Botnet whack-a-mole just might work

	Review: 7 password managers for Windows, Mac OS X, iOS, and Android | Study finds major weaknesses in single sign-on systems
	InfoWorld's Security Central				Forward this to a Friend >>>
	Botnet whack-a-mole just might work Neither Microsoft nor Kaspersky claim that their disruptive efforts will make a permanent dent in targeted criminals' operations -- but their work will disrupt the botnets. Read More RESOURCE COMPLIMENTS OF: Hosting.com 100% Application Availability in the Cloud Optimize your infrastructure for mission-critical applications while minimizing costs. Powered by Microsoft SQL Server and Hosting.com. Availability--Performance--Scalability--Security. Guaranteed. Learn more at the April 12 webinar from Microsoft and Hosting.com subject matter experts. Register now! In this Issue Review: 7 password managers for Windows, Mac OS X, iOS, and Android Study finds major weaknesses in single sign-on systems Study: Open source libraries propagate security flaws Why threat intelligence means sharing more data RESOURCE COMPLIMENTS OF: Microsoft Try Microsoft Office 365, free Collaborate in the cloud with Office, Exchange, SharePoint, and Lync videoconferencing. Access, edit, and share documents. Starting at $8/user/month. Try it free. Review: 7 password managers for Windows, Mac OS X, iOS, and Android I hate passwords. I hate coming up with them. I hate remembering them. I hate mistyping them four times in a row. And I hate getting locked out of whatever I'm trying to log into in the process. That said, I hate being hacked only slightly more, so I've done my part to use passwords that aren't "password123" or something equally foolish. The hard part is keeping them straight, which I could do by writing them down -- but isn't that a security hole all over again? Heck, I've known that since I was a kid. I saw "WarGames." Read More Study finds major weaknesses in single sign-on systems The single sign-on protocols that allow users to sign in to a range of websites with their Google or Facebook accounts suffer from security flaws that could allow scammers to log in as somebody else, security researchers have reported. The researchers, from Indiana University Bloomington and Microsoft Research, say they have found a number of serious flaws in OpenID and the single-sign on system used by Facebook, as well as implementations of those systems at several popular websites. Google and PayPal are among the users of OpenID. Read More Study: Open source libraries propagate security flaws Although companies such as Microsoft, Adobe, and Mozilla have raised awareness of secure programming practices in recent years, getting developers to adopt best practices to weed out vulnerabilities in program code remains a challenge. Read More Why threat intelligence means sharing more data IT is a fast-moving field -- ideas arise, reach prototype, and go to market quicker than it takes for the average clinical trial to be cleared. Yet this one concept within information security -- that defense requires greater visibility than can be obtained from any single network, and we should reciprocally distribute data on the attacks and attackers we identify so we can have a fighting chance  -- remains an unresolved debate. I've heard the same thing in information security for quite some time: "We need to share more data." Read More
	DAILY NEWS, DELIVERED TO YOUR INBOX FIRST THING Start your workday with Today's Headlines: First Look, and find out what the tech world will be talking about all day. Subscribe now!
	Do You Tweet? Follow everything from InfoWorld.com on Twitter @infoworld. You are currently subscribed to infoworld_sec_rpt as evoismilf.anime@blogger.com. Unsubscribe from this newsletter | Manage your subscriptions | Subscribe | Privacy Policy If you are interested in advertising in this newsletter, please contact: sean_weglage@infoworld.com To contact InfoWorld, please send an e-mail to online@infoworld.com. Copyright (C) 2011 InfoWorld Media Group, 501 Second St., San Francisco, CA 94107 ** Please do not reply to this message. If you want to contact someone directly, send an e-mail to online@infoworld.com **