Security Management Strategies for the CIO
Email Alerts
-
Schneier on Stuxnet malware analysis
Security luminary Bruce Schneier said Stuxnet has introduced a new spate of public questions about covert operations carried out with malware and USB sticks, rather than warships and missiles. Article | 01 Mar 2011
-
HBGary Federal hack highlights botched authentication, SQL injection vulns
Website errors and poor authentication processes are among the technical lessons learned from the HBGary Federal hacking fiasco, security consultant says. News | 23 Feb 2011
-
New OddJob banking Trojan keeps users logged in while draining accounts
Security researchers at Trusteer warn that a new Trojan uses session ID tokens to keep banking sessions open long after customers think they have logged off. Article | 22 Feb 2011
-
Advanced persistent threat detection, prevention are hard, but possible
A panel at RSA 2011 explains the organization and methodology behind targeted persistent attacks and what organizations can do to detect and respond to APT. Article | 17 Feb 2011
-
Email attachments, unique attacks highlight Internet espionage trends
Attackers are using malware samples that researchers have never seen before -- and will never see again -- to successfully steal data from unsuspecting organizations, governments and individuals. Article | 17 Feb 2011
-
Move to IPv6 could help spambots churn out more spam, malware says botnet expert
Antispam measures that rely on IP blacklisting could be less effective if Internet Service Providers take the wrong approach to IPv6, said prominent malware expert Joe Stewart. Article | 16 Feb 2011
-
Hackers target oil, energy firms in Night Dragon attacks
Using social engineering techniques and spear-phishing attacks, attackers are exploiting Windows flaws and using tools to steal sensitive proprietary data, including project-financing information. Article | 10 Feb 2011
-
RSA Conference 2011: News, interviews and updates
The RSA Conference is a valuable resource in staying educated on the latest advances, threats and emerging trends in the information security industry. News | 10 Feb 2011
-
Top education, government websites hijacked
Several government and educational websites redirected visitors to fake stores, according to researchers at zScaler. News | 14 Jan 2011
-
IBM predicts rising mobile threats, critical infrastructure attacks in 2011
Big Blue anticipates organizations struggling to manage smartphone security and predicts that critical infrastructure will be among the top targets of cybercriminals in 2011. Article | 03 Jan 2011