Infosecurity News

  1. Libyan authorities restrict internet access

    The Libyan government could pull the plug on the country's internet as protests sweep the country.

  2. Iranian Cyber Army turns Voice of America into pro-Iranian propaganda service

    The self-styled Iranian Cyber Army was able to hack into the US government-funded Voice of America website and transform the home page into a pro-Iranian banner that instructed the US government to “stop interfering with Islamic countries.”

  3. UK passport office violated Data Protection Act with data breach

    The UK Identity and Passport Service (IPS) violated the Data Protection Act when it lost the passport renewal applications of 21 UK citizens, according to the Information Commissioner’s Office (ICO).

  4. Audit criticizes FERC for lapses in electric grid cybersecurity standards

    The Federal Energy Regulatory Commission (FERC) approved flawed cybersecurity standards for the US national power grid and failed to adequately monitor their implementation, according to an audit by the Department of Energy’s Office of the Inspector General (OIG).

  5. Internet 'kill switch' reports highlight need for contingency planning, say Infosecurity Europe organisers

    Reports that President Obama is formulating plans to develop an internet 'kill switch', following infrastructure issues raised during the aftermath of the Egypt internet shutdown, should be viewed as a red flag to IT security professionals.

  6. Russian police squash major pharmacy spam campaign

    It seems that Russian police are working steadily to crush the rising tide of so-called pharma spam campaigns, with one security researcher having heard about a raid on the hackers behind the Rx-Promotions scheme.

  7. Zeus malware appears with fake digital certificate

    A German IT security vendor has discovered a version of Zeus that has been signed with its own digital certificate – a move that could fool some corporates into installing the malware thinking it is a legitimate piece of code.

  8. Credant embraces the cloud with on-net policy-based encryption

    Credant Technologies has started testing its data encryption technology in the cloud with a select number of beta test clients, promising other cloud security offerings in the near future.

  9. Security researcher discovers Rapidshare flaw

    A security researcher has detailed how a flaw has been discovered and exploited on Rapidshare, the world's largest file-sharing service.

  10. Oracle fixes 21 flaws in Java SE, Java for Business

    Oracle is fixing 21 flaws in its Java SE and Java for Business products in its February critical patch update issued this week.

  11. Insecure software plays key role in creating cybersecurity vulnerabilities

    Research just published claims to show that a failure to invest in secure software delivery is placing businesses at risk

  12. Free risk analysis/management app released for iPhone, iPad and iPod touch

    Citicus, a corporate risk management and compliance specialist, has released a risk analysis/management app for the iOS range of Apple devices – the iPhone, iPad and iPod touch.

  13. Intergrity and honesty top list of most important federal government cybersecurity skills

    Integrity and honesty top the list of skills needed for the current and future federal cybersecurity workforce, according to an Office of Personnel Management (OPM) survey.

  14. End-of-life IT assets pose serious security risk to most firms

    Research just published claims that end-of-life IT assets - especially portable devices like smartphones and laptops - pose a serious data security threat to many firms.

  15. Pharmacy spam campaign hijacks Google brand name

    A new pharma spam campaign uses the Google brand. More than 250 similar blog-related campaigns have been tracked in the last two days.

  16. West Virginia hospital exposed personal data on 3,655 patients

    The West Virginia Attorney General’s Office announced that personal information of 3,655 patients at the Charleston Area Medical Center (CAMC) was placed onto a publicly available website.

  17. RSA 2011: Application whitelisting comes to the consumer

    Application whitelisting technology is hardly a novel concept – in fact, the technology has been available to enterprises for some years now. But, as GlobalSCAPE executives told Infosecurity at this year’s RSA Conference in San Francisco, application whitelisting for consumers is just around the corner.

  18. BBC 6 Music and 1Xtra websites infected by Phoenix exploit kit hack

    Visitors to two websites operated by the BBC were injected by malicious code earlier this week, opening up users to attacks by hackers, claims Websense.

  19. Lumension releases beta version of its Application Scanner v2.0

    Lumension has released a beta version of its free Application Scanner v2.0 that scans executable files and identifies all applications within the endpoint environment, along with its Endpoint Intelligence Center (EIC) that consolidates malware, vulnerability, patch, and application information with relational cloud-based intelligence.

  20. RSA: Fake AV Companies Making More Money than Security Vendors

    Having spoken on the ‘Public, meet private: Lessons learned in chasing cyber crooks’ panel at the RSA 2011 conference in San Francisco, Pedro Bustamante, senior research analyst at Panda Security, tells Infosecurity’s Eleanor Dallaway why geography is obstructing cyber legal justice

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Identifying Concentration Risk and Securing the Supply Chain

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Reinforcing Firewall Security: The Need to Adapt to Persistent Cyber Threats

What’s hot on Infosecurity Magazine?