News

IT security

• April 08, 2011 08 Apr'11

  After breach at RSA, two-factor authentication options abound

  Companies specialising in two-factor authentication hope to boost business following the breach of RSA's SecurID, and many plan to capitalise with new products at Infosecurity Europe.

• April 07, 2011 07 Apr'11

  Sophisticated cyber thieves behind Epsilon data breach, says parent company

  US marketing firm Epsilon was hit by one of the biggest data thefts to date, the work of highly sophisticated cyber thieves, says parent company Alliance...

• April 05, 2011 05 Apr'11

  Sex offence technology helps business avoid legal liability

  Technology that cross references image hash codes against child sexual abuse material will help businesses avoid legal liability.

• April 05, 2011 05 Apr'11

  City of York falls foul of data protection act following printer mix-up

  The City of York Council has fallen foul of the Data Protection Act after having accidentally disclosed personal data following a printer mix-up.

• April 04, 2011 04 Apr'11

  RSA discloses phishing-attack data breach details

  RSA, the security division of EMC, has revealed the firm's data breach in mid March was the result of a spear phishing attack. The spear phishing attack exploited an Adobe Flash vulnerability that was unpatched at the time.

• March 31, 2011 31 Mar'11

  Microsoft publishes report on its Security Development Lifecycle

  Microsoft has published a new report that outlines nine years of progress in developing, improving and sharing the Security Development Lifecycle (SDL) process.

• March 30, 2011 30 Mar'11

  Two-factor authentication alternatives

  Worried by the breach at RSA? Here are some two-factor authentication alternatives to consider.

• March 29, 2011 29 Mar'11

  Open Group launches guide to boost ISO 27005 efforts

  A new guide from the Open Group is designed to help organisations meet ISO 27005 standards, but some risk management professionals feel it may not be so effective.

• March 28, 2011 28 Mar'11

  Spotify hit by malicious ads

  Spotify, the popular streaming music service, has been displaying malicious advertisements to users of its Free version.

• March 28, 2011 28 Mar'11

  Businesses spend over £600k a week on data security abroad

  Companies are spending up to £624,000 a week to secure their most sensitive business data abroad, a study has revealed.

• March 25, 2011 25 Mar'11

  Hackers steal member email details from TripAdvisor site

  A number of TripAdvisor members may receive spam after hackers stole email details from the travel website.

• March 23, 2011 23 Mar'11

  SAP combines GRC and BI in new platform

  SAP has launched a new governance, risk and compliance platform that combines and integrates existing GRC and business intelligence technologies.

• March 23, 2011 23 Mar'11

  Budget 2011: UK public worried spending cuts will impact data security

  A large proportion of the UK public is worried that government spending cuts will have a negative effect on data security, a survey has revealed.

• March 22, 2011 22 Mar'11

  What is OpenID? How to use OpenID SSO in your organisation

  An OpenID SSO system allows organisations to simplify website user authentication management. But is OpenID security an issue? Expert Michael Cobb explains.

• March 18, 2011 18 Mar'11

  RSA hit by advanced persistent threat attacks

  RSA, the security division of EMC, has revealed that attackers have stolen information from the company's IT systems

• March 17, 2011 17 Mar'11

  Twitter increases security with HTTPS encrypted tweets setting

  Twitter has added a new profile setting to increase the level of security when accessing the mobile blogging site over an unsecured Wi-Fi connections.

• March 17, 2011 17 Mar'11

  Ban threat looms for Blackberry services as India demand corporate data access

  India could block Research in Motion (RIM) from 31 March 2011 after government officials expressed dissatisfaction with access to Blackberry services.

• March 16, 2011 16 Mar'11

  Trusteer debuts no-software malware protection

  Secure web access firm Trusteer has announced a web login and transaction monitoring service to detect malware without installing software.

• March 16, 2011 16 Mar'11

  RIM urges Blackberry users to disable Javascript after web browsing vulnerability revealed

  Research in Motion (RIM) is advising Blackberry smartphone users to disable Javascript to protect against a security vulnerability in its web browser.

• March 15, 2011 15 Mar'11

  IT failures blamed for immigration system faults

  IT failures have been blamed for failures of the points based immigration system in a National Audit Office (NAO) report.

• March 15, 2011 15 Mar'11

  Adobe warns of zero-day vulnerability in Adobe Flash

  Adobe has published a security advisory for a critical vulnerability in Adobe Flash that can be used to take control of an attacked machine.

• March 10, 2011 10 Mar'11

  Most organisations approach IAM in the wrong way, says Gartner

  Most organisations are approaching identity and access management (IAM) in the wrong way, by planning deployments around technologies, says Gartner.

• March 10, 2011 10 Mar'11

  Advanced persistent threats - are businesses prepared?

  Businesses usually attain adequate levels of IT defences at the point that it becomes more cost effective for cyber criminals to target someone else.

• March 09, 2011 09 Mar'11

  Industry calls on employers to say what security skills are needed

  The National Skills Academy for IT is calling on employers to address the cyber security skills gap by sharing views on the most useful courses and qualifications.

• March 08, 2011 08 Mar'11

  Exclusive: Free software guru Richard Stallman on government IT and why he hates the cloud

  The founding father of the free software movement tells Computer Weekly why government just doesn't "get it"

• March 07, 2011 07 Mar'11

  France's G20 files target of cyber attack

  France's files on the G20 meetings were the target of a cyber attack, the country's finance minister has confirmed.

• March 07, 2011 07 Mar'11

  Western Digital bids $4.3 billion for Hitachi Global Storage Technologies

  Western Digital has tabled a bid of $4.25m (£2.6bn) to acquire Hitachi Global Storage Technologies ending the Japanese HDD vendor's previous preparations for an IPO.

• March 07, 2011 07 Mar'11

  HSBC uses token to secure smartphone banking

  HSBC is sending four million online banking customers a security token which will enable them to log in to their online bank account wherever they are, without using a card reader.

• March 07, 2011 07 Mar'11

  Malvertising, pop-up ad virus problems demand more user protection

  A recent pop-up ad infection on the London Stock Exchange's website highlights the growing scourge of malicious advertising, or malvertising.

• March 01, 2011 01 Mar'11

  Intel finalises £5bn acquisition of McAfee

  Intel has confirmed the completion of its $7.7bn (£5bn) acquisition of security software giant McAfee.

• February 25, 2011 25 Feb'11

  nullcon 2011 Day Zero: Photo feature

  Botnet detection, fuzzing intricacies, Zeus MitMo, VoIP attacks, and more. nullcon Day Zero saw considerable action worth the capture.

• February 24, 2011 24 Feb'11

  ISC releases security fix for Bind DoS vulnerability

  The Internet Systems Consortium has published an advisory and an update for the Bind domain name system software versions 9.7.1 to 9.7.2-P3.

• February 24, 2011 24 Feb'11

  Exxon, Shell, BP hacked in Night Dragon attacks

  Exxon Mobil, Royal Dutch Shell and BP were among the oil companies targeted by hackers working through internet servers in China, say US reports.

• February 24, 2011 24 Feb'11

  Microsoft fixes security flaw in malware protection engine

  Microsoft has patched a flaw in its malware protection engine that could be exploited to gain control of victim's computer.

• February 22, 2011 22 Feb'11

  Legacy kit and lack of skills hold back digital video surveillance

  A huge legacy investment in analogue equipment and a lack of data integration skills are holding back more widespread adoption of fully digital video surveillance systems, according to research just published.

• February 22, 2011 22 Feb'11

  Middle East governments stepping up internet control, study shows

  The internet has proved to be a powerful tool for rallying social and political change, but Middle East governments have also recognised their capability to disrupt communications

• February 21, 2011 21 Feb'11

  RSA 2011: Microsoft promotes co-ordinated vulnerability disclosure

  Software producers remain largely unresponsive to input from security researchers, according to Aaron Portnoy, manager of the security research team HP TippingPoint.

• February 21, 2011 21 Feb'11

  RSA 2011: Top attacks business will face in 2011

  Social networking will be the attacker platform of choice in 2011, says Ed Skoudis, founder and senior security consultant with InGuardians.

• February 17, 2011 17 Feb'11

  New SMB vulnerability identified in Windows XP and Server 2003

  A new SMB vulnerability discovered in Windows could open systems to DoS attacks and remote access. The vulnerability, tagged as CVE-2011-0654, has been rated "critical" and confirmed on Windows Server 2003 SP2 and Microsoft Windows XP SP3.

• February 17, 2011 17 Feb'11

  RSA 2011: RSA, EMC and VMWare advise on defending against advanced persistent threats

  Security leaders have outlined ways organisations can better defend against advanced persistent threats (APTs) in a paper published by RSA, the security division of EMC.

• February 17, 2011 17 Feb'11

  Optus email rejects shortened URLs

  Optus has adjusted its email security regime to repel incoming emails that use URLs shortened by services like bit.ly or TinyURL.

• February 15, 2011 15 Feb'11

  RSA 2011: Cybersecurity leads conference with cloud security keynote

  Cybersecurity is one of the key topics at the RSA Conference 2011 taking place this week in San Francisco.

• February 14, 2011 14 Feb'11

  Dell rolls out services for enterprise mobility

  Dell has introduced a portfolio of services to help businesses manage mobile devices and an increasingly mobile workforce.

• February 11, 2011 11 Feb'11

  Mobile hacker attacks will damage business in 2011

  Businesses cannot afford to ignore mobile hacking attacks as they are proving extremely lucrative over shorter periods, a study of mobile threats has found.

• February 10, 2011 10 Feb'11

  ID card database is destroyed

  The National Identity Register (NIR), which was built to hold the fingerprints and personal details of millions of ID card holders, has been publicly destroyed.

• February 10, 2011 10 Feb'11

  IT departments are unable to support employee devices

  Security concerns are holding companies back from allowing staff to use their own technology at work.

• February 10, 2011 10 Feb'11

  Mobile workers practise lax security

  More than half of Europeans practise unsafe networking when they work away from the office, according to research by German remote access experts NCP Engineering.

• February 09, 2011 09 Feb'11

  Microsoft's February Patch Tuesday outlines five critical vulnerabilities

  Microsoft has released 12 security bulletins addressing 22 vulnerabilities in its monthly security update for February

• February 08, 2011 08 Feb'11

  Post Office faces legal action over alleged accounting system failures

  More than 50 postmasters are planning legal action against the Post Office to reclaim money they paid to the Post Office after being accused of theft and false accounting.

• February 08, 2011 08 Feb'11

  AXA in £150m settlement for software glitch

  Financial services giant AXA will be forced to pay millions of pounds to clients after it emerged that errors in trading software were hidden by three of its subsidiaries, prompting bad performance in investment portfolios.