The importance of vulnerability research; Google: Attack code more likely on Microsoft IIS

Security News Alert This newsletter is sponsored by MASERGY New Webcast! VPLS' Emergence in Enterprise Wide-Area Networking Virtual Private LAN Service is a standardized managed WAN service that's making the lives of network IT executives easier. Learn how VPLS is allowing enterprises to easily connect remote sites around the country - and the world - with unprecedented agility, flexibility, manageability, security and cost savings. Network World's Security News Alert, 06/06/07 The importance of vulnerability research, 06/05/07:  Testing in-house and vendor-built software for security holes should be an enterprise priority, said a group of vulnerability research experts speaking on a panel at the Gartner IT Security Summit held here this week. But Rich Mogull, the Gartner analyst who hosted the panel, questioned how practical it would be for companies to dedicate the dollars and resources required for this testing. Click here for more. Google: Attack code more likely on Microsoft IIS, 06/05/07:  Web sites running Microsoft's Web server software are twice as likely to be hosting malicious code as other Web sites, according to research from Google. Click here for more. Study: U.S. government still lacking data protection, 06/04/07:  More than half of U.S. government employees unofficially work at home on nights or weekends, raising concerns about the security of the data they're working on, according to a study released Monday. Click here for more. Dont Overlook Inside Security Threats Research says its not just vendor hype: Most companies have significant vulnerabilities theyre not aware of and vastly underestimate the risk of insider attacks. Watch this Webcast and learn which attacks you need to be worried about, which are the most underestimated threats and much more. Click here to view the webcast. Europe crafts computer security alert system for SMBs, 06/05/07:  The creation of a pan-European system to notify small and medium-size businesses of IT security threats came a step closer Tuesday, as security experts from industry and academia refined plans for the European Information Sharing and Alert System (EISAS) at a conference in Berlin. Click here for more. NetIQ upgrades security information/event management software, 06/05/07:  NetIQ announced Tuesday an upgrade to its security information and event-management software that adds user-access monitoring, real-time auditing and threat detection. Click here for more. IronPort releases high-performance e-mail security appliance, 06/05/07:  IronPort Systems on Tuesday announced a high-performance model in its family of e-mail security appliances designed for high-volume enterprises and ISPs. Click here for more. From Whac-A-Mole to chess: The maturing of security, 06/04/07:  Companies that want to spend less of their IT budget on security and improve its effectiveness need to “bake in” security across their operations so it becomes a part of the business process, not an afterthought. Click here for more. McAfee focuses on SMB security market, 06/04/07:  McAfee Monday pledged a renewed focus on the small-and-midsize business market, where the security firm said it’s beefing up its product line and sales support. Click here for more.

TODAY'S MOST-READ STORIES: 1. 5 new ways to authenticate users 2. FAQ: What Avaya going private is all about 3. What Google bought in the past 12 months 4. Churn in the VoIP market? 5. Will Cisco suffer IBM's fate? 6. Firefox flaws raise Mozilla security doubts 7. Adult filmmakers taking their lumps on ‘Net? 8. Avaya goes private in $8.2B deal 9. Slideshow: 5 new ways to authenticate users 10. Stealthy attack serves malicious code only once MOST-READ REVIEW: How low can your data go with virtual tape libraries?

Contact the author: Senior Editor Ellen Messmer covers security for Network World. E-mail Ellen. This newsletter is sponsored by MASERGY New Webcast! VPLS' Emergence in Enterprise Wide-Area Networking Virtual Private LAN Service is a standardized managed WAN service that's making the lives of network IT executives easier. Learn how VPLS is allowing enterprises to easily connect remote sites around the country - and the world - with unprecedented agility, flexibility, manageability, security and cost savings. BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007