Security policy and user awareness

Targeted attacks and how to defend against them

Analysts Bob Tarzey and Louella Fernandes assess the scale and real impact of targeted attacks the measures being taken to defend against them. Continue Reading

Top 10 Android security tips

As Android becomes more prevalent in the enterprise, Computer Weekly gives you 10 top tips for keeping your devices secure Continue Reading

By

• Paul Marchant

Websites hacked to show child abuse images

More than 25 business websites worldwide have been hacked to show illegal images of child sex abuse Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

Big data journalism exposes offshore tax dodgers

How journalists harnessed big data to challenge offshore financial secrecy Continue Reading

By

• Duncan Campbell and Craig Shaw

FireEye partners with Phishme for multi-layered security

Security technology developer FireEye has partnered with phishing awareness training firm PhishMe to offer a multi-layered approach to securing information networks Continue Reading

By

• Warwick Ashford, Senior analyst

Insider threat: Balancing security with privacy

How can organisations increase security without affecting productivity or encroaching on employees’ right to privacy? Continue Reading

By

• Warwick Ashford, Senior analyst

IT security case studies

Four critical IT security case-studies selected from the winners of Computer Weekly's European User Awards for security Continue Reading

Needle in a Datastack: The rise of big security data

This research from McAfee investigates how well organisations are positioned to address the challenges of managing security in a world of ever increasing amounts and types of data. Continue Reading

2013 Cost of Data Breach Study: UK

The cost of data breaches has risen for UK organisations over the past year, the Ponemon Institute reveals. Continue Reading

Security Think Tank Download: Bring your own device

Downloadable guide. How to make your company secure when you introduce BYOD. Continue Reading

IT Security Case Studies

Warwick Ashford presents 4 essential IT security case-studies selected from the winners of Computer Weekly's European User Awards. Continue Reading

FBI warns of increased spear phishing attacks

The FBI has issued a warning about an increase in spear-phishing attacks targeting multiple industry sectors Continue Reading

By

• Warwick Ashford, Senior analyst

Most firms underestimate volume of malware, study shows

Most companies greatly underestimate the number of malicious programs appearing daily, a global survey of more than 2,000 IT professionals has revealed Continue Reading

By

• Warwick Ashford, Senior analyst

Government launches cyber awareness campaign

UK government debuts the first stage of a £4m cyber awareness campaign as part of the National Cyber Security Programme Continue Reading

By

• Warwick Ashford, Senior analyst

2013 Cost of Data Breach Study: UK

The cost of data breaches has risen for UK organisations over the past year, but companies that appoint chief information security officers with enterprise-wide responsibilities can reduce their costs, this report from the Ponemon Institute reveals Continue Reading

Human error causes most data breaches, Ponemon study finds

Human errors and system problems caused two-thirds of data breaches in 2012, according to a study from Symantec and the Ponemon Institute Continue Reading

By

• Warwick Ashford, Senior analyst

Privileged accounts key to most APT attacks, says Cyber-Ark

The theft, misuse and exploitation of privileged accounts is becoming an increasingly key tactic in advanced persistent threat attacks Continue Reading

By

• Warwick Ashford, Senior analyst

Cyber criminals hack Washington court system

Hackers gain access to the personal data of 160,000 US citizens after compromising Washington State court service servers Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

Computer Weekly European User Awards for Security: Winners

The winners are in for the Computer Weekly European User Awards for Security. See who made the top spots. Continue Reading

By

• Kayleigh Bateman, Computer Weekly

CW buyer's guide: context-aware security

This 11-page Computer Weekly buyer's guide looks at how organisations should approach context-aware security technologies and what business benefits they can deliver. Continue Reading

CW Special Report on CSC

This 16-page report from Computer Weekly analyses the challenges facing CSC, its financial performance, the services it offers, its place in the IT market and its future strategy. Continue Reading

Another online firm hit by data breach

Online deals service LivingSocial is the latest company to report a breach of its computer systems that may mean attackers accessed customer details Continue Reading

Protecting against modern password cracking

This article in our Royal Holloway Security Thesis series explains just how insecure passwords are and offers advice on alternative methods of security. Continue Reading

How to create a good information security policy

Information security policies provide vital support to security professionals, yet few organisations take the time to create decent policies Continue Reading

By

• Andi Scott

Bots and web apps among top threats to data security, says Check Point

Bots, viruses, breaches and attacks are a constant and real threat to the information security of organisations Continue Reading

By

• Warwick Ashford, Senior analyst

Porn websites pose malware risk, says researcher

Browsing popular pornography internet sites pose a growing risk of malware infection, according to a security researcher Continue Reading

By

• Warwick Ashford, Senior analyst

Effective print security for SMBs

Analysts Louella Fernandes and Clive Longbottom discuss how integrated print management provides SMBs with a simple and scalable approach for print security. Continue Reading

US Army practises poor data security on mobile devices

Pentagon inspector general finds smartphones and tablets the US Army buys are not configured to protect sensitive data and allow remote wipe Continue Reading

By

• Warwick Ashford, Senior analyst

Employees ignore security rules, say infosec pros

Most information security professionals believe corporate employees wilfully ignore security rules, survey at RSA Conference 2013 reveals Continue Reading

By

• Warwick Ashford, Senior analyst

Phishing emails sent in pairs to lend authenticity, says training company

Phishing emails are now being deployed in pairs to create the illusion of authenticity, says security awareness training company PhishMe Continue Reading

By

• Warwick Ashford, Senior analyst

The security risk sweeping Europe

Never have we been so open about the information we share online, without so little concern for our privacy. Social media can be a threat to a company, not just to what information an employee chooses to disclose, but because social media sites are prime targets for cybercrime. In this issue of CW Europe read how the increase in social media usage has created new privacy concerns for businesses. Continue Reading

Security the future: Keeping up with the business

Gareth Lindahl-Wise, group information security manager at British American Tobacco, explains the company's approach to enterprise security architecture. Continue Reading

350,000 different types of spam SMS messages were targeted at mobile users in 2012

350,000 different variants of unsolicited spam SMS messages were accounted for in 2012, with 53,000 variants logged for December alone Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

Health records should be protected like bank details, says BCS

The BCS and NHS say people should protect their online medical records in the same way they look after their bank details Continue Reading

By

• Karl Flinders, Chief reporter and senior editor EMEA

The Demise in Effectiveness of Signature and Heuristic Based Antivirus

Anti-virus technology is failing to protect organisations from malicious attacks. Security professionals should look at alternative strategies, the NNC group argues in this report. Continue Reading

Bad outsourcing decisions cause 63% of data breaches

Bad outsourcing decisions nearly two-thirds of data breaches investigated by security firm Trustwave in the past year Continue Reading

By

• Warwick Ashford, Senior analyst

How to find the most vulnerable systems on your internal network

Most corporate networks share common vulnerabilities, but many could be mitigated with education in “hacker thinking” for technical staff Continue Reading

By

• Peter Wood, First Base Technologies LLP

Social media: A security challenge and opportunity

Generation Y workers are posing increasing security challenges to their employers as they share data unreservedly Continue Reading

By

• Warwick Ashford, Senior analyst

Encryption is safe bet, says SafeNet

Encryption is the only thing that can give peace of mind to CIOs and CISOs, says Dave Hansen, president and CEO of security firm SafeNet Continue Reading

By

• Warwick Ashford, Senior analyst

Security visualisation

This article is guideline of how to generate a visual representation of a given dataset and use in the evaluation of known security vulnerabilities Continue Reading

UK Border Agency tenders for security systems

The UK Border Agency (UKBA) and Border Force is tendering for an integrated border security system Continue Reading

By

• Kathleen Hall, TechTarget

Highlights from PwC’s State of Information Security Survey, India 2013

We bring you excerpts from PwC’s India survey on the state of information security as part of this photofeature. Continue Reading

By

• SearchSecurity.in staff

2012 Cost of Cyber Crime Study: UK

The 2012 Cost of Cyber Crime Study: United Kingdom is independently conducted by Ponemon Institute. The benchmark study, sponsored by HP Enterprise Security is based on a representative sample of 38 organisations in various industry sectors. Continue Reading

IT Security Purchasing Intentions 2013

This in-depth research from Computer Weekly and TechTarget reveals the IT security spending priorities of businesses in the UK and Europe. Continue Reading

Cyber criminals target Skype, Facebook and Windows users

Cyber criminals targeted users of Skype, Facebook and Windows using multiple Blackhole exploits in October, according to security firm GFI Software Continue Reading

By

• Warwick Ashford, Senior analyst

Nasa to encrypt data after latest breach

Nasa is to encrypt all its mobile computers after the loss of a laptop containing personal information about more than 10,000 staff Continue Reading

By

• Warwick Ashford, Senior analyst

The Global State of Information Security Survey 2013: Key Findings

This global study examines the state of cyber-security and the impact of cyber crime and offers advice to businesses on reducing the risks. Continue Reading

‘VM-aware’ viruses on the rise

Viruses targeting virtual machines (VM) are growing in numbers and will soon be the dominant force in the world of cyber crime, says Kaspersky Continue Reading

By

• Jennifer Scott, TechTarget

ICO hits Stoke-on-Trent City Council with £120,000 fine

Stoke City Council has breached the Data Protection Act, for the second time in two years, after details of a child protection legal case were emailed to the wrong person. Continue Reading

By

• Jennifer Scott, TechTarget

CW500: Managing the mobile workforce (part 1)

Mobile working has transformed Colt Telecommunications beyond recognition over the past three years Continue Reading

By

• Bill Goodwin, Computer Weekly

Android devices vulnerable to security breaches

More than 50% of devices running Google's Android OS have unpatched vulnerabilities, opening them up to malicious apps and other attacks Continue Reading

By

• Caroline Baldwin, Freelance editor and journalist

IT security awareness needs to be company-wide, says (ISC)²

Information security awareness needs to be more robust, started as early as possible, continually reinforced and organisation-wide, says Julie Peeler, director, (ISC)² Foundation Continue Reading

By

• Warwick Ashford, Senior analyst

IT in Europe, Security Edition: Password security standards and trends

Passwords have long been a security problem. This IT in Europe: Security Edition looks at password trends and alternative forms of authentication. Continue Reading

By

• SearchSecurity.co.UK Staff

ICO stands by unpopular UK cookie legislation with advice, warnings

Website owners have resisted compliance with cookie legislation so the ICO has issued more guidance and warnings to nudge them along. Continue Reading

By

• Ron Condon

Segregation of duties: Small business best practices

Segregating duties can be tough in organisations that have few staff members and resources. Get duty segregation best practices for SMBs. Continue Reading

By

• Michael Cobb

Concerned about tablet security issues? Some are, others not so much

Users love their tablets, but security pros are concerned about tablet security issues. However, though tablets bring new threats, not everyone is ringing the alarm. Continue Reading

By

• Ron Condon

Map your data classification policy to controls effectively: How-to

Data classification policy plays an important role in control implementation and effectiveness. We take a look at the involved parameters. Continue Reading

By

• Vishal Gupta

Scholarships aim to encourage women to pursue cybersecurity careers

To boost the percentage of women in IT security careers, (ISC)2 has instituted two new scholarships, each totalling up to $40,000 per year. Continue Reading

By

• Ron Condon

Hotmail makes sign-in changes, can't please everyone

The Hotmail sign-in page is in the news this week, with subtle changes to browser auto-complete behaviour to provide wider browser compatibility. Continue Reading

By

• Stephen Gillies, editor

Security awareness tips: Making programmes more effective

Several information security pros, via LinkedIn, share their best security awareness tips with SearchSecurity.co.UK. Continue Reading

By

• Ron Condon

Store dealing with dishonest employees uses internal theft prevention software

A London-based sushi chain expects to save almost £1 million this year with the help of new fraud-detection software. Continue Reading

By

• Ron Condon

Two-factor authentication alternatives

Worried by the breach at RSA? Here are some two-factor authentication alternatives to consider. Continue Reading

By

• Simon Sharwood

Optus email rejects shortened URLs

Optus has adjusted its email security regime to repel incoming emails that use URLs shortened by services like bit.ly or TinyURL. Continue Reading

By

• Simon Sharwood

Using resource allocation management to prevent DoS and other attacks

Resource allocation management is an effective way to prevent denial-of-service (DoS) and other attacks. Find out how to allocate resources in order to increase the security of your organisation. Continue Reading

By

• Michael Cobb

How to find credit card numbers and other sensitive data on your users' computers

If you worry that important and sensitive data like credit card numbers is lurking on your users' hard drives, read on to learn how to search for and corral this information. Continue Reading

By

• Mike Chapple, University of Notre Dame

Ian Yates' quite literal year in review

Ian Yates product reviews are unique and make ideal holiday reading. Continue Reading

By

• Ian Yates

How to manage Hyper-V's security permissions

Learn how to operate Hyper-V's Authorization Manager (Azman) in this How-To guide. Continue Reading

By

• Anil Desai

Pacific Hydro finds UTM improves its environment

Renewable energy company Pacific Hydro has found Watchguard's unified threat management devices make a valuable contribution to its defence in depth strategy. Continue Reading

By

• Simon Sharwood

Now the dust has settled on pornography filtering...

Andrew Collins looks at the controversial topic of Internet porn filtering in Australia, now that the federal government has enacted its hotly debated plans. Continue Reading

By

• Andrew Collins

Nigel Phair, author of 'Cybercrime: The Reality of the Threat', on Australia's response

In the first instalment of a three part interview, TechTarget Australia's Patrick Gray interviews Australian Federal Police Agent Nigel Phair about his new book: Cybercrime: The Reality of the Threat. Until recently, Phair was the Team Leader of Investigations at the Australian High Tech Crime Centre (AHTCC) in Canberra. Continue Reading

By

• Patrick Gray

Telstra network build spurs new security plan

Telstra's experience constructing the Next G and Next IP networks has seen the telco evolve a new security strategy. Continue Reading

By

• Simon Sharwood

Virtualisation: friend or foe? [Day Two: The virtual appliance]

Virtualisation slashes costs, makes management easier, unshackles software configurations from hardware. And it is being embraced around the world. But is it secure? In this three-part series, Patrick Gray explores the security implications of this important new technology. Continue Reading

By

• Patrick Gray