Stories by Paul Roberts

The state of open source security

If there's a poster child for the challenges facing open source security, it may be Werner Koch, the German developer who wrote and for the last 18 years has toiled to maintain Gnu Privacy Guard (GnuPG), a pillar of the open source software ecosystem.

Written by Paul Roberts26 March 15 21:09

Fewer permissions are key to Longhorn security

Software engineers who attend Microsoft's annual Windows Hardware Engineering Conference later this month could get their first taste of a new Windows user permissions model that could change the way thousands of programs are developed and run. But as the company prepares for the final Longhorn development push, questions remain about its plans for a new user privileges model called Least-Privilege User Account, or LUA.

Written by Paul Roberts07 April 05 12:18

Company backs off bounty for Mac OS X virus

A company that offered US$25,000 for the first virus that automatically spreads among Apple Computer computers running the OS X operating system cancelled the virus writing contest and retracted the offer of cash, citing concerns about legal liability.

Written by Paul Roberts29 March 05 07:51

Scammers use Symantec, DNS holes to push adware

Online scam artists are manipulating the Internet's directory service and taking advantage of a hole in some Symantec products to trick Internet users into installing adware and other annoying programs on their computers, according to an Internet security monitoring organisation.

Written by Paul Roberts08 March 05 07:57

New, dangerous Microsoft JPEG exploit released

New computer code that exploits a recently disclosed hole in Microsoft's Internet Explorer Web browser is circulating on the Internet and could allow remote attackers to take full control of vulnerable Windows machines, according to warnings from antivirus companies and Internet security experts.

Written by Paul Roberts24 Sept. 04 08:20

Arrest made in Cisco source code theft

Police in the U.K. have arrested a man in connection with the theft of source code from networking equipment maker Cisco Systems Inc. in May, a Scotland Yard spokeswoman confirmed Friday.

Written by Paul Roberts17 Sept. 04 14:29

Symantec launches antiphishing service

Symantec is fishing for dollars with a new service designed to help companies combat the ongoing epidemic of online identity theft, or "phishing," scams.

Written by Paul Roberts14 Sept. 04 08:18

Ballmer bullish on future, bearish on Linux

Microsoft Chief Executive Officer Steve Ballmer addressed a gathering of software industry leaders in Boston Wednesday, touting his company's vision for a bright future, while casting doubt on alternatives to his company's Windows operating system, in particular Linux.

Written by Paul Roberts02 Sept. 04 08:30

Microsoft pushes OS updates to fight attacks

Microsoft is pushing out changes that will alter the configuration of its Windows 2000, XP and Windows Server 2003 operating systems to help customers fight off attacks, detected last week, that use Web pages running Internet Information Server (IIS) as launching pads for malicious computer code.

Written by Paul Roberts05 July 04 09:00

RSA focusing anew on the password problem

RSA Security is renewing its focus on improving the security of user passwords. The company has announced RSA Sign-On Manager, a rebranded version of its SecurID Passage product that it claims will make it easier for enterprises to manage user passwords.
The relaunched product will be available in the third quarter of this year and will be able to manage user log-ins for around 90 different enterprise applications using single sign-on technology licensed from Passlogix Inc. A new RSA technology called IntelliAccess will allow users to recover forgotten user names and passwords, saving expensive help desk calls, RSA said.

Written by Paul Roberts05 June 04 22:00

Microsoft pursuing Sasser author

Microsoft Corp. is working with law enforcement to find the author of the Sasser worm, which first appeared on Friday and targets machines running the company's Windows operating system.

Written by Paul Roberts03 May 04 17:03

Gates e-mails security brain dump to customers

Microsoft Chairman and Chief Software Architect Bill Gates reached out to his company's customers on Wednesday in an e-mail that detailed the company's work to secure its software products.

Written by Paul Roberts01 April 04 07:55

Microsoft restores broken IE URL handling

A software patch issued by Microsoft Monday restores its Internet Explorer (IE) Web browser's ability to handle certain types of Web URLs (uniform resource locators) that were banned by an emergency browser security patch in early February.

Written by Paul Roberts11 Feb. 04 07:33

New version of MyDoom appears

Internet security companies said Monday that they discovered a new version of the MyDoom e-mail worm circulating on the Internet.

Written by Paul Roberts10 Feb. 04 07:07