Information Security News Page 8

For more information about the site, see the Site Index

Ignoring mobile hype? Don't overlook growing mobile device threats
Cybercriminals offer new sales tactics for stolen data
Mozilla proposes Firefox Do Not Track feature to boost browser privacy
Cisco says attackers will take aim at Apple, Android mobile devices
Bredolab Trojan attack uses job applications, nets hackers $150K
Microsoft releases Attack Surface Analyzer to developers
Sandboxing technology bolsters security, but it has weaknesses, expert says
Adobe to overhaul Flash Player interface to improve security, privacy
PCI survey finds more compliance spending planned to meet guidelines
Microsoft repairs critical Windows flaws, issues temporary IE fix
Testing firm finds increase in IPS security performance
Microsoft to patch critical Windows flaw to block ongoing attacks
Researcher breaks Adobe Flash sandbox security feature
Sourcefire buys Immunet for cloud-based antivirus
Dell to acquire SecureWorks for managed security services
Microsoft issues advisory on new Windows Graphics Rendering zero-day
Researcher uncovers browser vulnerabilities with cross_fuzz
IBM predicts rising mobile threats, critical infrastructure attacks in 2011
Microsoft produces workaround for IE zero-day vulnerability
Attack code surfaces for Internet Explorer zero-day vulnerability
Microsoft Outlook 2007 update caused email authentication issues
DDoS mitigation expert predicts more serious application-layer attacks
Information security 2011: Next-gen threats demand layered defense
Core Security launches CISO-level pen testing software
Mozilla extends bug bounty to Web application vulnerabilities
Microsoft repairs critical Explorer flaws, Stuxnet malware vulnerability
Microsoft December 2010 patches to fix 40 flaws
TDL4 rootkit copies Stuxnet, targets Windows users
Computer security awareness training could prevent some data loss, experts say
Compliance burdens hamper vulnerability management processes, survey finds
Consortium to certify integrated endpoint security software
Juniper acquires Altor for virtual machine security
New variant of the Zeus Trojan spotted by Trend Micro
Siberia exploit toolkit gets update to evade antivirus
Sophos: Mobile device security pressuring antivirus vendors
SEO poisoning, online shopping risks and threats will greet holiday shoppers
New Adobe Reader X fortifies PDF viewer against attacks
Researchers warn of impending Ares Trojan infections
Security awareness strategy: Weighing optimism vs. pragmatism
PCI encryption requirements driving widespread adoption, survey finds
Microsoft repairs flaws in Forefront UAG, critical Office flaw
Hoglund: Malware protection and defense needs fresh approach
Rare pay drop for information security certifications, but skills in demand
Microsoft to fix PowerPoint, Forefront vulnerabilities
More PCI encryption, tokenization options emerge for compliance
Microsoft issues advisory on Internet Explorer drive-by attack
Google extends bounty program for Web application bugs
PCI SSC finalizes PCI DSS 2.0
SecTor 2010: Mobile application security flaws a repeat of past mistakes
Google antimalware efforts rely on website malware detection
Bredolab Trojan botnet crippled by Dutch cybersecurity teams
PCI tokenization guidance nearing completion
Adobe warns of critical Shockwave Flash Player zero-day
Microsoft's Internet access control plan deserves a chance
Attackers getting creative, thwarting botnet detection, research finds
HD Moore, Rapid 7 release Metasploit Pro
Microsoft: Botnet infection plague continues despite wins
PCI encryption: PCI Council calls point-to-point encryption immature
At McAfee Focus 10, customers await integrated chip security
McAfee to reassure customers, release product updates at Focus 10
Microsoft patches 49 security vulnerabilities in massive release
Microsoft to address 49 flaws in record patching cycle
Adobe fix plugs dangerous attack holes in Reader, Acrobat
Following Stuxnet Trojan, NERC security chief calls for rugged software
New Verizon report connects PCI non-compliance and data breaches
Symantec encryption strategy expands PGP, nixes GuardianEdge brand
Study finds overconfidence in disaster recovery, continuity plans
Stuxnet Trojan attacks could serve as blueprint for malware writers
Microsoft plans emergency update for ASP.NET encryption flaw
Microsoft issues rushed patch for ASP.NET encryption flaw
State CISOs lack authority to manage risks across agencies
Sick of news about the monthly patch process? You need it; here's why
Researchers develop malware detection for hypervisor security
Invincea virtual browser hopes to eliminate browser malware infections
Attackers target flawed ASP.NET encryption implementations
Cross-site scripting Twitter attack causes chaos
University data breach stats show more data losses
Adobe fixes Flash Player zero-day vulnerability
Microsoft issues security advisory on ASP.NET encryption flaw
Forrester: The simple, two-year plan for security program maturity
Hacking tool exploits faulty AES cookie encryption implementations
IBM to acquire OpenPages for GRC, operational risk management
Microsoft addresses Stuxnet Trojan-related printing flaw
China-based IMDDOS botnet offers DDoS services for hire
Adobe issues warning about zero-day vulnerability in Flash Player
HP buys ArcSight for security information event management in $1.5 billion deal
September 2010 Microsoft security bulletins to fix 13 vulnerabilities
Phishing attacks target users of Facebook, other social networks
Snort creator remains guiding force behind network detection system
Adobe warns of critical zero-day flaw in Reader, Acrobat
Microsoft investigates Internet Explorer CSS bug
New 'month of bugs' campaign outs LInux-based console flaw
Microsoft to address DLL load hijacking flaw, issues new tool
Researchers, ISPs fail to contain notorious Pushdo botnet
Opinion: Security information sharing is a shared responsibility
CA to acquire Arcot Systems for SaaS identity management
Intel-McAfee marriage could fuel renewed chip security interest
Adobe fixes bevy of critical Shockwave Player vulnerabilities
CEO must prioritize software development improvements, secure coding
LANDesk Software acquired by private equity firm