Previous
The eye of Oracle's security storm
News David Litchfield, managing director of UK security software firm Next-Generation Security Software, found himself in the eye of a media storm after he pointed out some security flaws in Oracle's core database software at the Black Hat Security...
[August 4, 2004, 14:55]
Security clearinghouse under the gun
News We have told them that we will provide them with the information as long as they don't tell others," Mark's brother and fellow researcher David Litchfield said in a Wednesday interview. David Litchfield is managing director of UK-based computer...
[January 30, 2003, 8:05]
Oracle criticised over patching
News Bug hunter David Litchfield on Wednesday provided limited details on a new, unpatched security flaw in Oracle software. Litchfield is co-founder of Next Generation Security Software and one of Oracle's most vocal critics.
[January 26, 2006, 10:00]
New security scanner from British NT guru
News Security specialist David Litchfield of security firm Cerberus released the original version of NT InfoScan in February and it quickly became one of the most popular downloads at the well respected security site SecurityFocus.
[November 29, 1999, 15:11]
Bugs bust open 'unbreakable' Oracle 9i
News The security problems, found by UK security researcher David Litchfield in December, include a serious software slip-up that could let hackers take control of corporate servers loaded with the database program.
[February 7, 2002, 10:21]
Patched Oracle database 'still vulnerable'
News However, the update for Oracle 10g Release 2 does not plug a hole that allows published attack code to run, according to a message sent to the Full Disclosure security list on Wednesday by David Litchfield, a researcher at Next Generation Security...
[April 27, 2006, 8:45]
Forensics firm warns of 'the inside job'
News The simplest thing to do is to get a job there," says David Litchfield, senior security analyst at Arca Systems Inc, a British computer forensics firm called in by businesses to gather evidence of computer crime from hacking and data theft, to...
[July 20, 1999, 10:51]
Microsoft to lift lid on hacker conference
News Security researcher and NGS co-founder David Litchfield gave a talk on Oracle database security at the event. Litchfield told ZDNet UK that various aspects of database security were discussed during his time at the conference.
[March 17, 2006, 15:55]
Security warning too quick for comfort?
News With the premature release from ISS, many are now left vulnerable without a patch from the Apache supplier," security researcher David Litchfield, Mark Litchfield's brother and a co-founder of NGSSoftware, wrote in an email posted to the popular...
[June 18, 2002, 9:21]
I can't help it if my code's read, says researcher
News David Litchfield of NGS Software has acknowledged that "proof of concept" code he wrote to demonstrate a flaw in Microsoft's SQL software was probably used as a "template" for SQL Slammer, also known as Sapphire, which shut down corporate networks...
[February 5, 2003, 15:45]
The Week in Review: Lair of the SQL worm
News Among the more interesting stories to come out of the continuing examination of the two-week-old worm disaster was the case of David Litchfield, whose "proof of concept" code demonstrating a bug in Microsoft's SQL software seems to have actually...
[February 7, 2003, 15:55]
Biggest hacking fraud ever
News Computer security expert David Litchfield of security firm Cerberus believes this may well be more than a wild boast. It is extremely likely," Litchfield told ZDNet. A malevolent computer hacker claims to have pulled off the greatest information...
[January 12, 2000, 9:19]
Oracle looks to 'Fortify' code
News Security researcher David Litchfield, co-founder of UK-based Next Generation Security Software and one of Oracle's most vocal critics, sees Oracle's adoption of Fortify's technology as "a great step in the right direction".
[December 21, 2005, 8:50]
Hackers striking more suddenly
News Those two features will make it significantly harder to attack Windows systems, said David Litchfield, founder and managing director of Next-Generation Software Security, a British company. Hopefully, the day of the Windows network worm is over...
[July 29, 2004, 9:20]
Litchfield: ID database ethical, not technical problem
Blog David Litchfield, who has in the past dramatically exposed various vulnerabilities in Oracle, has told ZDNet UK at the Black Hat security conference in Amsterdam that the UK ID data base is an ethical, not technical problem.
[March 30, 2007, 16:50]
Risk level increased for database flaws
News Some of these are more serious than others," said David Litchfield, a security researcher and co-founder of UK-based NGS Software. Details of multiple security flaws in Oracle and IBM databases have been released by the security company that found...
[December 24, 2004, 8:00]
2002: the top ten in IT hype
News In February, Oracle 9i ran into its own iceberg when British security researcher David Litchfield found numerous security holes, including common buffer overflows and even a flaw that gave hackers administrative access to the entire database.
[December 24, 2002, 8:56]
Oracle releases flaw details
News These include Alexander Kornbrust of Red Database Security, Esteban Martinez Fayo of Application Security and David Litchfield of Next Generation Security Software, who claimed discovery of Oracle Database flaws in a posting to the Full Disclosure...
[April 19, 2006, 8:20]
Exclusive: Major security flaw hits Microsoft
News David Litchfield a Windows NT specialist with British firm Cerberus Information Security, says the latest exploit against a Microsoft product allows a malicious hacker to gain unauthorised access to sensitive files, including cached or stored...
[January 27, 2000, 16:03]
Oracle database flaws affect virtually all financial transactions
News David Litchfield, the MD of UK-based developer Next Generation Security Software, told The Wall Street Journal that he had discovered more than 30 security holes in Oracle's database that could allow hackers to compromise information stored within...
[August 3, 2004, 17:25]
