Apple has issued two security fixes for Mac OS X 10.5 Leopard that targets holes exploited by the Flashback malware.

Last month, Ars Technica asked the question, ‘Can Apple give police a key to your encrypted iPhone data?’ It concluded that it probably could not for the data on the device; but probably could for data stored in iCloud. Now the question has less relevance, with the latest version of ElcomSoft’s EPPB and the increasing use of iCloud.

The US Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) is waning about a critical vulnerability in Progea’s Movicon 11, an industrial control product that manages critical infrastructure systems.

The Pentagon is making permanent the Defense Industrial Base (DBI) Cyber Pilot program that involves sharing cyber intelligence with the US defense industry.

Security professionals are experiencing an information overload and want better metrics to analyze the data so they can take action, according to a survey conducted by Dimensional Research on behalf of RedSeal Networks.

Many system administrator tasks are a repetitive drudge. Senior IT managers do not want to be doing such tasks on a day-to-day basis and would prefer to delegate these to junior staff or contractors f...

In February of this year, the University of North Carolina-Charlotte issued a statement that a breach had occurred. It now seems to have been a serious one.  As of the statement on May 9th (...

By Ed King A single enterprise wide identity and access management (IAM) platform is a noble but unattainable goal. The network perimeter is now a metaphorical “Berlin Wall” between the t...

The end of April was a busy time for IT security analysts. April 24th to 26th was Infosecurity Europe (InfoSec) at Earl’s Court, the biggest such trade show in Europe and the following week was ...

Comment: It’s Not about Network Security, It’s about Business SecurityGidi Cohen of Skybox Security explores the challenges information security executives face, and provides key steps they can take to tune their existing security infrastructure to be more effective and efficient

Comment: Defeating APT in the Cyber TrenchesJim Butterworth of HBGary argues that instead of building bigger digital walls to secure their organizations, CSO’s must instead build resilience by combating advanced persistent threats (APTs) where they least expect them – already firmly established inside the network

Comment: Taking the Ethical High RoadMarcus Ranum of Tenable Network Security outlines how the IT security industry can ensure its integrity by maintaining a strong code of ethics

Interview: Boris Goncharov, G4SQ&A with Boris Goncharov, CISO, G4S, and keynote speaker at Infosecurity Europe 2012

Interview: Matt Palmer, Skipton Building SocietyQ&A with Matt Palmer, group information security officer, Skipton Building Society, and a keynote speaker at Infosecurity Europe 2012

Interview: Mark Adams-Wright, Suffolk County CouncilQ&A with Mark Adams-Wright, CISO, Suffolk County Council, and keynote speaker at Infosecurity Europe 2012

Comment: Flow-based Monitoring Provides Security for the BYOD EnvironmentLancope’s Joe Yeager discusses the benefits of leveraging flow-based data collection and analysis for mobile device security in BYOD environments

Interview: Graham McKay, DC ThomsonQ&A with Graham McKay, CISO, DC Thomson & Co. Ltd., and keynote speaker at Infosecurity Europe 2012

Interview: Tracy Andrew, Field Fisher WaterhouseQ&A with Tracy Andrew, information security & compliance officer, Field Fisher Waterhouse LLP, and keynote speaker at Infosecurity Europe 2012

Comment: The EU, Cloud Computing and SecurityHP’s Prescott Winter gives his perspective regarding developments in cloud computing and security within the European Union