With many organizations rushing to formulate their own advanced persistent threat (APT) prevention plans, recent data show that a lack of attention to systematically managing cryptographic keys and certificates is still leaving the attack door wide open.

The European Union could soon consider a proposal that would give law enforcement the ability to engage in “offensive hacking,” i.e., compromise private infrastructure and systems to gather information via spyware, delete data or even take servers offline completely when there is probable cause to suspect cybercriminal activity.

Smart ticketing and electronic fare sales for public transportion may not seem an obvious target for a cyber-crook at first glance, but when you consider all the credit card transactions and contactless payments flying around, e-security emerges as a big concern, particularly when it comes to the cards themselves.

Infosecurity Europe has released basic figures on last month’s eighteenth annual exhibition and conference: pre-ABC audit figures show a 6% increase in visitors over 2012 to 13,200, with more than 70 new exhibitors.

A Chrome extension called Downloadify allowed DRM-free downloads from Spotify’s library of 20 million songs before remedial action by Spotify and withdrawal from the Chrome store by Google.

  “Won't somebody please think of the children?” seems to be Russia's refrain when it comes to their recent inception of internet censorship laws. It appears that Russian...

By David Baker With the growing movement of enterprises to the cloud, it’s more important than ever that service providers demonstrate and prove good security practices to their customers, in g...

When new technology introduces new legal questions, it can take a long time for courts to sort matters out, and cybersecurity is no exception to the rule. Cyberattacks that yielded major breaches of f...

By Mark O’Neill Most people have used the Facebook, Twitter, or Google Apps buttons located on websites to log into third-party services. This approach is useful within consumer IT as it enable...

Comment: Cybersecurity and Reality – What’s in a Word? What does the word 'cyber' really mean? Gregor Campbell cracks open his dictionary to trace its transformation

Interview: Dorothy Denning In her heart a true academic, Drew Amorosi tracks down Dorothy Denning – renowned information security researcher and trainer of today’s cyber warriors

Allan Boardman says it’s time to license information security professionals and join the ranks of other esteemed professions

A licensing scheme for information security professionals would create more issues than it solves, according to Hord Tipton

Comment: Authentication – The Text Factor Lars Nielsen of SMS PASSCODE explains why multi-factor authentication is moving from traditional, token-based preset codes to real-time connected and mobile systems, and the provisioning and security benefits it offers

Interview: Larry Ponemon Dr. Larry Ponemon is the chairman and founder of the Ponemon Institute, and one of the nicest people you may ever meet. Here’s what happened when Eleanor Dallaway met the King of Privacy himself…

In Cyberspace, No One Can Hear You Scream Royal Holloway’s Geraint Price and Keith Martin call for innovative approaches to securing cyberspace that go beyond the current practitioners’ toolkit

Comment: Which CISO Will Lead your Organization to Success? Choosing the right talent for one of the most challenging jobs in the cyber economy can be a tough job, but what kind of CISO should you be looking to recruit to lead your organization? Amar Singh provides his model CISO for your consideration

Comment: How to Fight Back against Cybercriminals Jason Hart of SafeNet discusses the ‘secure breach’ concept based on a data-centric security approach, and how this philosophy can be implemented to protect data in the face of hacker exploits

An Overview of E-Mail Protection Systems Alexander Zatsepin of Protection Technology Research provides a guide to email security technologies and discusses the features you should look for to suit your organization's needs