to set up a firewall properly as part of an online bill-payment service for hospitals, the mistake exposed patient data from at least a half-dozen hospitals across the country. Network World Security Buyer's Guide Find the right security products for your enterprise - fast. From anti-spam to wireless LAN security, our Buyer's Guides have detailed information on hundreds of products in more than 20 categories. With the side-by-side comparison tool you can evaluate product features to make the best decision for your enterprise. Click here to go to the Security Buyer's Guide now. Google opens click-fraud Web site, 08/17/07: Google has unveiled a Web site "resource center" focused on the thorny issue of click fraud, which many consider a potential threat to the company's main source of revenue: pay-per-click advertising. IOS vulnerbility affects ISP routers: Heise Security is reporting of a denial-of-service vulnerability in Cisco IOS that could be exploited to reboot ISP routers. IOS security feature defends against day zero attacks: Automatic Signature Extraction (ASE) is a new feature in IOS release 12.4(15)T1 that is designed to find and stop worms and viruses on the network, day zero. Sourcefire acquires ClamAV project, 08/17/07: Sourcefire on Friday announced it has acquired the open-source ClamAV gateway antivirus and antimalware project for an undisclosed price. Study finds Internet rife with attack codes, 08/16/07: Even seemingly safe web addresses are rife with attack code aiming at vulnerable clients, according to a new study from the Honeynet Project. The study also found that methods such as blacklists can be surprisingly successful in stopping client-side attacks. EBay says Skype was not attacked, 08/17/07: Skype has not been attacked, eBay said Friday, dispelling rumors that Russian hackers took down its popular online telephony service.

TODAY'S MOST-READ STORIES: 1. The CD turns 25 and I'm getting old 2. Verizon turns another hose on fire flap 3. Google/Viacom lawsuit takes hilarious turn 4. 10 claims that scare security pros 5. Aruba puts the squeeze on Cisco 6. Skype outage disables millions of users 7. Vista stricken by embarrassing gadget hole 8. E-cards: I delete them all unopened. You? 9. Will Torvalds sue VMWare? 10. Microsoft's super bundle of security patches MOST-READ REVIEW: WAN acceleration offers huge payoff

Contact the author: Senior Editor Ellen Messmer covers security for Network World. E-mail Ellen. This newsletter is sponsored by Secure Computing Live Webinar: Securing up network access Learn how token-based, one-time password authentication systems can help enterprises reduce business risk, better comply with regulations, are easy to manage and most importantly keep networks secure. Tune in to this live webinar August, 29, at 2:00 p.m. ET. Click here for more details BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007