Infosecurity News

  1. Computer Aid Research highlights bad practice on computer disposal

    Research just published claims to show that companies have a lot to learn when it comes to disposing of old computers and allied kit, both from an ecological and IT security point of view.

  2. UK workers would not blow the whistle on software piracy

    A full 76% of British workers whose companies have a policy on software piracy would not report misuse of software, according to a survey by the UK anti-piracy group Federation Against Software Theft (FAST).

  3. Research claims email no longer the main source of e-discovery requests

    Research just released by Symantec claims to show that email is no longer the primary source of information for legal e-discovery requests, meaning that firms must now be prepared to produce information from more sources than ever before.

  4. Trusteer says Zeus' arrival as number two malware threat direct result of May source code leaks

    Fortinet's report of earlier in the month – showing that the infamous Zeus malware as having shot to the number two spot in the malware charts – comes as no surprise, says in-browser security specialist Trusteer.

  5. Analyst spots major changes in Android DroidDream malware

    It looks like the DroidDream malware – which infected hundreds of thousands of Android users earlier in the year – is back with a sting in the tail, as a Trend Micro threat analyst is reporting that a major recode has been spotted.

  6. FBI probes over 400 cases of corporate bank account cyberjacking

    The FBI is currently investigating over 400 reported cases of corporate banking account takeovers in which cybercriminals have initiated unauthorized automated clearing house (ACH) and wire transfers from US-based organizations, an FBI official told a House panel this week.

  7. Rogue trader who cost UBS £1.3bn highlights failure to monitor unauthorized dealing

    Another case of the unauthorized activity of a trader at an investment bank has highlighted the need for real-time monitoring and control in the investment banking sector.

  8. Hackers flip over Unicode trick

    Hackers are flipping filenames to create apparently 'safe' file extensions that in fact contain malware, according to Czech security firm Avast Software.

  9. Kaspersky senior researcher predicts further DigiNotar-style hacks

    Roel Schouwenberg, a senior security researcher with Kaspersky Lab, is advising internet users to exercise extreme caution when dealing with online certificates in the wake of the DigiNotar certificate authority (CA) systems hack.

  10. Lessons from campus are fundamental to managing consumerization of IT

    The consumerization of IT is one of the hottest trends of late, leaving many ITsec pros wondering how they can balance the demands of their users with the security of their enterprise networks. It appears that one successful model has been under our noses all along – lurking on college campuses.

  11. IT security should be about good management, not tech performance, says IDC

    IT security in an increasingly complex threat environment needs to be more about management than technology performance, according to Eric Domage, program manager for IDC in Europe.

  12. ISACA announces cloud/PCI-DSS conference for November

    ISACA has announced that its Information Security and Risk Management Conference – which takes place in Barcelona on November 14 to 16 – will feature cloud computing and PCI DSS guidance at its heart.

  13. Thales director says DigiNotar hack means that CA security needs to go down the hardware route

    The fallout from the hack of the DigiNotar certificate authority in the Netherlands means that SSL certificates can no longer be trusted, says Mark Knight, director of product management with Thales e-Security.

  14. Employers beware: Fix known flaws or risk retaliation

    Companies should fix known access vulnerabilities in order to prevent disgruntled former employees from wreaking havoc on their systems, advises Adam Bosnian with Cyber-Ark Software.

  15. GlobalSign web certificate authority back online after hacker breach

    Belgian web certificate authority (CA) GlobalSign is back online after investigating claims by the hacker who breached the Dutch DigiNotar CA that its systems had also been breached.

  16. Hacker accesses 40,000 credit and debit cards processed by arcade vendor

    Vacationland Vendors, a Wisconsin-based supplier of arcade equipment and vending machines, said credit and debits cards used in its card processing system over a two and a half year period may have been exposed.

  17. Russia's UK embassy reports DDoS attack on website

    The Russian embassy in London has complained that its website mysteriously crashed over the weekend, after being hit by a DDoS attack. The site downing reportedly coincided with Prime Minister David Cameron's visit to Moscow.

  18. Android keylogger app – powered by accelerometer/gyroscope movements – revealed

    An associate professor in the computer science department of the University of California has developed a proof-of-concept app that uses the smartphone/tablet's on-device accelerometer/gyroscope technology to interpret - and record - users' keystrokes.

  19. More botnets using the same compromised devices, Damballa finds

    The number of botnets running on compromised devices increased in the first half of 2011, despite the recent takedown of a number of high-profile botnets, according to Damballa’s first half 2011 Advanced Threat Report.

  20. Mobile malware up 273% in first half of 2011

    Malware for smartphones and tablets is up 273% in the first half of 2011, compared with the same period in 2010, a study from G Data has shown.

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Identifying Concentration Risk and Securing the Supply Chain

  3. Mastering Australian Privacy Act and Essential Eight While Improving Cybersecurity Posture

  4. How to Manage Your Risks and Protect Your Financial Data

What’s hot on Infosecurity Magazine?