A New Website Gets An Infection Every 5 Seconds

By Alan Harten

According to IT security company Sophos over 380,000 new webpages have some kind of infection.
More worrying is that this is in just the last three weeks.
They say that 90% of these pages have problems caused by hacking techniques such as SQL Injection.
The company is promoting its solution, WebAlert, that warns site owners if their [...]

Public Have No Mercy Over Personal Data Loss

By Alan Harten

Symantec Corp and Moneysupermarket.com, the online price comparison site, have conducted a survey that reveals that no less than 80% of the British public don’t trust companies to hold their personal details securely.
Not only that, 89% feel that repeated security leaks or plain reckless disregard of customer data should be a criminal offence with jail [...]

SPIT anti-SPAM For VoIP

By Alan Harten

SPIT is the unfortunate acronym for Spam over Internet Telephony, a relatively new addition to the world of unwanted male enhancement creams and millionaire making schemes from Africa.
Most spam arrives by email but increasingly spam is being generated in VoIP communications, and the more VoIP grows, the more attention it gets from “We need you [...]

Fortify views Adobe crackers’ approach on Clickjacking as positive

By Storage Expo

Fortify Software, the application vulnerability specialist, says that an informal agreement by the software cracking community to temporarily cease open discussion of the Adobe Clickjacking flaw is a positive move for the IT security industry.
“All responsible security research organisations - ourselves included - will always give the vendor time to respond before discussing the issue, [...]

Fortify Software welcomes IBM’s latest diversification

By Storage Expo

Fortify Software sees IBM’s late entry into the static analysis marketplace as a limited step in the right direction.
Fortify notes that IT research firm Dataquest reports Fortify’s revenue led the entire application security testing market, including IBM’s dynamic testing product line.
“Competition is always good for the industry, but it’s the customer that makes the final [...]

GSS says BBC email list leak highlights dangers of mailing lists

By Storage Expo

Global Secure Systems (GSS) says this week’s revelations that a BBC mailing list had been hacked and the users on the list spammed with scams and/or computer viruses, highlights the dangers that spam poses modern companies.
“Whilst it’s likely that many of the people who signed up to this list were using their personal email addresses, [...]

Experts predict Spike in Fraudulent Activity Due to Banking Turmoil

By Storage Expo

An increase in fraudulent activity is likely to follow the recent events in the banking sector according to UK Company, First Cyber Security.
Customers with internet banking accounts are urged to take care if asked to respond to emails from banks which have been named as being involved in the recent takeovers and mergers.
According to [...]

Companies Need To Ban Personal Internet Use

By Alan Harten

The list of much publicised hacking and other attacks goes on and the latest high profile victim was the BBC.
The Beeb had its mailing list stolen and these addresses were then used for various forms of attack, including scam emails and malicious virus attacks.
Security consultant, Global Secure Systems (GSS), says that this is a [...]

IBM Confirms Finjan’s Report on Crimeware-as-a-Service

By Finjan

Finjan Inc. a leading provider of secure web gateway solutions for the enterprise market, stated today that a blog posting from IBM Internet Security Systems, in which the rapid ascendance of hacking-as-a-service is discussed, confirms an earlier report from Finjan on Crimeware-as-a-Service.
“It is indicative of the domination of criminal gangs in the malware [...]

Mu Dynamics Discovers IKEv2 Vulnerability

By Alan Harten

StrongSwan is an open source IPsec-based virtual private network (VPN) solution for the Linux operating system.
IPsec-based VPNs secure corporate VoIP, email, web, IPTV and other IP-based services over public network infrastructures.
On the 16th of this month StrongSwan’s IKEv2 implementation was found by Mu Dynamics to have a very serious and dangerous 0-day vulnerability.
The [...]

New, Faster, Wireless Rogue Tracing and Containment

By Alan Harten

AirMagnet Inc has announced a new twist on the problem of tracing and blocking rogue devices that are physically connected to an enterprise network.
Unlike previous solutions for wireless LAN security systems the new set up does not use just one tracing mechanism, it makes use of a combination of elements.
Named the Enterprise 8.1 the [...]

WatchGuard Launches XTM 1050 In NYC

By Alan Harten

The Big Apple industry get together, Interop, was chosen by WatchGuard to showcase their new high security XTM 1050.
The XTM is capable of a new high of 10Gbps firewall and 2Gbps IPSec throughput via dual quad-core Intel processors, as well as advanced crypto-acceleration hardware.
It seems almost every day the industry announces a major new [...]

Fortify Gives Away 360 Software to Universities

By Alan Harten

Fortify Software is turning to old fashioned philanthropic gestures.
One hundred years ago the wealthy factory owner would have built an orphanage or added a new library to a university.
The modern version of that is to offer educational establishments your valuable software program.
Fortify has been doing just that, offering educational establishments around the [...]

Pru upgrades Security and Monitors Employee activity

By Alan Harten

Big time international financial services player Prudential, like many other big companies, is trying to deal with the ever increasing rise in Internet-borne threats to its network and recently decided to upgrade their security platform to PGDS.
They selected Calyx to implement the changes to its web security solution. They in turn have been advising the [...]

91% of Organizations Perceive Cybercrime as a Major Business Risk

By Finjan

Finjan Inc., a leading provider of secure web gateway solutions for the enterprise market, today announced the findings of its Web security survey of 1387 IT/Security professionals conducted during July 2008.
The results reveal that an overwhelming number of respondents perceive cybercrime as a major business risk, specifically the possibility of their sensitive information [...]

Cyber-Ark Calls On Government to Adopt EU Security Policies

By Alan Harten

A highly publicized incident in which a disk containing personal details of over 5,000 Ministry of Justice staff went missing has prompted Cyber-Ark to claim that it is time for the EU data security controls to be fully taken up in the UK.
They say there is a strong need for government departments and agencies to [...]

Fortify warns on “Real” & Virtual Servers’ Security Needs

By Alan Harten

Fortify Software, is predicting that VMWare’s release of a multitude of patches this week will not be the last.
This release is so large that it is being referred to many as a mega-patch and Fortify Software believes that ever increasing interest in the virtual environment from accomplished hackers is bound to continue and prompt [...]

Protegrity’s 4.5 Security Software saves network resources

By Alan Harten

Protegrity has released the latest version of its successful Defiance Security Software Suite.
The new 4.5 is the latest version of its data protection solution.
This new version widens its existing cross-platform support aimed at mainframe data protection.
It incorporates an Application Protector and command line File Protector for z/OS.
The new version will provide cover [...]

CloudShield Has New Applications For IBM Blade Centre

By Alan Harten

CloudShield Technologies has announced that support for its DNS Defender and Subscriber Services Manager (SSM) applications is now available with the new IBM Blade enter PN41 blade.
Both national governments and service providers will now be able to take advantage of the platform in order to gain protection from different kinds of attacks.
Users will [...]

First Certified in the Governance of Enterprise IT (CGEIT) Exam to be Administered in December

By ISACA

Registration is now open for the first Certified in the Governance of Enterprise IT (CGEIT) exam. The exam will be administered in English on 13 December 2008 and is available at more than 230 sites internationally.
Register for the CGEIT exam will remain open until 24 September 2008. Candidates can register at www.isaca.org/cgeit.
Offered by [...]

Next Page »