Information Security News Page 4

For more information about the site, see the Site Index

CISOs struggle with visibility, complexity in enterprise risk management
The Flame malware fuels discussion on cyberwarfare threats
P2P encryption for mobile is not an technology endorsement, says PCI Council
Android Malware Genome Project aims to nurture mobile security research
Wysopal on application security training, program gaps
Praise, criticism for retiring cybersecurity coordinator Howard Schmidt
PCI Council urges P2P encryption for mobile payments
Steve Lipner on the Microsoft SDL, critical infrastructure protection
Android security model doing best to enable mobile malware spread
Gartner report: UTM market on the upswing, expert says
BeyondTrust acquires eEye Digital Security for vulnerability management
May 2012 Patch Tuesday: Microsoft fixes Duqu Trojan ghost code
Adobe pushes patch for actively exploited Flash Player vulnerability
Microsoft program breach led to early RDP vulnerability exploit
Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday
Android mobile attack: Hacked websites target Android users
GlobalPayments breach update explains scope of lapse
SSC's new PCI point-to-point encryption guidance outlines testing procedures
Oracle won’t patch four-year-old zero-day in TNS listener
Reverse engineering tools for mobile apps emerging, expert says
Java, HTML exploits via Black Hole toolkit dominate attacks, Microsoft says
Google Vulnerability Reward Program increases, Microsoft unfazed
Shared philosophy aids FBI agent’s move to security startup CrowdStrike
Geer: More redundancy, manual processes can cut IT infrastructure risk
PCI assessor and CISO: Work together for the best PCI ROC
HP study finds widespread custom Web application flaws
Anonymous hacking group member pleads ‘not guilty’ in police website attack
Probing Anonymous hacktivists a serious challenge for researchers
HP warns of malware in HP ProCurve switches flash cards
BYOD security policy, not MDM, at heart of smartphone security
Dangerous Samba vulnerability affects all Linux systems
Microsoft April 2012 Patch Tuesday repairs critical IE flaws, ActiveX control issue
Hunting for application logic flaws requires people, expert says
April 2012 Patch Tuesday: Microsoft to issue six bulletins, four critical
Industry is doomed by automation, misguided IT security strategy, experts warn
Expert: Data breach response plans, investigations should include local cops
Security information management systems aspire to real-time security
Expert advocates for more effective pen tests, less complex security
Global Payments hopes to soon regain PCI compliance after breach
Some CISOs consider ripping out or augmenting outdated SIEM systems
Likely Visa, MasterCard security breach linked to third-party processor
Adobe Flash Player patch fixes critical holes, releases silent automatic updater
Web browser attacks aimed at plug-ins despite rise in flaws, IBM finds
2012 Verizon DBIR: Hacktivists make impact on data breach statistics
Verizon 2012 DBIR recommends log analysis and password management
Verizon DBIR 2012: Automated large-scale attacks taking down SMBs
University researchers document Android adware privacy risks
Symantec acquires Nukona for MDM, mobile application control
Ponemon Cost of Data Breach Report finds expenses declining for first time
Attack code surfaces for Microsoft RDP vulnerabilities
Staff IT skills gap hinders security efforts, CompTIA reports
HP releases new SIRM platform for risk management
Dangerous Microsoft RDP vulnerabilities repaired in Patch Tuesday
Thoma Bravo sells next-gen firewall, UTM vendor SonicWall to Dell
Avast leads, Microsoft free antivirus gaining in AV market share report
Six bulletins, one critical, expected for March 2012 Patch Tuesday
Verizon data breach report shows weak passwords at root of 2011 data breaches
Feds announce Anonymous, LulzSec arrests
Trustwave acquires M86 Security for SaaS, managed security services
Adobe Flash Player update repairs two vulnerabilities, introduces “Priority” ratings
How to manage the compliance cycle to improve your compliance strategy
Experts say Android malware research can help Android app security
FBI Director Mueller: For U.S., cybersecurity threats will surpass terrorism
Hacking back puts security on the offensive
To get help with secure software development issues, find your own flaws
Copycat apps, runaway coding a growing threat, RSA panel says
Can SMBs sue their bank and recover losses from a hacked bank account?
Mobile device attacks to enable more enterprise network intrusions
Microsoft's Charney warns of big data privacy, security challenges
New Web app firewall added to Cyberoam’s UTM appliance range
LockPath updates Keylight risk management software tool
Lumeta releases IPsonar with enhanced network perimeter defense
Lieberman Software introduces expansion of password manager, ERPM
Latest version of Secunia Software Inspector launched at RSA 2012
'Active defense' experts call for larger role for U.S. Cyber Command
FireEye adds File Malware Protection System to existing platform
CISOs fear lack of mobile device control, visibility, survey finds
Developers must improve mobile app security or face backlash, experts say
RSA 2012: SSL certificate authority security takes a beating
Research into cryptographic system limitations crucial, RSA panel says
RSA Conference 2012 keynote prescribes intelligence-driven security
Symantec to release the first layer of O3 cloud security gateway
McAfee adds mobile security suite Enterprise Mobility Management 10.0
WatchGuard announces new unified threat management appliances at RSA
Study: Senior executives lack awareness of IT security and privacy
RSA updates NetWitness appliance, unveils threat sharing framework
IronKey releases cloud service, virtual desktop applications at RSA
CrowdStrike to make RSA 2012 debut with Android attack via Webkit
Trustwave announces new firewall, SIEM and intelligence program
Akamai releases Web security monitoring platform Kona Site Defender
Prolexic to introduce DDoS mitigation service plan PLXconnect
IBM QRadar adds X-Force threat intelligence to SIEM system
Cyberespionage attacks shine harsh light on security technology failures
RSA 2012 talk to offer help understanding IPv6 security issues
Mobile security, BYOD policy issues to trend at RSA 2012, analysts say
RSA Conference 2012 to highlight digital trust
Security startups to unveil new security technology at RSA 2012
Adobe issues Flash Player update, fixes Adobe XSS zero-day flaw
February 2012 Patch Tuesday: Critical IE, Windows kernel flaws fixed
New MDM service ties Apple, Android devices to Active Directory