Infosecurity News

  1. Which? Magazine reports privacy fatigue hitting Facebook

    The latest issue of Which? Computing – the magazine of the UK Consumer’s Association – has published a special report on privacy on the Facebook social network services.

  2. Computershare hit by rogue employee data theft

    Computershare, the international share dealing company – which claims to be the largest in its market – has been hit by a data theft incident from a former employee. What perhaps makes matters worse is that the staffer was an audit risk professional.

  3. Estonian group revealed as key ChronoPay investors

    The saga of Russia’s ChronoPay electronic money operation – which has been hit by arrests and dark accusations over the last 12 months – continued this week with the revelation that an Estonian company is a key investor in the firm.

  4. With data breaches, failing to plan is planning to fail, says Forrester

    A poorly contained data breach and mishandled response could cost companies millions of dollars in lost business and damaged reputation, warns Forrester analysts.

  5. Apple plugs 17 holes in Java for Snow Leopard and Lion

    Apple has fixed 17 vulnerabilities in Java for OS X Snow Leopard and Lion, a move that brings the Mac operating systems up to date with Oracle’s Java SE 6 update 29.

  6. Firefox 8 fixes five critical security flaws

    The newest version of Firefox plugs eight security holes, including five that are rated as critical and three as high.

  7. Malaysian certificate authority trust revoked by Mozilla and others

    An intermediate web certificate authority has had its trust revoked by Mozilla after it was found to issue weak and potentially compromisable certificates.

  8. Adobe cans development for Flash on mobile devices

    Adobe has perhaps bowed to the inevitable and, in a notice to developers, advised them that it is ceasing development of the Adobe Flash environment for smartphones and tablets, although critical security and bug fixes will be available.

  9. Estonia takes down massive cybercriminal net

    Reports are coming in that officials in Estonia – arguably one of the most internet-savvy governments in the world – have taken down a massive DNS-changing cybercrime operation involving a click-fraud program that infected more than four million computers in over 100 countries.

  10. Proof-of-concept malware sneaked onto Apple iTunes; developer given the axe

    When is a flaw not a flaw? When it's a feature of the operating system, it seems, as serial Apple Mac cracker Charlie Miller has tapped a feature of Apple's portable operating system and created an iPhone/iPad app that allows almost complete remote access to the device.

  11. Massive DNS poisoning attacks under way in Brazil

    Kaspersky Lab has made the interesting discovery that there is a massive DNS poisoning attack under way in Brazil, with several ISPs in the country falling victim to the attacks.

  12. DARPA to increase cybersecurity research investment by 50% over five years

    The Defense Advanced Research Projects Agency (DARPA) plans to increase investment in cybersecurity research by 50% over the next five years and focus more on offensive cyberwar capabilities, according to the head of the agency.

  13. How much is your date of birth worth to cybercriminals?

    Infosecurity has reported on the value of stolen credit and debit card credentials several times this year, but now a security researcher has analyzed the value of individual credentials such as your birthday or mother's maiden name – that's right, they all have a value.

  14. Survey finds collaboration is the best cyber defense

    Information security professionals collaborating to outsmart hackers was cited as the most effective way to preempt hacker attacks, according to a survey of Wisegate members.

  15. IT administrators give thanks for light Patch Tuesday

    Microsoft is giving IT administrators a break for Thanksgiving, with only four security bulletins for this month’s Patch Tuesday.

  16. IEEE revises industrial control system security standards

    With the rise in cyberattacks against industrial targets, the Institute of Electrical and Electronics Engineers (IEEE), the professional association responsible for developing IT and other industry standards, is revising its information security protocols for industrial control systems.

  17. Hidden costs of firewall manual audits explained

    Research just released by Tufin claims that the cost of manually auditing firewall – a process that is often required as a regulatory compliance issue – is hidden and extraordinarily high.

  18. Israel's government systems down – was it Anonymous or a server malfunction?

    Two days after Anonymous threatened to attack the Israeli government, the servers of much of Israel's government systems were down yesterday. Although some Anonymous supporters crowed their victory on security forums, the government said that the problem was server-based.

  19. Patricia Titus, former TSA and Unisys CISO, to join Symantec

    Infosecurity has learned that Patricia Titus, formerly global chief information security officer (CISO) of Unisys, will depart the Blue Bell, Penn.-based IT services company to join Symantec in the same role.

  20. NAC market for personal mobile devices is immature, says Ovum analyst

    Despite the proliferation of personal mobile devices in the workplace, the network access control (NAC) market for those devices is still immature, observed Andrew Kellett, senior analyst with Ovum research firm.

Why not watch?

  1. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  2. Identifying Concentration Risk and Securing the Supply Chain

  3. Reinforcing Firewall Security: The Need to Adapt to Persistent Cyber Threats

  4. How to Manage Your Risks and Protect Your Financial Data

What’s hot on Infosecurity Magazine?