LATEST information
security management news HEADLINES
Are trusted systems a thing of the past?
Changing threat profiles mean that information security systems need to adapt. Read article •Date: 16th May 2008• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
The 2008 Global Information Security Workforce Study
Worries over corporate reputation are driving information security activities. Read article •Date: 23rd April 2008• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
2008 Information Security Breaches Survey published
Biannual government sponsored research into UK information security practices. Read article •Date: 22nd April 2008• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Malware threat evolving
Viruses a much reduced cause of security breaches but other threats take over. Read article •Date: 18th April 2008• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Organizations at risk from unsecured USB flash drives: survey Usage is more than double that expected by corporate IT. Read article •Date: 18th April 2008• Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Australian Privacy Commissioner seeks views on data breach notification guide
Guide aims not only to assist agencies and organisations to minimise the possibility of a breach occurring, but also to prepare for and respond effectively to any breaches if and when they do occur. Read article •Date: 16th April 2008• Region: Australia •Type: Article •Topic: ISM
Rate this article or make a comment - click here
PCI compliance and web application security: what you need to know for the upcoming policy changes
Ten certification skills of business continuity management condensed to six. Read article •Date: 10th April 2008• Region: World •Type: Article •Topic: IT continuity.
Rate this article or make a comment - click here
The impact of the consumerization of IT on IT security management
Alexei Lesnykh highlights new threats and solutions. Read article •Date: 1st April 2008• Region World •Type: Article •Topic: IT Continuity
Rate this article or make a comment - click here
Information security policies ineffective without employee buy-in
According to the early findings of the 2008 UK Information Security Breaches Survey. Read article •Date: 31st March 2008• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Companies worry about the growing data security risk from remote workers and network ‘outsiders’
There is a bigger risk of sensitive data being exposed to ‘unauthorised eyes’ when networks are made accessible to remote workers and external users. Read article •Date: 18th March 2008• Region: US/UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
ENISA issues six recommendations for information security certifications in Europe
New report analyses current trends in certification and offers six recommendations to improve network and information security in Europe. Read article •Date: 13th March 2008• Region: UK/W.Europe •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Cyber Storm II exercise underway
US, Australia, Canada, New Zealand and the United Kingdom taking part. Read article •Date: 11th March 2008• Region:US/Various•Type: Article •Topic: ISM
Rate this article or make a comment - click here
FIRST and CERT looking for submissions of system and network security best practices
Submissions will be judged, with cash awards for the top two. Read article •Date: 29th February 2008• Region:US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Facing up to the threat of cyber-crime
Cyber-crime is constantly evolving : to protect your company your methods and attitudes must evolve too. Read article •Date: 26th February 2008• Region:World•Type: Article •Topic: ISM
Rate this article or make a comment - click here
Researchers reveal new class of vulnerability
A team of academic, industry and independent researchers has demonstrated a computer attack method that can compromise the contents of ‘secure’ memory systems, particularly in laptops. Read article •Date: 22nd February 2008• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Information Security Awareness Forum launched in UK
A collection of influential UK groups and industry bodies associated with information security have agreed to form the Information Security Awareness Forum, which, as the name suggests, aims to enhance the awareness and understanding of information security threats within UK organisations. Read article •Date: 20th February 2008• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Web browsers under siege from organized crime: X-Force
Study finds that a complex and sophisticated criminal economy has developed to capitalize on Web vulnerabilities. Read article •Date: 18th February 2008• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
New website lists validated software security tools for Federal IT
A new website launched by the National Institute of Standards and Technology (NIST) can help federal information systems managers maintain the security of their systems by providing a list of software security tools that have been validated for correct performance by external testing labs as processing SCAP correctly. http://nvd.nist.gov/scapproducts.cfm •Date: 8th February 2008• Region:US •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
New ISO standard for state-of-the-art biometric authentication
ISO 19092:2008, Financial services – Biometrics – Security framework, establishes the security requirements for the implementation and management of state-of-the-art biometric identification technology within the financial industry. Read article •Date: 7th February 2008• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Secure Enterprise 2.0 Forum launched
Top security experts band together to safeguard the consumerized workplace. Read article •Date: 1st February 2008• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Majority of malicious websites are now legitimate sites compromised by attackers
According to Websense Security Labs report. Read article •Date: 25th January 2008• Region:World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
The SANS Institute’s ‘top ten cyber security menaces for 2008’
During December, 2007, twelve cyber security SANS Institute veteransworked together to compile a list of the attacks most likely to cause substantial damage during 2008. Read article •Date: 24th January 2008• Region:US/ World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
CA report forecasts top online threats for coming year
Bots will dominate 2008. Read article •Date: 11th January 2008• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Insider threat studies released by CERT
CERT has issued two new reports into insider threats: ‘Illicit Cyber Activity in the Government Sector’ and ‘Insider Threat Study: Illicit Cyber Activity in the Information Technology and Telecommunications Sector’. Read article •Date: 10th January 2008• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Deloitte survey reveals need for increased security in the global technology, media & telecommunications sectors TMT businesses are treading water when it comes to security and privacy. Read article •Date: 10th January 2008• Region: World •Type: Article •Topic: BC statistics
Rate this article or make a comment - click here
Cyber crime threatens the core infrastructure supporting critical business activities
Tapping into fibre optic cables is easier than you think! Read article •Date: 11th December 2007• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
2008's top ten security threats Websense, Inc. has issued its annual security predictions for 2008-with content-based threats topping the list. Read article •Date: 11th Dec 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Survey explores information security attitudes in US companies Lack of awareness of threats is widespread. Read article •Date: 11th Dec 2007• Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
UK plc leaking like a sieve
Survey into ‘data leakage’ finds that every organisation surveyed had suffered multiple instances of data leakage. Read article •Date: 30th Nov 2007• Region:UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
UK businesses ignoring the data breach risks of temporary staff
Over 80 percent of temporary staff have the same level of access to company documents as permanent staff but without the same accountability: survey. Read article •Date: 28th Nov 2007• Region:UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
2008 cyber threats
What changes can we expect to see in terms of information security threats during 2008? Read article •Date: 20th Nov 2007• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
How to select a password management system
‘Envelope technology’ and the story about the ‘never changing password’: by Oded Valin. Read article •Date: 15th Nov 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Zero byte scripts still fooling today’s signature-based malware detection software
Tier-3 warns of re-working of old malware disguising technique. Read article •Date: 2nd Nov 2007• Region:UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
How unified encryption management (UEM) is changing the threat landscape
Increasing challenges to corporate networks and data requires a new risk management approach. Read article •Date: 30th October 2007• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Framework document on cybersecurity open for public comment Internet facing information systems face serious man-made and natural threats that can adversely affect their associated organization’s mission, operations, image and reputation. In order to provide guidelines for addressing these potential threats, the US National Institute of Standards and Technology has issued a draft of Special Publication 800-39, Managing Risk from Information Systems: An Organizational Perspective, for public comment. •Date: 30th October 2007• Region: US •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
Average cost of ‘greynet’ security incidents doubles
Instant Messaging, P2P, VoIP are increasing information security threats. Read article •Date: 19th October 2007• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Businesses divided over who poses the biggest threat
Who is more risky? Office-based employees, mobile workers, guests or contractors? Read article •Date: 12th October 2007• Region:US/ World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
‘Guidelines on Securing Public Web Servers’
The National Institute of Standards and Technology has released a new publication that provides detailed tips on how to make web servers more resistant to potential attacks. Read article •Date: 12th October 2007• Region:US/ World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Intellect launches working group on data breach notification
Will examine the viability of a data breach notification law in the UK and the potential impact it would have on businesses. Read article •Date: 27th Sept 2007• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
‘Guide to Secure Web Services’
New NIST guide provides a blueprint for safer Web 2.0 operations. Read article •Date: 18th Sept 2007• Region: US/World •Type: Article •Topic: IT continuity
Rate this article or make a comment - click here
INTERPOL urges integrated global cyber-crime investigation network to combat online threats
“Law enforcement agencies and the private sector need to work more closely together, with countries creating specialist joint units ready to respond to a cyber-threat against their nation or to provide assistance for police anywhere in the world." Read article •Date: 13th Sept 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
The global state of information security
The results of a major worldwide study by PricewaterhouseCoopers and CIO & CSO magazines. Read article •Date: 11th Sept 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Is IT security missing the mark?
Data loss and theft continues to create business continuity problems – is this partly due to companies focusing resources on the wrong areas of IT security? By Dr. Jim Kennedy. Read article •Date: 10th August 2007• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
European SMEs have a false sense of security
Survey finds a worrying discrepancy between IT managers' perception of the protection they have in place and their real state of security. Read article •Date: 1st August 2007• Region: UK/W.Europe •Type: Article •Topic: ISM
Rate this article or make a comment - click here
GAO report finds that Federal Agencies have ‘persistent weaknesses’ in information security
Almost all of the major federal agencies had weaknesses in one or more areas of information security controls. Read article •Date: 30th July 2007• Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Tailoring computer security for industrial controls The US National Institute of Standards and Technology (NIST) is soliciting public comments on a proposed expansion to its Special Publication 800-53 that provides specific requirements and guidance for protecting industrial control systems managed by federal agencies or their contractors. More details •Date: 30th July 2007• Region: US •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
Malware 2.0 targets Web 2.0
What are the latest emerging information security threats? Read article •Date: 19th July 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Achieving NERC CIP compliance utilizing ISO 17799:2005
By Dr. Jim Kennedy, MRP, MBCI, CHS-III, CBRM. Read article •Date: 28th June 2007• Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
DTI ‘targets the weakest link’
The UK DTI is spending £4 million on four research projects aimed at reducing the risk that human error plays in computer network security. Read article •Date: 19th June 2007 • Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
FBI cracks Botnet The US Department of Justice and the FBI have announced successful results from Operation Bot Roast, an ongoing cyber crime initiative to disrupt and dismantle ‘botherders’ and to elevate the public’s cyber security awareness of botnets. More details: http://www.fbi.gov/page2/june07/botnet061307.htm •Date: 19th June 2007 • Region: US/World •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
IT security – the challenges and opportunities of cultural diversity and dispersed teams
Security policies must address changing modes of communications and business practises. Read article •Date: 31st May 2007• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Asking the right question: penetration testing vs. vulnerability analysis tools, which is best? By Dennis Hurst, developer security evangelist, SPI Dynamics. Read article •Date: 31st May 2007• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
HP launches security solution to help energy companies reduce risks
HP has introduced an integrated security appliance for energy customers that provides an additional line of defense against cyber-security threats and helps automate compliance tasks Read article •Date: 18th May 2007 • Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Companies are securing the perimeter but failing to protect data from insiders According to a new survey. Read article •Date: 18th May 2007 • Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
IT security improving within UK organisations
But deterioration seen in publishing and finance sectors. Read article •Date: 17th May 2007 • Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Surge of new ISM threats in April
The most reported threat was Win32/TrojanDownloader.Ani.Gen, which exploits how Windows handles animated cursor (.ani) files. Read article •Date: 15th May 2007 • Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
FBI issues wireless security warning
The Wireless Encryption Protocol is increasingly vulnerable to accomplished hackers Read article •Date: 11th May 2007 • Region: US/World •Type: Article •Topic: Warnings
Rate this article or make a comment - click here
EC considers new data protection regulations
Formal communication explains future expectations in the area of privacy enhancing technologies (PETs). Read article •Date: 3rd May 2007 • Region: W.Europe/UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
NIST issues RFID security guidelines
As RFID devices are deployed in more sophisticated applications concerns have been raised about protecting such systems against eavesdropping and unauthorized uses. Read article •Date: 27th April 2007 • Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
The rise of SSL VPNs
The growth of Secure Sockets Layer virtual private networks (SSL VPNs) has accelerated in the last 12 months. Ian Kilpatrick explains why this is happening… Read article •Date: 24th April 2007• Region: World •Type: Article •Topic: IT continuity
Rate this article or make a comment - click here
Interpreting the results of a vulnerability assessment: how to focus on what’s important in your Web application security testing
By Kevin Beaver, CISSP, and Caleb Sima. Read article •Date: 20th April 2007• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Cisco survey finds that information security focus moves from viruses to information theft
Threat profile seems to be changing. Read article •Date: 19th April 2007 • Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Global threat report highlights changes in information security arena
McAfee has published the second issue of SAGE, a semi-annual security journal designed to update and inform technical personnel and security executives on cutting-edge topics that can help them make better informed security decisions. The new issue of the Global Threat Report includes articles on topics including cybercrime, Microsoft Windows Vista security, spyware, spam, cell phone security, data leakage and security risk management. Download a copy •Date: 12th April 2007• Region: World •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
Identity theft in the corporate world
Much has been written about personal identity threat, but the issue is as important in the corporate sector and the consequences can be a real threat to business survival. Read article •Date: 30th March 2007• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
FBI warns of ‘vishing’ threat
New online scam targets VoIP users. Read article •Date: 28th Feb 2007 • Region: US/World •Type: Article •Topic: Warnings
Rate this article or make a comment - click here
Researchers invent new system to control and quarantine worms attacking computer networks
A new anti-worm technology developed by Penn State researchers can not only identify and contain worms milliseconds after a cyber attack, but can also release the information if the quarantine turns out to be unwarranted. Read article •Date: 9th Feb 2007 • Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
False confidence in IT security exposes business to attack
The issue has been identified as a significant cause of high-impact vulnerabilities. Read article •Date: 1st February 2007 • Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Cyber war threats examined
The threat of a cyber attack on the US is a real and growing concern for industry and the government alike. Read article •Date: 30th January 2007 • Region: US •Type: Article •Topic: Terrorism
Rate this article or make a comment - click here
Swedish bank suffers huge phishing fraud
Over 8 million kronor (nearly £600,000) has disappeared in three months as a result of tailor-made Trojans launched by Russian criminals. Read article •Date: 24th January 2007 • Region: W.Europe •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Preventing a brute force / dictionary attack
The brute force attack is about as uncomplicated and low-tech as web application hacking gets, but it is still an important threat. Read article •Date: 17th Jan 2007• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Online identity theft trends McAfee has announced the availability of a paper from McAfee® Avert® Labs highlighting global identity theft trends, including a dramatic increase in online and computer-based identity theft. According to the report, the number of keyloggers–malicious software code that tracks typing activity to capture passwords and other private information–has increased by 250 percent between January 2004 and May 2006. The white paper, titled, ‘Identity Theft,’ is available for download at http://www.mcafee.com/us/threat_center/white_paper.html •Date: 17th Jan 2007• Region: World •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
IBM X-Force predicts security trends for 2007
The release of Microsoft Vista will lead to more critical vulnerabilities. Read article •Date: 7th Dec 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Top ten security threats in 2007
Predictions by McAfee Avert Labs. Read article •Date: 1st Dec 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
The US-CCU Cyber-Security Check List 2007 This checklist provides a useful document to assess current information security measures, to highlight potential gaps and to provide ideas for mitigation and protective measures. Read article •Date: 1st Dec 2006• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Fighting spam, spyware and malicious software: European Member States should do better, says EC
The European Commission has called on all regulatory authorities and stakeholders in Europe to step up the fight against spam, spyware and malicious software. Despite existing EU legislation to outlaw spam in Europe, Europe continues to suffer from illegal online activities from inside the EU and from third countries, the Commission underlines in a new Communication. The Communication stresses that although Internet safety is on the political agenda for some time, national authorities should step up their actions to prosecute illegal online activities. The European Commission calls on industry to cooperate fully, by applying proper filtering policies and assuring good online commercial practices in line with data protection law.Read the full statement. •Date: 29th Nov 2006• Region: W.Europe/UK •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
Security spending by US companies examined
Spending less than five per cent of your IT budget on security? You’re probably under-investing. Read article •Date: 16th Nov 2006• Region: US •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Five major priorities for information security : Ernst & Young
Companies must make continuous improvement in five areas to ensure ongoing effectiveness in information risk management. Read article •Date: 14th Nov 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Why information security and business continuity management must dovetail
By Brian Davey, senior consultant, Teed Business Continuity. Read article •Date: 10th November 2006• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Are UK organisations losing the war on malware?
The majority of organisations within the UK have been the victim of a malware attack, and the business implications of these attacks are becoming increasingly serious. Read article •Date: 10th Nov 2006• Region: UK •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Malicious Code Injection: it’s not just for SQL anymore
Bryan Sullivan discusses the growing threat posed by code injection attacks. Read article •Date: 9th November 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Action list for developing a computer security incident response team
CERT has published a checklist style document which provides a high-level overview of actions to take and topics to address when planning and implementing a computer security incident response team (CSIRT). Read article •Date: 27th October 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
3rd Annual Information Security Workforce Study results
Information security focus should be on policies, processes and people rather than on technology. Read article •Date: 26th October 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Australia National E-Security Awareness Week taking place
Includes the launch of StaySmartOnline advice site. Read article •Date: 24th October 2006• Region: Australia •Type: Article •Topic: ISM
Rate this article or make a comment - click here
NIST issues new computer security guidance documents
Offers advice on issues ranging from securing computers and exercising IT plans to guidance on access control policies, models and mechanisms, and security log management. More details •Date: 13th October 2006• Region: US/World •Type: Article •Topic: IT continuity
Rate this article or make a comment - click here
ISO IT security standards collection now available on one CD The principal ISO and IEC standards for information technology security are now available for the first time as a collection on a single CD-ROM. This provides users with the full text and illustrations of the most important ISO/IEC standards in IT security. The CD-ROM is the first in a new product family underway called the ‘JTC1 Collection’, that will feature collections of IT standards for the other sectors addressed by ISO and IEC Joint technical committee JTC 1, Information technology. JTC1 Collection – IT Security CD-ROM costs 739 Swiss francs and is available from ISO national member institutes. •Date: 13th October 2006• Region: World •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
One anti-virus engine is not enough to protect your business, warns GFI
A new white paper, ‘Why one virus engine is not enough,’ claims that companies relying on the protection of a single anti-virus engine are leaving themselves exposed. More details •Date: 6th October 2006• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
European businesses struggle to manage security labyrinth
The desire for holistic management of IT security is being undermined by complex security purchasing strategies. More details •Date: 5th October 2006• Region: UK/W.Europe •Type: Article •Topic: IT continuity
Rate this article or make a comment - click here
Companies failing to keep up with brand and reputation threats linked to information security issues Must do more to develop contingency plans and brand strategies to address both the risks and opportunities: CMO Council study.
More details •Date: 21st Sept 2006• Region: US/World •Type: Article •Topic: Crisis comms
Rate this article or make a comment - click here
Gartner highlights five high impact IT security risks Gartner has advised businesses to plan for five increasingly prevalent cyber-threats that have the potential to inflict significant damage on organisations.
More details •Date: 21st Sept 2006• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
CERT insider threat research published CERT has issued a comprehensive report in to the threats of insider-based information security breaches. ‘Computer System Sabotage in Critical Infrastructure Sectors’ looks at the ‘complex interactions, relative degree of risk, and unintended consequences of policies, practices, technology, insider psychological issues, and organizational culture over time’. http://www.cert.org/archive/pdf/insidercross051105.pdf •Date: 21st Sept 2006• Region: US •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
The Global State of Information Security 2006 The results of an international study by PricewaterhouseCoopers, CIO and CSO Magazines.
More details •Date: 19th Sept 2006• Region: Various •Type: Article •Topic: ISM
Rate this article or make a comment - click here
‘Pod slurping’ - the mounting threat to your network GFI has published a white paper about the new and increasing threat of ‘Pod slurping.’ The paper explores the threat posed by portable storage devices and considers security measures that should be implemented in addition to perimeter solutions such as firewalls and anti-virus software. To download a copy of the White Paper, please click here (PDF) •Date: 19th Sept 2006• Region: World •Type: Briefing •Topic: ISM
Rate this article or make a comment - click here
Wireless users: beware of ‘fingerprinting’ The next time you're sipping a latte and surfing the Net at your neighborhood wireless café, someone just a few seats away could be breaking into your laptop…
More details •Date: 14th Sept 2006• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
IBM introduces breakthrough technology to ensure data privacy IBM says that the new technology will help businesses address virtually every element of the data security chain.
More details •Date: 13th Sept 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Anti-Phishing Working Group reports 40 percent rise in crimeware sites Research has found that the number of crimeware-spreading websites has surged to an all-time high. More details •Date: 8th September 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
E-Crime incidents are declining yet their impact is increasing Financial losses and reputational damage related to e-crime are on the rise, according to the 2006 E-Crime Watch survey.
More details •Date: 7th September 2006• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
First quantum cryptographic data network demonstrated Quantum key distribution exploits the unique properties of quantum mechanics to securely distribute electronic keys between two parties.
Read article •Date: 30th August 2006• Region: US/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Sensitive information being left on obsolete storage disks Companies are failing to effectively remove sensitive information when decommissioning computer systems.
Read article •Date: 11th August 2006• Region: Various •Type: Article •Topic: ISM
Rate this article or make a comment - click here
University of Pennsylvania researcher warns businesses about the dangers of ‘JitterBugs’ Peripheral devices, such as keyboards, mice or microphones - can be physically bugged in an attempt to steal data.
Read article •Date: 9th August 2006• Region: US/ World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Secure Computing warns of serious BlackBerry hack threat Soon to be released hacking program uses BlackBerry connection to bypass enterprise security mechanisms.
Read article •Date: 9th August 2006• Region: World •Type: Article •Topic: Warnings
Rate this article or make a comment - click here
Beyond stored procedures: ‘defense-in-depth’ against SQL injection Many people have heard of SQL Injection attacks and are aware of the potential danger these attacks present, but most developers’ knowledge of how to prevent SQL Injection is still inadequate. Bryan Sullivan explains why a ‘defense-in-depth’ strategy is required.
Read article •Date: 21st July 2006 • Region: World • Type: Article •Topic: ISM
Rate this article or make a comment - click here
Rash of ID theft cases indicates need for increased focus on security policies in Australia: Gartner Data protection is much less costly than responding to data breaches.
Read article •Date: 21st July 2006• Region: Australia •Type: Article •Topic: ISM
Rate this article or make a comment - click here
2006 Global Information Security Survey results
Ninth annual survey looks at information protection practices around the world.
Read article •Date: 13th July 2006• Region: Various •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Hackers' heaven…
Corporates still leaving security back doors open...
Read article •Date: 6th July 2006• Region: UK/World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
New ISO/IEC standard developed to help businesses detect IT intruders
A framework for the detection of intrusions in computer systems is contained in a new standard from ISO and IEC.
Read article •Date: 30th June 2006• Region: World •Type: Article •Topic: ISM
Rate this article or make a comment - click here
Data leakage: a real business continuity issue
Are reports of data loss and theft just the tip of an iceberg that at best compromises growth and at worst can result in the demise of businesses? Dr. Jim Kennedy gives his views.
Read article •Date: 21st June 2006 • Region: US/World • Type: Article •Topic: ISM
Rate this article or make a comment - click here
Companies see the risk of removable media but still turn a blind eye
A large number of companies have yet to address the problem of removable media.
Read article •Date: 16th June 2006• Region: UK/World • Type</
Are trusted systems a thing of the past?