Information Security News

Data breach costs continue to rise in 2009, Ponemon study finds
Adobe issues alert on Shockwave Player 3D graphics flaws
PhoneFactor bolsters authentication using voiceprint identification
Microsoft issues critical security update, blocks IE 6 attacks
Security architects fear savvy botnet attacks, IPv6 security issues
Microsoft emergency IE update to block latest corporate attacks
Microsoft to release emergency Internet Explorer update
Latest zero-day attacks only target IE 6, Microsoft says
Social networking security: Twitter, Facebook hacker attacks climbing
Hackers used IE zero-day in Google, Adobe attacks, McAfee says
Microsoft issues advisory on Internet Explorer zero-day
Facebook, McAfee partner to fix social network security issues
Chinese hacker attacks target Google Gmail accounts, top tech firms
Adobe issues patch fixing month-long PDF zero-day vulnerability
Microsoft releases Windows OpenType Font Engine patch
Social networks face user content risks, Web application vulnerabilities
Facebook attacks prompt investments in social networking security
Microsoft to patch single Windows 2000 vulnerability
Another PDF attack targets Adobe zero-day vulnerability
Security report finds rise in banking Trojans, adware, fewer viruses
EMC buys Archer Technologies for compliance management
IIS configuration error leads to increased threat, Microsoft says
PDF attack code complicates security analysis, skirts detection
Five security industry themes to watch in 2010
Hacker pleads guilty to orchestrating Heartland credit card heist
GSM cell phone encryption crack may force operators to upgrade
Microsoft doesn't rule out rushed patch for IIS zero-day vulnerability
Twitter domain hijacking highlights DNS security weaknesses
DDoS attack strikes UltraDNS, affects Amazon, Wal-Mart
Security industry praises Schmidt but sees challenges ahead
Adobe warns of critical Flash Media Server vulnerability
Howard Schmidt named cybersecurity coordinator
Conficker-infected machines now number 7 million, Shadowserver finds
Mozilla fixes Firefox critical memory corruption errors
Firefox, Opera, Safari browsers top list of high risk software
Active PDF attacks target Reader, Acrobat zero-day vulnerability
Security researchers continue hunt for Conficker authors
Database activity monitoring lacks security lift
Adobe updates Flash Player, fixes seven serious vulnerabilities
Verizon report goes deep inside data breach investigations
RSA's Coviello declines cybersecurity coordinator post
Microsoft gives Internet Explorer a major security overhaul
Cybercriminals invest in social networking attacks
Yahoo login credentials at risk to hijacking attack
Microsoft to address 12 vulnerabilities, IE display zero-day
Software piracy group offers cash to whistleblowers
Cybersecurity grant to fund research into critical infrastructure threats
US CERT warns of clientless SSL VPN vulnerability
Microsoft, security firms warn of password meltdown
IBM to acquire database security firm Guardium
Health Net breach failure of security policy, technology
Top spammer gets four years in jail for stock fraud scheme
Cost of security, IT management add up at healthcare facilities, study finds
Exploit code targets Internet Explorer zero-day display flaw
Hackers to sharpen malware, malicious software in 2010
Health Net healthcare data breach affects1.5 million
Massive T-Mobile UK security breach involves insiders
InZero Systems launches hardware-based security gateway
H.D. Moore speaks about Metasploit Project deal, Release 3.3
Secure your remote users in 2010
Windows 7 DoS flaw allows hackers to freeze Microsoft's newest OS
Web security firm ranks Firefox, Safari browsers as flaw prone
Web application vulnerability assessment shows patching progress
Layoffs prompt insider threat fears, cybersecurity survey finds
Microsoft patches serious Windows kernel flaws
Botnet masters turn to Google, social networks to avoid detection
How to use Internet security threat reports
Healthcare security spending remains sluggish, report shows
Microsoft to address flaws in Windows, Office for Mac
Expert calls SSL protocol vulnerability a non issue
Two-factor authentication, vigilance foil password theft
Despite recession, information security certification pay continues to climb
Modern malware, stealthy botnets, adapt quickly, expert says
M86 buys Web security gateway vendor Finjan
Microsoft fixes security update that breaks Internet Explorer
Web-based attacks skyrocket, pirating sites surge, security firms say
Computer worm infections up, scareware antivirus down, Microsoft says
US-CERT warns of BlackBerry snooping software
Kaspersky system analyzes malicious URLs on Twitter for malware
Chip and PIN adoption serves lesson for U.S. payment industry
Silon malware intercepts Internet Explorer sessions, steals credentials
Researchers find thousands of flawed embedded devices
Group to shed light on secure identity management threats
Cisco acquires SaaS security vendor ScanSafe
Pushdo botnet uses Facebook to spread malicious email attachment
Heartland CIO on end-to-end encryption, credit card tokenization
Heartland CIO is critical of First Data's credit card tokenization plan
Trend Micro to address DLP after analyst report criticizes strategy
Web application firewall use goes beyond compliance, company finds
DLP technology challenges security costs
Metasploit Project acquired by vulnerability management firm Rapid7
Gumblar Trojan drive-by exploits spike following Adobe update
Network traffic collection, analysis helps prevent data breaches
Analyst DLP study finds maturity, ranks top DLP vendors
Breach forces payroll service provider PayChoice to shut down again
Enterprise botnets contain thousands of malware variants
Phishing protection begins with training, antiphishing evangelist
Adobe fixes 29 flaws in Acrobat, Reader
Phishing attacks to remain a major problem, say security experts
Microsoft addresses critical SMBv2 flaw, fixes record number of flaws
More