-
26 Jan 2012 European Commission data protection proposals draw hostile reaction (SearchSecurityUK.com)
Reaction to the European Commission data protection proposals has been largely negative, as many believe the new rules are costly and misdirected.
Understanding data security breaches eclipses preventing them
Companies are spending more time investigating the source of data breaches and their impacts to reduce expenses, says a survey.
-
25 Jan 2012 Kelihos botnet operator named in Microsoft botnet lawsuit
Microsoft has named a Russian programmer as the one who wrote the malicious Kelihos code used to create a small botnet that peddled spam and child pornography.
New Epsilon CISO to expand security team, assess security practices
Newly appointed Epsilon CISO Chris Ray said he will take a step back and get a better understanding of the business before trying to address gaps.
Symantec pulls pcAnywhere, man-in-the-middle attacks are possible
Source code theft from Symantec’s systems in 2006 places pcAnywhere software at risk of being attacked. Company says software is bundled with many of its products.
-
24 Jan 2012 Black Hole kit fuels drive-by attacks, rogue antivirus declines, Sophos finds
The Black Hole crimeware kit has caused drive-by attacks to surge, according to the Sophos 2012 threat report.
Survey sheds light on SharePoint security concerns (SearchSecurityUK.com)
Respondents' top SharePoint security concerns include frustrated users who inadvertently or deliberately circumvent security policies.
Twitter acquires Dasient in security buying spree, Android platform focus
Web-based antimalware vendor Dasient is the second security firm acquired by Twitter in recent months. In November, Twitter acquired Android security vendor, Whisper Systems.
-
23 Jan 2012 HP TippingPoint revamps Pwn2Own hacking contest, removes mobile hacks
Popular Pwn2Own hacking contest at the CanSecWest conference will be fairer to contestants and winners with larger cash prizes, says TippingPoint.
-
20 Jan 2012 Cloud maturity model to help SMBs judge security of cloud providers (SearchSecurityUK.com)
CAMM, a new cloud maturity model, may be the key to helping organisations, and especially SMBs, evaluate the security of cloud providers.
PCI in the cloud: Segmentation, security compliance is possible, experts say (SearchCloudSecurity.com)
Merchants are ultimately responsible for locking down credit card data and maintaining PCI compliance, according to experts.
-
19 Jan 2012 Facebook users targeted by transformed Carberp Trojan
Attackers seize on the trust victim’s have in the social network by setting up a tricky man-in-the-browser attack and demanding $25 in cash.
Network security test: Crossbeam secures 1 million simultaneous users (SearchNetworking.com)
Crossbeam performed a network security test that emulated one million simultaneous mobile users on its network security hardware.
Symantec breach: Data breach basis of Norton source code leak
Investigators confirmed that a 2006 breach at Symantec Corp. is the root cause of a source code leak of its Norton Antivirus software.
-
18 Jan 2012 Oracle repairs two database flaws, issues 78 patches to product line
The two database patches represented a record low for repairs to Oracle’s database management system since the CPU program began in 2005.
-
17 Jan 2012 Website weaknesses at fault in T-Mobile hacktivist attack
A hacktivist group is claiming responsibility for exploiting website vulnerabilities and stealing the personal information of approximately 80 T-Mobile employees.
-
16 Jan 2012 RSA SecurID breach: Executives attempt to repair tarnished image
While the RSA SecurID breach cost EMC’s security division more than $60 million, executives admit it could take years to restore its tarnished image.
Symantec acquires LiveOffice for online data archiving
Symantec said the $115 million-dollar deal boosts its e-discovery business and offer security and antispam capabilities for on-premise and hosted email.
-
13 Jan 2012 Jericho founder: Get involved in plan for protecting identity online (SearchSecurityUK.com)
Respected identity expert Paul Simmonds says the NSTIC's identity project needs European involvement, or it may not meet Europe's needs.
-
12 Jan 2012 Android app malware exploits Carrier IQ controversy
Phony Android application checks for running Carrier IQ software, but then sends SMS messages to a premium rate number.
Despite recruiting uptick, 2011 IT security pay rates remain flat (SearchSecurityUK.com)
New figures show little fluctuation in IT security pay rates heading into 2012. However, recruitment is rising, along with contract staff hires.
FedRAMP cloud computing standards initiative spurs optimism, criticism (SearchCloudSecurity.com)
Federal cloud security framework aims to speed cloud security assessments and agency cloud adoption.
Stratfor unveils new website, improves security following breach
Intelligence firm CEO apologizes for failing to properly secure customer credit card data and email addresses. Firm now outsources processes to third-party payment processor.
Tools, services emerge for enterprise DNSSEC adoption
Tools, services and support are available, but experts believe a watershed moment is what is needed to push enterprises into DNSSEC adoption.
-
11 Jan 2012 Readiness team warns of spoofed US-CERT email addresses in phishing campaign
A phishing email campaign is targeting private and public sector organizations with phony US-CERT email addresses.
-
10 Jan 2012 Adobe repairs critical Reader, Acrobat flaws, adds JavaScript control
The January 2012 update includes repairs to Adobe Reader X and a new feature giving administrators the ability to whitelist JavaScript execution.
Microsoft January 2012 Patch Tuesday issues Windows Media fix, resolves SSL protocol weakness
Microsoft’s January 2012 Patch Tuesday included one critical security bulletin, addressing dangerous Windows Media errors that could be exploited remotely to gain access to a victim’s computer.
-
09 Jan 2012 Cattles' lost backup tapes highlight risk of unencrypted data storage (SearchSecurityUK.com)
Cattles Group lost backup tapes containing 1.4 million unencrypted customer records. The incident highlights the risks of removable storage.
Ramnit malware data out-of-date, social network says
A Facebook spokesperson said the malware is not propagating on the social network.
-
06 Jan 2012 Symantec source code theft: Threat is low to current products, vendor says
The leak affected Symantec’s endpoint protection and corporate antivirus software. Symantec recommends customers ensure their products are up to date.
-
05 Jan 2012 Care2 resets millions of account credentials following security breach
Care2, a social network that promotes a variety of causes, announced a data security breach Dec. 28 in which hackers targeted account credentials on the company servers.
January 2012 Patch Tuesday: Microsoft to fix eight flaws in Windows, developer tools
The software giant will issue seven bulletins, including one critical, as part of its January 2012 Patch Tuesday security updates.
Ramnit financial malware rips Facebook credentials
Researchers at security firm Seculert have discovered a cache of 45,000 Facebook login credentials tied to the Ramnit worm.
-
04 Jan 2012 Comet hit with lawsuit for alleged Microsoft Windows piracy (SearchSecurityUK.com)
Microsoft is suing Comet, alleging the electronics retailer sold counterfeit Windows backup discs, but Comet claims it was just good customer service.
Tilded platform responsible for Stuxnet, Duqu evasiveness
Researchers at Kaspersky Lab tie the Stuxnet worm and its sister Duqu Trojan to the Tilded platform, which helped the malware evade detection by traditional security software.
-
30 Dec 2011 Multifunctional malware, staged drive-by attacks to rise in 2012
Malware toolkits are being programmed with attacks that make the most business sense, say security experts. Automated toolkit users will have new capabilities to target specific groups and...
Year’s top 5 security podcasts highlight security breaches of 2011
Among the experts are Verizon’s Wade Baker on data breaches, Microsoft’s David Ladd on software security and Catalin Cosoi of BitDefender on targeted attack prevention.
-
29 Dec 2011 Emerging 2012 security trends demand information security policy changes (SearchSecurityUK.com)
2012 security trends involving cookies, fines, devices and threats will demand more skills -- and a little finesse -- from security professionals.
Microsoft emergency update to address hash collision attacks
A critical update affects all versions of Microsoft .NET Framework and other programming languages. The vulnerability could allow denial-of-service attacks.
-
28 Dec 2011 Cybersecurity career experts: Mobile app security skills hot in 2012
The increase in smartphones and other mobile devices has fueled demand for IT security pros with mobile app security and networking skills, say several cybersecurity career experts.
-
27 Dec 2011 Security intelligence firm Stratfor investigates hacktivist attack
A hacktivist group claims it stole credit card data from organizations that purchased the intelligence firm’s publications.
-
21 Dec 2011 Google Gmail doesn't meet LAPD security needs (SearchCloudComputing.com)
Worried about email security, the Los Angeles city government kills plans to move the LAPD to Gmail.
ICO stands by unpopular UK cookie legislation with advice, warnings (SearchSecurityUK.com)
Website owners have resisted compliance with cookie legislation so the ICO has issued more guidance and warnings to nudge them along.
Spear phishing attacks likely key in U.S. Chamber of Commerce breach, experts say
Spear phishing attacks via China were likely what led to the lengthy U.S. Chamber of Commerce breach, experts say.
-
20 Dec 2011 Critical Windows 7 zero-day vulnerability could lead to iFrame attacks
Danish vulnerability clearinghouse Secunia is warning of a highly critical memory corruption zero-day vulnerability that could be targeted by attackers. Proof-of-concept code has been published.
Why businesses should care about proposed Protect IP, SOPA pirating laws
Legislation is aimed at stopping piracy, but security professionals and industry groups say it could weaken security, hamper innovation and limit competition among small businesses and startups.
-
15 Dec 2011 GlobalSign hack update: Certificate authority finds no rogue certs
Following a breach to a GlobalSign Web server, an extensive investigation found no evidence of an infiltration of its digital certificate infrastructure and no leakage of its certificate keys.
-
14 Dec 2011 New Sourcefire firewall with content filtering promises more control (SearchSecurityUK.com)
Sourcefire has announced its new firewall with content filtering, which it says will let administrators control users’ activities at a business level.
Nitro attackers use Symantec report (Security Bytes blog)
Those responsible for the Nitro attacks earlier this year are targeting chemical companies with malicious emails claiming to be from Symantec.
-
13 Dec 2011 December 2011 Patch Tuesday sees 13 Microsoft bulletins, Duqu patch
Microsoft’s 13 security bulletins included critical Windows and Windows Media Player updates.
Google tosses malicious Android apps from Android Market
A developer uploaded more than a dozen cloned games, wrapping them in code that caused device owners to accrue expensive text messaging charges to premium numbers.
-
09 Dec 2011 Special report: 'Eye On' mobile security
SearchSecurity.com's news team explores the challenges and technologies enterprises must know to successfully manage mobile security.
Top 5 mobile phone security threats in 2012
Experts share their 2012 mobile security threat predictions.
-
08 Dec 2011 Android app security: Study finds mobile developers creating flawed Android apps
A study of enterprise applications designed for Android devices found over 40% of Android applications contain hard-coded cryptographic keys, a practice that weakens Android app security.
Microsoft prepares for 14 bulletins, no indication of Duqu repair
Microsoft is preparing to addressing 20 vulnerabilities for its December Patch Tuesday, including flaws in Internet Explorer, Windows Media Player and Microsoft Publisher
-
07 Dec 2011 Adobe security update being issued for zero-day in Reader, Acrobat for Windows
Adobe has issued a warning about a critical zero-day vulnerability in Adobe Reader and Acrobat for Windows. An emergency security update is scheduled.
Malware, lost or stolen devices top mobile phone security threats
Malware authors are just beginning to target popular mobile platforms, and experts say enterprises need to gain control of the devices connecting to the corporate network.
Secure coding techniques absent from eight in 10 Web applications (SearchSecurityUK.com)
Veracode’s latest State of Software Security Report showed secure coding techniques are absent from most Web applications. Android apps fared badly, too.
-
06 Dec 2011 Carrier IQ spyware controversy highlights mobile app access missteps
Enterprises should educate device owners about setting application permissions and mobile application developers should add notification features to establish trust with users, experts say.
Report on UK cybercrime statistics reveals culprits and responders (SearchSecurityUK.com)
PwC’s cybercrime statistics reveal who is most likely to commit cybercrime, and who is the best choice to respond in any organisation.
Symantec launches mobile security evaluation, app assessment services (Security Bytes Blog)
Security assessment reviews an organization’s mobile security policies and technologies, evaluating the mobile security posture against a set of 15 core elements.
-
05 Dec 2011 Concerned about tablet security issues? Some are, others not so much (SearchSecurityUK.com)
Users love their tablets, but security pros are concerned about tablet security issues. However, though tablets bring new threats, not everyone is ringing the alarm.
-
02 Dec 2011 Duqu Trojan attackers cleaned their tracks well, analysis finds
Analysis of the command-and-control server network connected to the Duqu Trojan found hackers worked fast to wipe any data that could be traced to a source.
Swiss bank balances tablet security issues with performance, cost (SearchSecurityUK.com)
When a Swiss bank needed solve its tablet security issues, it found a way to secure its devices without sacrificing performance by using virtualisation.
-
01 Dec 2011 Adobe Flex update patches flaw in Flex application development framework
A coding error in the Adobe Flex SDK could cause developers to create applications with cross-site scripting issues, according to an advisory issued by Adobe Systems.
-
30 Nov 2011 HP printer vulnerabilities leave millions of printers susceptible to attack
Researchers at Columbia University have discovered a vulnerability in HP’s LaserJet printers that could allow attackers to gain complete remote control.
HTML 5 security issues pose challenges for enterprises, experts say
While the Adobe Flash replacement packages browser data more efficiently, HTML 5 security issues present holes that could be targeted by attackers.
Privacy group reports alarming data breach statistics in public sector (SearchSecurityUK.com)
Big Brother Watch reported alarming data breach statistics at local councils, which may be just the tip of the iceberg.
-
29 Nov 2011 New Facebook worm poses as a screensaver
Like previous Facebook worms, the new malware uses stolen credentials to log into accounts and spam contacts.
-
28 Nov 2011 Government publishes UK Cyber Security Strategy to protect public (SearchSecurityUK.com)
The government’s UK cyberscurity strategy includes a new crime unit, more certifications, increased public education, and the creation of kitemarks.
Twitter acquires WhisperSystems mobile security technology
Twitter acquired WhisperSystems, a firm that makes mobile encryption and firewall technology for Android devices.
-
23 Nov 2011 Mobile device management market offers mobile device security options
The mobile device management market offers options for mobile device security challenges, but there's no clear consensus on how to choose a product.
-
22 Nov 2011 Cloud computing risk management: Assessing key risks of cloud computing (SearchCloudSecurity.com)
This guide discusses cloud computing risk management; how to prepare for cloud outages, conduct a cloud risk assessment, and evaluate cloud providers.
-
18 Nov 2011 CSA Congress roundup: Cloud SLAs, compliance and 7 dirty words (SearchCloudSecurity.com)
Topics highlight array of cloud security challenges
-
17 Nov 2011 ISC issues temporary patch for zero-day BIND 9 DNS server flaw
A temporary patch has been released for BIND 9 DNS servers, mitigating a zero-day vulnerability causing server crashes. It's unclear if exploits are in the wild.
Tougher data protection rules will push up cost of email marketing (SearchSecurityUK.com)
The EU will announce tougher rules for collecting information from consumers. Security pros can plan now for the new rules, expected in January 2012.
Updated CSA guidance offers tips, advice on cloud-based security (SearchCloudSecurity.com)
Updated CSA guidance offers practical tips and advice on cloud-based security
-
16 Nov 2011 Cloud security among PCI Council 2012 special interest groups (Security Bytes Blog)
The PCI Security Standards Council delineated a scope of special interest groups known as SIGS in order to help prioritize next years areas of focus.
Coviello talks about building a trusted cloud, resilient security (SearchCloudSecurity.com)
Security needs to change in order to defend against targeted attacks, RSA chairman says.
London firm offers fixed-price cloud DDoS protection (SearchSecurityUK.com)
One company has launched a fixed-price cloud DDoS-protection service for mitigating the ever-present threat of DDoS attacks.
New malware signed with government digital certificate
New malware that is signed with a valid digital certificate once belonging to the Malaysian government has been discovered by researchers at F-Secure.
-
15 Nov 2011 Confusion over APT attacks leads to misguided security effort
Enterprises swayed by vendor marketing and a lack of understanding still fail to adequately counter advanced persistent threats (APT).
Podcast: Inside the DNS Changer botnet takedown (Security Wire Weekly podcast)
Security Wire Weekly podcast: Trend Micro Advanced Threats Researcher Paul Ferguson discusses how the DNS Changer botnet takedown happened and why an even more dangerous botnet era may be beginning.
-
14 Nov 2011 Without enforcement, a mobile device security policy alone falls short
Experts say an enterprise mobile device security policy alone will fall short without the technology to enforce it.
-
11 Nov 2011 Car rental firm cruises past IE6 security issues (SearchSecurityUK.com)
IE6 is plagued with security flaws, yet upgrading can stymie some applications. Avis is piloting a product it believes resolves IE6 security issues.
-
10 Nov 2011 Panel discusses cloud computing security issues (SearchCloudSecurity.com)
Companies need to educate developers, leverage asset inventories and vet cloud providers, panelists advise.
SNW Europe 2011: Cloud location matters to secure cloud data storage (SearchSecurityUK.com)
Storing data in the cloud? Secure cloud data storage means knowing exactly where data is located, duplicated and backed up.
-
09 Nov 2011 FBI takes down DNS Changer botnet; aided $14 million click fraud scheme
Six Estonians were arrested Tuesday as part of the largest botnet takedown ever. The DNS Changer botnet aided a $14 million click-fraud scheme.
-
08 Nov 2011 One critical bulletin, no Duqu patch, in November 2011 Patch Tuesday updates
Microsoft’s November 2011 Patch Tuesday security update features four bulletins, one critical, but no patch for the kernel-level vulnerability exploited by the Duqu Trojan.
Study: Signature-based antivirus can't stop polymorphic malware, unknown malcode
Palo Alto Networks' data indicates polymorphic malware remains a favorite tool for attackers trying to avoid detection by signature-based antivirus software.
-
07 Nov 2011 (ISC)2 promotes secure SDLC with 1000th CSSLP (SearchSecurityUK.com)
(ISC)2 wants its CSSLP certification, focusing on secure software development, to help augment enterprises' secure SDLC programs.
-
03 Nov 2011 NetFlow analyzer improves security, network capacity management (SearchNetworking.com)
Fitchburg State University installed Lancope’s SteathWatch NetFlow analyzer to boost security and network capacity management.
No Duqu zero-day patch yet, but Microsoft offers workaround
A full-blown Duqu zero-day patch won’t be ready for the November 2011 Patch Tuesday release, but experts say enterprises should be ready to deploy it quickly.
Report: ‘R&D is under attack’ from China, Russia (Security Bytes Blog)
Let's use: Foreign nations and other actors are using cyberespionage to take sensitive technology and trade data, a tacit acknowledgment that Chinese cyberespionage represents a serious problem for...
-
02 Nov 2011 Duqu installer contains Microsoft Windows zero-day vulnerability
The newly discovered installer has yielded information on how systems are infected, prompting new guidance on ways to bolster defenses.
Eye On: Network security management
This special report examines fundamental issues key to successful enterprise network security management.
Secunia debuts vulnerability rewards program (Security Bytes blog)
Secunia’s new Secunia Vulnerability Coordination Reward Program enables researchers to report software security flaws and handle the reporting process to the affected vendor.
-
01 Nov 2011 Next generation SIEM could boost network visibility, but platforms must scale, experts say
Can security information and event management systems be the foundation for comprehensive IT data analytics? Powerful correlation engines and sharper analytical capabilities are forthcoming, analysts...
-
27 Oct 2011 Draft report highlights U.S. government satellites under attack (Security Bytes blog)
Two U.S. government satellites came under attack four times in 2007 and 2008, according to a congressional commission.
New Duqu Trojan analysis questions Stuxnet connection
Despite striking similarities in the Duqu kernel driver, the ultimate payloads of Duqu and Stuxnet are significantly different and unrelated, according to a report from Dell SecureWorks researchers.
Researchers uncover AWS security vulnerabilities (SearchCloudSecurity.com)
Amazon says vulnerabilities were fixed and no customers were affected.
University IT security pros thwart content piracy with traffic shaping (SearchSecurityUK.com)
A traffic-shaping system installed at the University of Exeter quickly yielded huge dividends by blocking illegal piracy of music and films.
-
26 Oct 2011 Web application risks exacerbated by social media ties, says ISACA
Asynchronous JavaScript Technology, XML, Flash and HTML 5 enable a rich Web experience, but also give attackers an alarming number of ways to penetrate corporate networks.
-
25 Oct 2011 Researchers break W3C XML encryption algorithm, push for new standard
Researchers in Germany have demonstrated weaknesses in the W3C XML encryption standard used to secure websites and other Web applications.
-
24 Oct 2011 PCI DSS implementation can boost entire data security program (SearchSecurityUK.com)
Not just for payment card data, a PCI DSS implementation can be applied to all data, underpinning an organization’s overall data security efforts.
-
20 Oct 2011 McAfee DeepSAFE technology not yet a game changer, say analysts
Deep Defender examines memory processes, enabling enterprises to block or deny actions to provide rootkit protection. Analysts say there may not be great demand for the protection.
NERC CSO Weatherford accepts DHS position (Security Bytes blog)
Mark Weatherford will focus on cybersecurity operations and communications resilience at the Department of Homeland Security.
Private companies can expect more ICO fines, regulator warns (SearchSecurityUK.com)
A regulator warned private companies who do not adequately protect data will face ICO fines up to £500,000.
-
18 Oct 2011 New Duqu malware shares Stuxnet Trojan code similarities
Symantec researchers said an early analysis of Duqu has found that it could be a precursor to a future Stuxnet-like attack.
Symantec tunes up DeepSight service, unveils authentication capabilities (Security Bytes blog)
Move is part of an industry trend that turns threat intelligence data into actionable information.
-
17 Oct 2011 SEC guidelines push companies to disclose potential breaches (Security Bytes blog)
The U.S. Securities and Exchange Commission guidelines help companies determine how security breaches should be disclosed to potential investors.
Zero-day exploits are low in number, but pose big threat, experts say
A Microsoft analysis found malware targeting zero-day flaws making up only 0.12% of all exploit activity in the first half of 2011, but firms that lack zero-day defenses could be the next target.
-
14 Oct 2011 Web inventor Tim Berners-Lee on vision for the future of IT security (SearchSecurityUK.com)
Web inventor Tim Berners-Lee told RSA Europe attendees the future of IT security must include greater simplicity for users.
-
13 Oct 2011 IT security pros acknowledge network security weaknesses, configuration issues
Improperly configured network devices and the inability to measure the network security posture make most IT organizations incapable of finding gaps in their systems, according to a new survey.
RSA Europe Conference 2011: Nation state groups behind RSA attack (SearchSecurityUK.com)
RSA revealed a “nation state” was behind the SecurID attack in March. Twitter and Facebook are still banned at RSA.
-
12 Oct 2011 New batch of IDS, IPS evasion techniques are hitting their targets (SearchSecurityUK.com)
Stonesoft has discovered 163 new advanced evasion techniques (AET), claiming these AETs can pass below the radar of some IDS, IPS products.
-
11 Oct 2011 Microsoft’s October 2011 Patch Tuesday fixes 23 flaws, releases SIRv11
Microsoft has issued eight security bulletins, two rated “critical,” for its October 2011 Patch Tuesday. It also released its 11th volume of its Security Intelligence Report.
Symantec outlines potential smartphone fraud schemes targeting Android users
Malware and other attack techniques targeting Google Android smartphones are unlikely until cybercriminals figure out how to monetize attacks, according to Symantec.
-
07 Oct 2011 NSA’s Sager on trends of 2011 security breaches, advanced persistent threat hype
Video: The NSA’s Tony Sager discusses macro trends of 2011 security breaches, why advanced persistent threat hype isn’t justified, and infosec lessons learned from his wife and kids.
UK security firm finds new Apache Web server security flaw (SearchSecurityUK.com)
The new Apache Web server security issue could allow hackers access to internal or DMZ systems, says a London security firm.
-
06 Oct 2011 Microsoft gears up for 23 flaws in October 2011 Patch Tuesday
Microsoft’s eight security bulletins address flaws in Internet Explorer, Windows, Forefront UAG and the .NET Framework. Two bulletins are rated “critical.”
New Android malware uses blog platform to communicate with cybercriminals
Trend Micro Inc. has uncovered a new Android malware variant that uses a blog site with encrypted content as its command-and-control server and disguises itself as an e-book reader app.
-
05 Oct 2011 DHS cloud computing: Homeland Security’s model private cloud strategy
Using private cloud at separate data centers has allowed the Department of Homeland Security to strike a balance between security and cost savings.
Security innovation must hurdle academic, regulatory roadblocks (Security Bytes blog)
Regulators, lawmakers, academia share equal blame in putting the brakes on innovation in security, experts say
-
04 Oct 2011 Developing IT risk management decision-making criteria an ongoing challenge
Even the most mature organizations are using multiple risk-management frameworks and various processes to make risk-based decisions.
IBM, McAfee add SIEM security capabilities with acquisitions
McAfee buys NitroSecurity for its ePolicy Orchestrator while Big Blue has created a security division for its Q1 Labs acquisition.
-
03 Oct 2011 Firms struggle to address social networking security risks, survey finds
Many firms rely on antivirus and antimalware technologies to address social networking risks, according to a survey by the Ponemon Institute.
-
28 Sep 2011 Verizon PCI report finds firms struggling to maintain compliance
Many businesses struggle to maintain PCI DSS compliance, suggesting meeting the standard is a goal rather than an ongoing initiative, according to a new report from Verizon Business.
-
27 Sep 2011 (ISC)2 at a crossroads: CISSP value vs. security industry growth
(ISC)2's goal for the CISSP certification is at odds with current certification holders who worry that the value of the CISSP is declining.
(ISC)2’s Tipton on CISSP test transparency, board of directors election process
(ISC)2's Executive Director speaks to several hot-button issues surrounding the CISSP certification, including concerns that it is being watered down.
Cigital BSIMM 3 study provides software security metrics data
The third iteration of the widely acclaimed Building Security in Maturity Model documents software security initiatives at 42 enterprises.
MGH security director on making the security business case
MGH’s security director shares tactics for making the security business case, advancing a security agenda and measuring a program’s success.
Oracle-owned MySQL.com hacked, serves malware to visitors
Visitors to MySQL.com were treated to theBlackHole exploit kit which quietly served malware to Windows users.
Tipton on (ISC)2 training, strategy and women in information security
Executive Director Tipton discusses how (ISC)2 plans to meet the growing demand for information security professionals and new scholarships for women.
-
23 Sep 2011 FBI makes LulzSec arrests in Sony breach investigation
Attackers used SQL injection against Sony’s website to gain access to its internal server and steal sensitive data.
-
22 Sep 2011 Adobe Flash Player security update repairs dangerous XSS issue
Adobe said it is tracking reports that at least one of the coding errors is being actively targeted by attackers.
For smartphone security issues, consumers, enterprises rely on carriers
With rising adoption of more powerful smartphones, mobile carriers are increasingly being held responsible for protecting sensitive data.
-
21 Sep 2011 Advanced Cyber Security Center for IT security launches in Mass.
Massachusetts’ Advanced Cyber Security Center (ACSC) was launched Tuesday to develop future cybersecurity technologies and strategies to protect the nation’s IT infrastructure.
DigiNotar files bankruptcy protection in wake of certificate breach
Certificate authority, DigiNotar filed for bankruptcy protection following a breach of its digital certificate systems and the issuance of fraudulent SSL certificates.
NIST guidelines seek to minimize risk of BIOS attacks
Amid emerging attack methods and the rollout of a new generation of BIOS, NIST offers guidelines to help enterprises reduce the risk of BIOS attacks.
Russian cybercriminal steals $3.2M from U.S. government with Zeus, SpyEye toolkit
In addition to bank fraud, the Russian cybercriminal also stole credentials from users of Facebook, Yahoo, Google, eBay, Amazon, Twitter, PayPal and Skype.
-
20 Sep 2011 Breach fears push federal cloud computing initiative to private cloud
Trapped between budget constraints and security fears, government agencies are increasingly opting for private clouds.
Legal risks abound for firms without a mobile device security policy
Companies without a mobile device security policy risk not only losing data, but also running afoul of the law.
Measurement first among secure software development benchmarks
One expert says before implementing secure software development benchmarks, take stock of the security of existing applications.
NSA: Growing cybersecurity threats demand defenders think like attackers
A top NSA cybersecurity official says the growing cybersecurity threat landscape requires that good guys think like attackers.
-
19 Sep 2011 Oracle issues out-of-band Apache update
Oracle Corp. has issued an out-of-band security alert for its Fusion Middleware and Application Server products that addresses an Apache Web server flaw.
-
16 Sep 2011 ArcSight SIEM integration brings opportunities for ForeScout partners (SearchSecurityChannel.com)
ForeScout’s NAC product may now be integrated into ArcSight’s SIEM platform. This could open doors for ForeScout partners into ArcSight accounts.
PCI Council issues point-to-point encryption validation requirements
A new validation program will certify point-to-point encryption systems that use devices for encryption and decryption as well as hardware security modules.
-
14 Sep 2011 BitTorrent announces breach of its uTorrent systems (Security Bytes blog)
Popular P2P file sharing company said its systems were breached Tuesday, enabling an attacker to replace its uTorrent client download with scareware.
Intel demonstrates McAfee DeepSAFE security platform
Intel showcases the potential of McAfee's new hardware security technology, but shares few details about its product strategy.
-
13 Sep 2011 Microsoft patches 15 flaws, blacklists additional DigiNotar certificates
Microsoft has issued five “important” security bulletins that address 15 flaws in Windows and Office and adds six more DigiNotar root certificates to the Windows Untrusted Certificate Store.
SpyEye attackers turn to Android phones to steal SMS messages (Security Bytes blog)
SMS-stealing Trojan poses as banking protection but once installed it can intercept text messages, sending them to the attacker’s command-and-control server.
Typosquatters continue to plague enterprises, trap victims
Cybercriminals are using the old technique to lure victims into giving up personal information and potentially infect their systems with malware.
-
12 Sep 2011 Sourcefire pushes new ‘Agile’ message to market (Security Bytes blog)
The vendor's new Agile Security initiative is designed to show that Sourcefire is deeper than just Snort.
-
08 Sep 2011 Microsoft prepares to tackle 15 flaws in September Patch Tuesday
Planned updates affect Microsoft Office, Excel and SharePoint Workspace 2010.
Study tracks first signs of Android botnet infections
Cybercriminals are increasingly targeting Android devices with crimeware that is actively communicating with multiple criminal command-and-control servers.
-
07 Sep 2011 GlobalSign temporarily halts issuing certificates to investigate breach claim
Hacker, claiming responsibility for the DigiNotar attack, named GlobalSign as one of four CAs that have been successfully breached.
Standardizing federal security regulations easier said than done
While Oregon officials have had success with a cross-government compliance program, standardizing federal requirements is another matter.
-
06 Sep 2011 DigiNotar CA breach widens, Microsoft, Dutch government take action
A report prepared by the IT security firm conducting an audit of the DigiNotar network, found serious lapses in security and more than two dozen compromised CA servers.
New Java 7 features improve security
New features in Java 7 aim at bolstering security by switching off weaker encryption schemes.
Sony appoints former Homeland Security official as CISO
Recovering from a massive, high-profile breach of its systems, Sony Corp. is looking to Philip Reitinger to lead its security initiatives.
-
01 Sep 2011 PCI tokenization: Vendors need to iron out differences, expert says
The long-awaited PCI Tokenization Guidelines add heft to its use, but persisting problems deter merchants from fully embracing the technology, according to one expert.
Realities of dealing with Web app security flaws
If you have Web apps, odds are you have Web app vulnerabilities. In this interview, Mike Rothman discusses what to do about them.
-
31 Aug 2011 Apache DDoS vulnerability requires immediate update to avoid threat
Apache has released an updated version of its Web server to address a DDoS vulnerability, for which exploit tools have been found in the wild.
-
30 Aug 2011 Browser makers block rogue SSL certificate
DigiNotar, a certificate authority said fraudsters began issuing public key certificate requests for a number of domains, including Google.com. The firm revoked all fraudulent certificates.
Survey: APT attacks a top concern, but many firms fail to enforce policies
A new survey from whitelisting vendor Bit9 found many firms are relying on the honor system to prevent unauthorized downloads.
-
29 Aug 2011 Morto worm, an old-school Internet worm, spreading via RDP
Security firms say the Morto worm isn’t a Trojan, but an Internet worm that spreads via Windows Remote Desktop Protocol (RDP).
-
26 Aug 2011 Jose Granado on the benefits of penetration testing, ‘human hacking’
Ernst & Young’s Jose Granado discusses the benefits of penetration testing and the importance of including “human hacking” as well.
-
25 Aug 2011 In wake of Android Trojans, enterprises need Android security policy
Does your enterprise have an Android security policy? Senior Site Editor Eric B. Parizo says the growing number of Android Trojans now demand it.
Ramnit worm variant now dangerous banking malware (SearchFinancialSecurity.com)
The Ramnit worm now supports man-in-the-middle attacks, giving cybercriminals the ability to drain a victim’s bank account.
Verizon targets hybrid cloud security with CloudSwitch acquisition (SearchCloudSecurity.com)
The deal gives Verizon software to help companies maintain hybrid cloud security as they move applications to the cloud. Terms were not disclosed.
-
23 Aug 2011 Android attacks now outpace all other mobile platforms, says McAfee
McAfee says Google’s Android platform has become the most popular target for mobile malware developers, outpacing Java Micro Edition and Symbian.
-
19 Aug 2011 Botnet security alert: Malicious spam surge marks bot reconstruction (SearchSecurityUK.com)
The percentage of spam messages containing a malicious payload has spiked sharply recently, likely due to a resurgence of spam bots.
IBM researchers push for secure open wireless networks
IBM’s Secure Open Wireless method could secure public Wi-Fi networks automatically and prevent attackers from snooping and stealing users’ data.
-
17 Aug 2011 RSA adds malware domain feeds to CyberCrime Intelligence Service (Security Bytes blog)
List of malware domains can be fed into IPS and IDS appliances to disrupt communication between malware and an attacker’s command and control server.
-
16 Aug 2011 SpyEye source code leaks could fuel new wave of attacks
The SpyEye source code could enable researchers better understand the malware, but it could also make SpyEye a much larger malware threat, according to Damballa Inc.
State IT security model for IRS compliance could work at federal level
Oregon's model for compliance with IRS information security requirements could be used for cross-agency security at the federal level.
-
12 Aug 2011 McAfee reseller program updates offer higher margins, protected deals (SearchSecurityChannel.com)
McAfee has increased margins and added protections for McAfee resellers that register opportunities. Lost deal fees are available as an extra perk.
PCI Council issues long-awaited PCI tokenization compliance guidance
PCI DSS tokenization can reduce the scope of a PCI assessment, according to new guidance issued Friday. One expert says it’s been a long time coming.
RIM issues fix for BlackBerry vulnerabilities
A but in the BlackBerry Mobile Data Service (MDS) Connection Service component can be used to potentially gain network access.
-
11 Aug 2011 China cyberwar topic raised in Republican presidential debate (Security Bytes blog)
Suggesting that cybersecurity is near the top of the national agenda, the topic came up during Thursday's Republican presidential debate.
Gartner: Corporate privacy policy requirements demand urgent review (SearchSecurityUK.com)
The research firm says corporate privacy policy requirements are outdated, due to new technology and legislation, and should be revisited now.
-
10 Aug 2011 Patch Tuesday update blocks dangerous Trojan (Security Bytes blog)
The update to the Microsoft Malicious Software Removal Tool (MSRT) includes the removal of FakeSysdef, a pesky Trojan that poses as a system performance tool.
-
09 Aug 2011 Microsoft Patch Tuesday: Critical Internet Explorer, Windows DNS updates
Coding errors could enable attackers to target Windows machines remotely, gain access to sensitive data and gain complete control of a victim’s computer.
-
04 Aug 2011 Amazon launches new cloud identity management functionality (SearchCloudSecurity.com)
AWS customers can now use their existing identity management systems.
Black Hat 2011: Money for secure application development proves elusive
For most security teams, it’s still a struggle to find money for secure application development, according to a panel of Black Hat 2011 experts.
Black Hat 2011: NetWitness CSO Eddie Schwartz on SecurID attack detection (Security Wire Weekly podcast)
Michael Mimoso talks to NetWitness Corp., CSO Eddie Schwartz live from Black Hat 2011. Schwartz talks about NetWitness’ involvement in detecting the SecurID attack against RSA, as well as the...
CSA cloud provider registry aims to boost cloud transparency (SearchCloudSecurity.com)
Free online registry will provide documentation of cloud provider security controls.
Microsoft’s August 2011 Patch Tuesday to address 22 flaws
The software giant’s August 2011 Patch Tuesday release will address 22 flaws, including two critical, in Windows, Office, Internet Explorer and Visual Studio.
New GrayWolf tool sheds light on Microsoft .NET application security
Black Hat 2011: A free Microsoft .NET application security tool helps programmers reverse-engineer .NET applications to manipulate and control them.
Sophos software design, implementation critically flawed, says researcher
A researcher says poor Sophos software security leaves many open doors, notably cryptographic and attack-mitigation weaknesses in Sophos’ AV engine.
-
03 Aug 2011 Black Hat 2011: Dan Kaminsky reveals network security research topics
Noted researcher Dan Kaminsky presented his latest network security research topics, including vulnerabilities in P2P networks, UPNP and home routers.
Former CIA official cites rise in government cybersecurity awareness
Former CIA ops director Cofer Black urges the security community to educate decision makers and validate how cyberattacks endanger national defense.
McAfee’s Operation Shady RAT exposes national cybersecurity lapses
McAfee says Operation Shady RAT, a research effort involving 72 compromised organizations, exposes key national cybersecurity lapses.
New Microsoft BlueHat Prize offers $250,000 for security innovation
Microsoft sidesteps bug bounty with its own reward program, offering a cash prize for developing computer security protection technology.
Report warns of Android security issues, increased malware, Web attacks
Android devices are now more than twice as likely to be hit with malware, thanks to new techniques exploiting numerous Android security issues.
-
02 Aug 2011 Black Hat 2011 to focus on new hacking techniques, software flaws
Black Hat 2011 preview: This year researchers are expected to demo new hacking techniques for car alarm systems, Android smartphones and Google Chromebooks.
Cybercriminals using Amazon S3 to spread SpyEye toolkit (SearchCloudSecurity.com)
Security researchers detected large volume of the bank Trojan on Amazon’s cloud storage service.
New Veracode technology seeks to speed up SQL attack detection
The new Veracode technology, Dnyamic MP, is said to be able to scan thousands of websites simultaneously to spot an SQL attack or other attack types.
Stealthy attacks contribute to skyrocketing cost of cybercrime, report finds
A new study by the Ponemon Institute found the cost of cybercrime to enterprises has increased 56% over the previous year.
-
01 Aug 2011 Black Hat 2011: Special conference coverage
Get updated news, videos and podcasts from Black Hat 2011, the annual hacker and security research event in Las Vegas.
Gartner: Mobile device management products demand risk analysis (Security Bytes blog)
At the research firm's Gartner Symposium event, an analyst warned of mobile device management products’ abundant features and the need for a risk analysis.