Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
Latest Comments
"it's good one "
on SanDisk taps McAfee for USB drive security
by khanbhai | Nov 22, 2008 9:00 PM
 
"when i login to face book it tells me i am cookies enabled what does this mean"
on Ads on Facebook serving up adware
by celeste | Nov 21, 2008 5:15 PM
 
"Hi this is the mail I received Brett Karpman show details Nov 17 (3 days ago) Reply Atten..."
on Yahoo and Microsoft take aim at lottery scams
by Rodney Churchyard | Nov 20, 2008 6:13 PM
 
"security through obscurity...shows how detached HIPAA is from reality."
on Privacy breaches causing business instability
by priceOfFishInChina | Nov 20, 2008 1:19 PM
 
"Umm. no. The 6.5 product is mounting the offline VM image and performing a scan for patch ..."
on Shavlik Technologies to broaden its patch management offerings
by eric | Nov 20, 2008 8:15 AM
Patch Management

New technology aims to close backdoor threats

  • Email a Friend
  • Print Page
Related Articles
By Phil Muncaster
Feb 5, 2008 10:07 AM
Tags: "back | door | threats" | "debugging" | "security" | "code" |
On-demand app security testing provider Veracode today launched new technology designed to improve malware and backdoor detection for developers and software buyers.

Backdoor threats can be inserted by "bad actors" in the development process, or by accident when code writers leave old debugging code in the final version, according to Veracode's chief technology officer, Chris Wysopal.

The vendor first conducted extensive research into backdoor threats to create four distinct categories, before writing scans to detect these different types of threat, he explained.

"The biggest category was unintentional debugging code," he added. " [Traditional security] is very mature now so attacks are moving towards the applications, because developers make mistakes and attackers take advantage. Offering this as a service means we can be the intermediary between customer and development teams"

Wysopal also argued that by creating a taxonomy of backdoor threats, the firm could help to educate the marketplace about these often overlooked threats.

itweek.co.uk @ 2008 Incisive Media

 
Ads by Google
Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Tripwire - Click here to win an iTouch
 
 
 
Patch Management Whitepapers
 
Popular Tags
blink bulletin computing control digital enterprise firms framework information internet microsoft providers report risks saas security secuware service threats virus