The National Institute for Standards and Technology (NIST), the state of Maryland, and Montgomery County have teamed to establish the National Cybersecurity Center of Excellence, a $10 million public-private center for accelerating adoption of cybersecurity tools and technologies.

A new survey on attitudes towards passwords indicates an apparent contradiction: most people want stricter password security policies, but don’t bother changing their own default passwords.

The US Central Intelligence Agency’s private sector research funding arm, In-Q-Tel (IQT), is investing in technology to analyze binary code in order to uncover malware.

Digital Bond, a group of researchers dedicated to exposing information security flaws in industrial control systems, released on Valentine's Day a number of exploits of programmable logic controllers (PLCs) that regulate critical infrastructure processes.

The food and beverage industry is the top target for cybercriminals for the second year in a row, according to the 2012 Global Security Report by Trustwave SpiderLabs.

This blog post was written by Quocirca's print speciailst, Louella Ferandes Despite a continued reliance on printing, many businesses overlook print security in their overall approach to data protect...

Are Security Professional blessed with super-human power, or is it that they possess x-ray vision to see through the matrix of normality, seeing those wide open insecurities; or is it they possess som...

Not all systems administration (sys-admin) is done by people. Some applications need administrator access to communicate and make changes. Furthermore, remote management tasks are often carried out us...

Kurt Wismer has just put up a blog asking is the iphone really malware free? (Don’t be put off by the trademark absence of capitalization). Wismer is not illiterate and very far from stupid, ask...

A Superior (infosec) Education As the information security industry becomes more coveted, Wendy M. Grossman takes a look at the university courses available to aspiring and competing infosec professionals on both sides of the Atlantic

Comment: APT Tops Security Risks to Corporate IP in 2012Verdasys’ Bill Ledingham shares his insights on advanced persistent threats (APT) and offers steps companies can take to increase their cybersecurity

Year of the Hack Commonly referred to as the year of the hack, it is no secret what 2011 has become famous for in the information security industry. This year’s headlines, reports Fred Donovan, have been made up of data breaches, hacks, APT attacks and mergers and acquisitions

State of Denial: The Chinese Cyber ThreatHackers exist almost anywhere there is an internet connection, yet the Chinese government continues to downplay their existence at home. Drew Amorosi takes a journey of enlightenment and seeks the truth

The Spy Who Hacked MeJames Bond was more of a jock than a nerd, and he probably wouldn’t have known how to use a computer, says Danny Bradbury. How things have changed…

Interview: Unisys' Patricia Titus The road from Minnesota to Washington has many stops, especially when you take the scenic route. Drew Amorosi recently met Patricia Titus of Unisys to regale in her remarkable journey

You Dirty, Shady RATThe latest APT to come to light is what McAfee has dubbed ‘Shady RAT’. But the folks at Kaspersky have voiced some objections. Drew Amorosi examines the threat…and the controversy

Security Vendors: Trend-Setters, or Trend Followers?How far ahead of the curve – or behind it – are vendors when it comes to identifying security trends? Danny Bradbury finds out that the curve may not matter at all

Comment: It’s Time to Take APTs SeriouslyRoss Brewer of LogRhythm explores the danger posed by advanced persistent threats, the rash of high-profile data breaches that have been making headlines this year, and the steps organizations should be taking to protect IT assets

Comment: Network Forensics – Beyond Activity MonitoringNetwork activity monitoring can alert a company to a security breach or an attack, but Jay Botelho of WildPackets points out that a network forensics solution can take network monitoring a step further and use this information to prevent future attacks