Microsoft's December Patch Tuesday release addresses a recent zero-day vulnerability affecting TIFF images, but leaves a Windows XP zero day for 2014.
06 Dec 2013 Despite cloud computing security risks, infosec pros know their role (SearchCloudSecurity.com)
As business demands and rogue users introduce cloud computing security risks into many enterprises, infosec pros understand they must be enablers.
05 Dec 2013 Cloud incident response planning: Know cloud provider responsibilities (SearchCloudSecurity.com)
A practitioner at the 2013 CSA Congress says enterprises must plan for a cloud incident because providers often fail to detail their responsibilities.
A new website built by Troy Hunt enables possible data breach victims to discover compromised accounts from several high-profile breaches.
Providers at 2013 CSA Congress tout cloud security over traditional IT (SearchCloudSecurity.com)
At the 2013 CSA Congress, executives from Microsoft and AWS made the case for why cloud provider security is superior to traditional IT security.
A recent study by HP found that 9 in 10 iPhone apps have potential vulnerabilities.
Through a $370 million deal to buy DDoS mitigation provider Prolexic, Akamai aims to assemble a more complete set of enterprise security services.
The CrytoLocker ransomware pulls off the usual tricks associated with the attack genre, but one expert says its professional execution sets it apart.
Top Security Story
PCI 3.0 special report: The state of payment card compliance SearchSecurity | 07 Nov 2013
Get an in-depth analysis of PCI DSS 3.0, an illustrated history of PCI DSS and insights on the future of enterprise payment card compliance.