-
Lesson From Pwn2Own: Focus On ExploitabilityTalented programmers can create attack code quickly, suggesting that firms need to focus on patching easily exploitable -- not just exploited -- flawsBy Robert Lemos, Contributing WriterThe Pwn2Own contest earli...
-
Operation Global Blackout: Real danger or irrelevant?Anonymous announced March 31 as the date of the attack, along with the method they intend to use -- disabling the Domain Name Service through DDoS attacks.By Taylor ArmerdingCSO — Will the hacker grou...
-
Will New FTC Privacy Recommendations Challenge E-Commerce?Privacy recommendations from the FTC have been both lauded and criticized, but also triggered talk on the impact of changing attitudes towards privacy.By Brian Prince, Dark ReadingWhile the Federal...
-
Yahoo Says it Will Implement Do-Not-Track Worldwide Later This YearYahoo has committed to honoring user requests not to be tracked by behavioral ads across its portfolio of websites.By Peter Sayer, IDG News Service (Paris Bureau)Yahoo websites worldwide w...
-
Malware To Increasingly Abuse DNS?Many companies do not scrutinize their domain-name service traffic, leaving an opening for malware to communicate using the protocolBy Robert Lemos, Contributing WriterSecurity researchers have looked at ways to abuse the...
-
Case study: What's the Business Case for GRC?Governance, risk and compliance (GRC) can be a dauntingly complex undertaking. But for Fiserv, the alternative was even more complicated.By Bob ViolinoCSO - Does governance, risk and compliance (GRC) really pay...
-
Vetting The Security Of Cloud Service ProvidersA registry offered by the Cloud Security Alliance allows customers to compare the security measures of participating service providers. Is that enough to make cloud more secure?By Robert Lemos, Contributing W...
-
IBM CIO Discusses Big Blue's BYOD StrategyAbout 80,000 IBMers are bringing their own devices to workBy Chris KanaracusIDG News Service (Boston Bureau) — IBM CIO Jeanette Horan has plenty of IT projects and systems to worry about, but perhaps one of the ...
-
Compliance In An Age Of MobilityRegulated companies put compliance efforts in jeapordy unless they address mobilityBy Ericka ChickowskiDark Reading - Mobility may be rewriting some of the rules of business today, but some sets of rules it hasn't budged ar...
-
Disaster Recovery on Double DutyHere's how virtualization and replication technologies protect data from disaster, while keeping business services humming.By Robert L. ScheierComputerworld - At Ingram Micro, executive president and CIO Mario Leone doesn't...
-
When Hackers Want Much More Than MoneyInsider attack data breaches are down in 2011, but hacktivist attacks, with motives beyond money, are up, reports Verizon 2012 Data Breach Investigations Report.By Mathew J. Schwartz, InformationWeekNotably, 58% of al...
-
US ISPs Commit to New Cybersecurity MeasuresThe recommendations from an FCC advisory committee target botnets, domain name fraud and Internet route hijacking.By Grant Gross, IDG News ServiceA group of U.S. Internet service providers, including the four la...
-
Simple Settings That Could Curtail Some AttacksFree tool created by eEye Digital Security checks health of key configurations that can reduce riskBy Kelly Jackson HigginsDark Reading - Sometimes it's the little things -- a misconfigured network proxy or a...
-
BlueCross Fine over Breach Related to HIPAA Notification RuleThe BlueCross BlueShield settlement with the Office for Civil Rights is a reminder for health care organizations to bolster their data security, experts said.By Marcos ColonIn a settlement tha...
-
Computer Viruses Could Move into Biological Realm, Researchers SayAttacks based on designed viruses could interest bioterroristsBy Loek EssersIDG News Service - Computer hackers could create malicious software that crosses the line from technology to biol...
-
How to Be Ready for Big DataBig Data is coming, but for most organizations it's three-to-five years away. That doesn't mean you shouldn't prepare now. Analyzing Big Data will require reference information like that provided by a semantic data model. And o...
-
Tech Insight: Getting A Handle On BYOD -- And Jailbroken PhonesRolling out a mobile device management (MDM) solution is one option, but just how much control should you impose?By John Sawyer, Contributing WriterDark Reading - At the recent SANS Mobile Dev...
-
Android Threat of the Week: 'Smart' Malware Targets Banking CredentialsA new form of "smart" Android malware can not only steal your online banking information, but update itself in the future and secretly send contact information stored on your device of...
-
In New Attack on Mobile Handsets, Fraudsters Target One-Time PasswordsTwo online banking fraud schemes are designed to defeat the one-time-password (OTP) authorization systems used by many banks.By Taylor Armerding, CSOSecurity for mobile handsets keeps i...
-
Cold-Calling Scammers Target Antivirus Customers, Diversify Their TacticsTech support scammers are impersonating customer representatives from antivirus companies.By Lucian Constantin, IDG News ServiceTech support scammers have started targeting antivirus...
