http://www.infosecurity-magazine.com/ Copyright Elsevier Ltd Intuitiv Ltd (www.intuitiv.net) 2009-07-04T22:07Z http://www.infosecurity-magazine.com/ http://www.infosecurity-magazine.com/_common/img/template/infosec-uk/site-logo.gif http://www.infosecurity-magazine.com/view/2379/the-information-security-industry-needs-to-offer-more-than-just-security-says-secerno-coo-/ The information security industry needs to adapt to cloud computing, not the other way around, says Secerno’s founder and COO, Paul Davie, who talks to Infosecurity about how offering security is no longer enough 2009-06-30 http://www.infosecurity-magazine.com/view/2379/the-information-security-industry-needs-to-offer-more-than-just-security-says-secerno-coo-/ http://www.infosecurity-magazine.com/view/2418/data-leakage-webinar-coming-up/ Data leakage - one of the IT security hot topics of the moment - is on the agenda of a joint Cyber-Ark/Websense webinar being broadcast live at 3pm today, and available via the Infosecurity web site on a recorded basis after that time. 2009-07-02 http://www.infosecurity-magazine.com/view/2418/data-leakage-webinar-coming-up/ http://www.infosecurity-magazine.com/view/2419/new-trojan-causes-problems-for-google-adsense-advertisers/ A nasty new trojan that triggers multiple click-throughs on Google AdSense - the pay-per-click sponsored web search service operated by Google - has been discovered by SecureWorks. 2009-07-02 http://www.infosecurity-magazine.com/view/2419/new-trojan-causes-problems-for-google-adsense-advertisers/ http://www.infosecurity-magazine.com/view/2420/appliancebased-it-security-comes-of-age/ If you thought appliance-based IT security was old hat, Infosecurity has some news for you - we have an entertaining webinar coming up on July 07 that will detail the benefits that this revitalised technology can now bring to the table. 2009-07-02 http://www.infosecurity-magazine.com/view/2420/appliancebased-it-security-comes-of-age/ http://www.infosecurity-magazine.com/view/2390/id-databases-go-ahead-despite-uturn-on-id-cards/ ID cards will no longer be compulsory, but anyone applying for a British passport will added to the national identity card database, the government disclosed yesterday. 2009-07-01 http://www.infosecurity-magazine.com/view/2390/id-databases-go-ahead-despite-uturn-on-id-cards/ http://www.infosecurity-magazine.com/view/2363/cryptography-breakthrough-paves-way-to-secure-cloud-services/ A research student who had a summer job at IBM, has cracked a cryptography problem that has baffled experts for over 30 years. The breakthrough may pave the way to secure cloud computing services. 2009-06-30 http://www.infosecurity-magazine.com/view/2363/cryptography-breakthrough-paves-way-to-secure-cloud-services/ http://www.infosecurity-magazine.com/view/2371/pirate-bay-web-streaming-service-could-it-be-legal/ The Pirate Bay - arguably one of the highest profile file-sharing indexing portals in the world - has hit the headlines with plans to launch a video streaming/sharing website ostensibly similar to Russian sites such as Movieberry.com 2009-06-30 http://www.infosecurity-magazine.com/view/2371/pirate-bay-web-streaming-service-could-it-be-legal/ http://www.infosecurity-magazine.com/view/2381/iceman-pleads-guilty-in-carders-market-card-data-theft-case/ Max Butler - aka Max Vision and Iceman - has pleaded guilty to two counts of wire fraud in connection with the theft of almost two million credit and debit card details, as well as an astonishing $86 million of allegedly fraudulent purchases. 2009-06-30 http://www.infosecurity-magazine.com/view/2381/iceman-pleads-guilty-in-carders-market-card-data-theft-case/ http://www.infosecurity-magazine.com/view/2349/interoute-offers-free-desktop-internet-security-barometer/ Interoute, the internet backbone carrier, has released a free 'internet barometer' desktop application that displays the state of the global internet, as well as potential threats to the net's IP-based infrastructure. 2009-06-29 http://www.infosecurity-magazine.com/view/2349/interoute-offers-free-desktop-internet-security-barometer/ http://www.infosecurity-magazine.com/view/2354/turning-the-spotlight-on-its-dirty-little-secret-securing-the-common-point-of-failure-in-it-risk-controls/ Check out BrookCourt's whitepaper on how the rise of identity and access management has revolutionised how the enterprise defines a key domain of IT risk control. 2009-06-29 http://www.infosecurity-magazine.com/view/2354/turning-the-spotlight-on-its-dirty-little-secret-securing-the-common-point-of-failure-in-it-risk-controls/ http://www.infosecurity-magazine.com/view/2342/spammers-use-michael-jacksons-death-to-harvest-email-addresses/ Spammers are using the death of music legend Michael Jackson to harvest unsuspecting computer users' email addresses for future spam campaigns. 2009-06-26 http://www.infosecurity-magazine.com/view/2342/spammers-use-michael-jacksons-death-to-harvest-email-addresses/ http://www.infosecurity-magazine.com/view/2343/study-shows-high-vulnerability-of-social-networkers/ Facebook, LinkedIn, MySpace and Twitter users are more vulnerable to financial loss, identity theft and malware infection than they realise, a survey has revealed. 2009-06-26 http://www.infosecurity-magazine.com/view/2343/study-shows-high-vulnerability-of-social-networkers/ http://www.infosecurity-magazine.com/view/2316/automated-twitter-postings-pose-a-severe-security-risk/ Twitter has again hit the IT security headlines, this time over the increasing widespread practice of automated retweets - automated repostings - by users of the social networking site/service. 2009-06-25 http://www.infosecurity-magazine.com/view/2316/automated-twitter-postings-pose-a-severe-security-risk/ http://www.infosecurity-magazine.com/view/2329/uks-cabinet-office-publishes-uks-first-cybersecurity-strategy/ Launched as part of an update to the National Security Strategy, a newly-launched cybersecurity strategy - the UK's first - seeks to address the growing threat of cybercriminals to both the country and its citizens. 2009-06-25 http://www.infosecurity-magazine.com/view/2329/uks-cabinet-office-publishes-uks-first-cybersecurity-strategy/ http://www.infosecurity-magazine.com/view/2302/google-launches-antimalvertisingcom-site-/ Google have launched Anti-Malvertising.com to assist its advertisers in spotting potential providers of malicious advertisements. Finjan, specialising in secure web gateway products and unified web security for the enterprise market,have welcomed this launch. 2009-06-24 http://www.infosecurity-magazine.com/view/2302/google-launches-antimalvertisingcom-site-/ http://www.infosecurity-magazine.com/view/2304/apple-charges-ipod-touch-users-for-critical-patches/ Owners of iPod Touch handheld computers will have to pay for the critical updates Apple issued last week to correct 46 holes in its software. 2009-06-24 http://www.infosecurity-magazine.com/view/2304/apple-charges-ipod-touch-users-for-critical-patches/ http://www.infosecurity-magazine.com/view/2306/smes-hit-by-increasing-spear-phishing-attacks/ A European-based gang behind sophisticated and targeted phishing attacks on small and medium enterprises has returned after a five-month break, says security firm iDefense. 2009-06-24 http://www.infosecurity-magazine.com/view/2306/smes-hit-by-increasing-spear-phishing-attacks/ http://www.infosecurity-magazine.com/view/2309/microsoft-betas-free-av-software-but-not-to-brits/ As reported previously by Infosecurity, Microsoft has started beta testing of its free anti-virus software, but only to people based in the US, China and Israel. 2009-06-24 http://www.infosecurity-magazine.com/view/2309/microsoft-betas-free-av-software-but-not-to-brits/ http://www.infosecurity-magazine.com/view/2287/facebook-hack-steamrollers-privacy-settings/ Social networking site Facebook has fixed a potentially major security bug on its social networking portal software on Monday that, for more than two weeks, allowed hackers in the know to bypass user privacy settings on the service. 2009-06-23 http://www.infosecurity-magazine.com/view/2287/facebook-hack-steamrollers-privacy-settings/ http://www.infosecurity-magazine.com/view/2288/isaca-backs-power-increase-for-information-commissioner/ ISACA, the not-for-profit organisation that seeks to encourage best practice in the IT security industry, has given the `thumbs up' to plans to significantly increase the powers of the Information Commissioner's Office (ICO) later this year. 2009-06-23 http://www.infosecurity-magazine.com/view/2288/isaca-backs-power-increase-for-information-commissioner/ http://www.infosecurity-magazine.com/view/2267/peter-wood-to-present-at-facetime-webinar-on-tuesday/ Infosecurity is pleased to report that Peter Wood, chief of operations with First Base Technologies, the penetration testing specialist, is presenting at the FaceTime-sponsored webinar taking place at 10am on Tuesday of this week. 2009-06-22 http://www.infosecurity-magazine.com/view/2267/peter-wood-to-present-at-facetime-webinar-on-tuesday/ http://www.infosecurity-magazine.com/view/2268/microsoft-may-beta-test-new-security-software-this-week/ Reports are circulating that Microsoft is planning to beta test its Morro/Security Essentials software as early as this week. 2009-06-22 http://www.infosecurity-magazine.com/view/2268/microsoft-may-beta-test-new-security-software-this-week/ http://www.infosecurity-magazine.com/view/2269/parcelforce-customer-data-revealed/ Parcelforce customers' names addresses and postcodes were available online after a system related to the company's mail tracker service failed. 2009-06-22 http://www.infosecurity-magazine.com/view/2269/parcelforce-customer-data-revealed/ http://www.infosecurity-magazine.com/view/2270/government-ordered-to-publish-reviews-of-risky-it-projects/ The information commissioner has ordered the opening of confidential files on a wide range of high-risk IT projects, including the ID cards scheme, joined up police intelligence systems and the NHS National Programme for IT (NPfIT). 2009-06-22 http://www.infosecurity-magazine.com/view/2270/government-ordered-to-publish-reviews-of-risky-it-projects/ http://www.infosecurity-magazine.com/view/2240/brad-pitt-more-dangerous-than-hugh-jackman-mcafee-rates-risky-search-terms-online/ Searching for ‘Brad Pitt’ is riskier than searching for ‘Hugh Jackman’ according to a McAfee study on the most dangerous search terms online. 2009-06-19 http://www.infosecurity-magazine.com/view/2240/brad-pitt-more-dangerous-than-hugh-jackman-mcafee-rates-risky-search-terms-online/ http://www.infosecurity-magazine.com/view/2241/microsoft-wireless-keyboard-cracking-technology-revealed/ Users of Microsoft's Optical 1000 and 2000 keyboards should now take extreme care what data they enter using their wireless keyboards, as Dreamlab has taken the unusual step of publishing a 49 page presentation on how to `sniff' any keystrokes out of the ether. 2009-06-18 http://www.infosecurity-magazine.com/view/2241/microsoft-wireless-keyboard-cracking-technology-revealed/ http://www.infosecurity-magazine.com/view/2214/updated-uk-government-launches-digital-britain-report-for-broadband-and-online-security/ The UK Government has published the final version of its Digital Britain report, which sets out goals for supplying up to 2Mb/s universal broadband services by 2012 and digitalising radio by 2015. Significantly for the information security industry, the report also gives powers to Ofcom and ISPs to police the internet for illegal file-sharing 2009-06-17 http://www.infosecurity-magazine.com/view/2214/updated-uk-government-launches-digital-britain-report-for-broadband-and-online-security/ http://www.infosecurity-magazine.com/view/2215/companies-leap-to-new-web-and-mobile-technologies-leaving-security-behind/ Companies are embracing new web and mobile technologies such as cloud computing, virtualisation, social networking and mobile communication at a faster rate than their information security strategies are updated. 2009-06-17 http://www.infosecurity-magazine.com/view/2215/companies-leap-to-new-web-and-mobile-technologies-leaving-security-behind/ http://www.infosecurity-magazine.com/view/2225/london-school-of-economics-uk-home-office-internet-surveillance-wont-work/ In a briefing published on 17 June, the London School of Economics says that new Home Office internet surveillance proposals for the Interception Modernisation Programme won't work, have poor safeguards, and will be a costly option 2009-06-17 http://www.infosecurity-magazine.com/view/2225/london-school-of-economics-uk-home-office-internet-surveillance-wont-work/ http://www.infosecurity-magazine.com/view/2231/goldencashworld-botnet-malware-and-hacker-data-exchange-portal-revealed/ Security researchers with Finjan have uncovered a highly sophisticated online botnet, malware and hacker exchange network for buying and selling access to infected PCs. 2009-06-17 http://www.infosecurity-magazine.com/view/2231/goldencashworld-botnet-malware-and-hacker-data-exchange-portal-revealed/ http://www.infosecurity-magazine.com/view/2211/microsoft-plans-to-release-free-security-software/ Microsoft is testing free anti-virus software, but no date has been announced for a public release. 2009-06-16 http://www.infosecurity-magazine.com/view/2211/microsoft-plans-to-release-free-security-software/ http://www.infosecurity-magazine.com/view/2212/200m-from-digital-tv-fund-earmarked-for-univesal-broadband-plan-/ The government could use £200m left over from a fund to pay for the switch from analogue to digital TV broadcasting to help pay for the roll-out of universal broadband. 2009-06-16 http://www.infosecurity-magazine.com/view/2212/200m-from-digital-tv-fund-earmarked-for-univesal-broadband-plan-/ http://www.infosecurity-magazine.com/view/2182/pbx-hacking-moves-into-the-professional-domain-as-arrests-stack-up-/ PBX hacking - the act of cracking into a company PBX and selling long distance/international telephone time to third parties at a discount - is alive and well, despite several years of being out of the news. 2009-06-15 http://www.infosecurity-magazine.com/view/2182/pbx-hacking-moves-into-the-professional-domain-as-arrests-stack-up-/ http://www.infosecurity-magazine.com/view/2184/learn-about-document-security/ LockLizard investigates the best approaches to document security depending on what clients want to achieve, in its white paper Document Security - a Guide to Securing Your Documents. 2009-06-15 http://www.infosecurity-magazine.com/view/2184/learn-about-document-security/ http://www.infosecurity-magazine.com/view/2191/ddos-attacks-on-belarusian-media-is-cyber-warfare-escalating/ There has been a surge in distributed denial of service (DDoS) attacks against media sites in Belarus, something that could signal an escalation in cyber warfare in the region. 2009-06-15 http://www.infosecurity-magazine.com/view/2191/ddos-attacks-on-belarusian-media-is-cyber-warfare-escalating/ http://www.infosecurity-magazine.com/view/2158/symantec-and-mcafee-under-fire-for-autorenewing-subscriptions/ The perils of giving companies your payment card details and failing to realise the likelihood of those details being used when subscription renewal times comes around have raised their ugly head again, with Symantec and McAfee being ordered to pay $375,000 each to the New York Attorney General to resolve complaints about the issue from customers. 2009-06-12 http://www.infosecurity-magazine.com/view/2158/symantec-and-mcafee-under-fire-for-autorenewing-subscriptions/ http://www.infosecurity-magazine.com/view/2159/pc-infections-on-the-rise-due-to-botnets/ Research from IT security vendor McAfee suggests that PC infections are on the rise once again, largely as a result of botnet operators rebuilding their swarms of infected machines in the wake of the recent McColo ISP shutdown. 2009-06-12 http://www.infosecurity-magazine.com/view/2159/pc-infections-on-the-rise-due-to-botnets/ http://www.infosecurity-magazine.com/view/2125/more-analyis-on-the-atm-phantom-withdrawal-court-case-ruling/ Hard on the heels of last week's long-awaited ruling on the first ATM phantom withdrawal case to pass through the courts, Alistair Kelman, a barrister and presenter on Infosecurity's webinar programme, has posted an interesting report and analysis on his website. 2009-06-11 http://www.infosecurity-magazine.com/view/2125/more-analyis-on-the-atm-phantom-withdrawal-court-case-ruling/ http://www.infosecurity-magazine.com/view/2134/learn-about-securing-highprivilege-system-access-management/ British security and risk management specialist, Brookcourt Solutions, looks at how to secure high-privilege system access management in the white paper Turning the Spotlight on IT’s Dirty Little Secret: Securing the Common Point of Failure in IT Risk Controls. 2009-06-11 http://www.infosecurity-magazine.com/view/2134/learn-about-securing-highprivilege-system-access-management/ http://www.infosecurity-magazine.com/view/2136/large-majority-unable-to-spot-phishing-sites/ An overwhelming majority (88%) of UK web users are unable to identify phishing online, according to a study commissioned by internet infrastructure services provider VeriSign. 2009-06-11 http://www.infosecurity-magazine.com/view/2136/large-majority-unable-to-spot-phishing-sites/ http://www.infosecurity-magazine.com/view/2121/apple-releases-safari-40-to-counter-security-flaws/ Apple Computer has released v 4.0 of its increasingly popular Safari web browser for Windows and Mac OSX-based computers. The release counters the recent security flaws reported in CFNetwork, CoreGraphics, ImageIO, International Components for Unicode, libxml, Safari, Safari Windows Installer, and webKit 2009-06-10 http://www.infosecurity-magazine.com/view/2121/apple-releases-safari-40-to-counter-security-flaws/ http://www.infosecurity-magazine.com/view/2123/majority-break-information-security-policies-survey/ The majority of employees admit to serious non-compliant workplace behaviour when it comes to information security, according to a study from the Ponemon Institute and sponsored by Californian secure flash drive provider IronKey. 2009-06-10 http://www.infosecurity-magazine.com/view/2123/majority-break-information-security-policies-survey/ http://www.infosecurity-magazine.com/view/2124/uk-it-managers-unaware-of-web-20-security-threats/ As part of its Web2.0@Work™ global research project, security specialist Websense Security Labs has found that many organisations in the UK are ill equipped to protect themselves from Web 2.0 threats. 2009-06-10 http://www.infosecurity-magazine.com/view/2124/uk-it-managers-unaware-of-web-20-security-threats/ http://www.infosecurity-magazine.com/view/2126/underground-strikes-cause-information-security-risks-to-soar/ Information security risks, as a consequence of the London Underground strikes, include the transfer of documents to personal computers via USBs, emailing confidential company information to externally hosted email accounts, and exchanging data and information via online file sharing facilities or communication tools such as instant messenger. 2009-06-10 http://www.infosecurity-magazine.com/view/2126/underground-strikes-cause-information-security-risks-to-soar/ http://www.infosecurity-magazine.com/view/2094/learn-about-information-security-and-usb-devices/ Lumension looks at the information security risks with USB devices – and how to overcome them – in its latest white paper Portable Panic: Evolution of USB Insecurity. 2009-06-09 http://www.infosecurity-magazine.com/view/2094/learn-about-information-security-and-usb-devices/ http://www.infosecurity-magazine.com/view/2050/indian-authorities-taking-no-chances-with-cybercafe-users/ The anonymity of cybercafe users in India is being severely curtailed, in a bid to stamp out illegal, fraudulent and terrorist usage of this popular method of gaining internet access. 2009-06-08 http://www.infosecurity-magazine.com/view/2050/indian-authorities-taking-no-chances-with-cybercafe-users/ http://www.infosecurity-magazine.com/view/2055/three-quarters-of-companies-think-they-are-vulnerable-to-hacking/ Seventy three percent of IT professionals admit their software applications are vulnerable to hackers in a survey conducted by application security specialists Fortify Software at this year’s Infosecurity Europe in London. 2009-06-08 http://www.infosecurity-magazine.com/view/2055/three-quarters-of-companies-think-they-are-vulnerable-to-hacking/ http://www.infosecurity-magazine.com/view/2028/judge-rules-in-favour-of-bank-in-first-uk-phantom-atm-withdrawal-case/ A judge has ruled in favour a UK bank after a customer took the bank to court regarding eight ATM withdrawals that he claimed he did not make. 2009-06-05 http://www.infosecurity-magazine.com/view/2028/judge-rules-in-favour-of-bank-in-first-uk-phantom-atm-withdrawal-case/ http://www.infosecurity-magazine.com/view/2030/infosecurity-experts-hard-to-get-despite-economic-downturn/ Hiring managers are struggling to fill infosecurity positions due to a mismatch between salary expectations and skill levels, and current demand, information security education and certification organisation (ISC)2 has found it its latest jobs survey. 2009-06-05 http://www.infosecurity-magazine.com/view/2030/infosecurity-experts-hard-to-get-despite-economic-downturn/ http://www.infosecurity-magazine.com/view/2017/isc2-offers-live-online-cissp-review-seminar/ Florida-based information security education and certification provider (ISC)2 has introduced Live OnLine Official (ISC)2 CISSP CBK Review Seminar, said to be the first online certified information systems security professional (CISSP) learning courses with live instructions. 2009-06-04 http://www.infosecurity-magazine.com/view/2017/isc2-offers-live-online-cissp-review-seminar/ http://www.infosecurity-magazine.com/view/2003/aussie-bank-customers-hit-by-advanced-phishing-techniques/ Customers of the Commonwealth Bank in Australia are being targeted by a new breed of phishers, who seem intent on scamming them out of their e-banking and payment card details. 2009-06-03 http://www.infosecurity-magazine.com/view/2003/aussie-bank-customers-hit-by-advanced-phishing-techniques/ http://www.infosecurity-magazine.com/view/2008/unencrypted-laptop-with-109-000-records-on-pension-schemes-members-stolen/ An unencrypted laptop containing details on 109 000 pension schemes members with UK pension funds service provider, The Pensions Trust, has been stolen from a third-party office in Marlow, Buckinghamshire. 2009-06-03 http://www.infosecurity-magazine.com/view/2008/unencrypted-laptop-with-109-000-records-on-pension-schemes-members-stolen/ http://www.infosecurity-magazine.com/view/2009/prepare-for-end-of-office-2000-security-updates/ Users of Office 2000 should start preparing for Microsoft’s withdrawal of its security update service for Office 2000 from 14 July this year, warns California-based security software provider Fortify Software. 2009-06-03 http://www.infosecurity-magazine.com/view/2009/prepare-for-end-of-office-2000-security-updates/ http://www.infosecurity-magazine.com/view/2000/guide-to-handling-personal-data-launched-by-bcs-and-isaf/ The British Computer Society (BCS) has linked up with the Information Security Awareness Forum (ISAF) to launch a professional code of best practice when handling personal data. 2009-06-02 http://www.infosecurity-magazine.com/view/2000/guide-to-handling-personal-data-launched-by-bcs-and-isaf/ http://www.infosecurity-magazine.com/view/1964/obama-cyberczar-to-be-handpicked/ President Obama finally announced the results of Melissa Hathaway's 60-day cybersecurity review on Friday, and unveiled plans to hand pick a senior official responsible for cybersecurity policy. 2009-06-01 http://www.infosecurity-magazine.com/view/1964/obama-cyberczar-to-be-handpicked/ http://www.infosecurity-magazine.com/view/1972/boobytrapped-directx-files-now-being-used-by-hackers/ Microsoft has warned about hackers starting to use DirectX-enabled files to give them remote access to users' PCs across the internet. 2009-06-01 http://www.infosecurity-magazine.com/view/1972/boobytrapped-directx-files-now-being-used-by-hackers/ http://www.infosecurity-magazine.com/view/1973/3ami-extends-the-audit-envelope-to-support-memory-sticks/ Technology start-up 3Ami has enhanced its Monitoring and Audit Security (MAS) software to support USB and similar memory sticks. 2009-06-01 http://www.infosecurity-magazine.com/view/1973/3ami-extends-the-audit-envelope-to-support-memory-sticks/ http://www.infosecurity-magazine.com/view/1987/enisa-evaluates-network-resilience-of-mpls-ipv6-and-dnssec/ The European Network and Information Security Agency (ENISA) has released two reports on how and if Multi Protocol Label Switching (MPLS), Internet Protocol version 6 (IPv6) and Domain Name System Security Extensions (DNSSEC) could improve the resilience of communication networks. 2009-06-01 http://www.infosecurity-magazine.com/view/1987/enisa-evaluates-network-resilience-of-mpls-ipv6-and-dnssec/ http://www.infosecurity-magazine.com/view/1990/twitter-worm-steals-user-details/ A worm on Twitter is tricking users into giving up their user details at the same time as redirecting victims to a dating website where the aggregate number of views result in affiliate revenue. 2009-06-01 http://www.infosecurity-magazine.com/view/1990/twitter-worm-steals-user-details/ http://www.infosecurity-magazine.com/view/1945/google-indexes-details-on-thousands-of-credit-and-debit-cardholders/ Police in Victoria, Australia are investigating a potentially major security incident in which the stolen personal details of thousands of credit and debit card holders from Australia, Germany and the UK were posted to a blogging site and auto-indexed into the Google search engine. 2009-05-29 http://www.infosecurity-magazine.com/view/1945/google-indexes-details-on-thousands-of-credit-and-debit-cardholders/ http://www.infosecurity-magazine.com/view/1920/raf-data-loss-included-sensitive-vetting-data/ The Ministry of Defence (MoD) has omitted information that the theft of hard drives in September 2008 with data on RAF personnel also included highly sensitive RAF vetting records. 2009-05-27 http://www.infosecurity-magazine.com/view/1920/raf-data-loss-included-sensitive-vetting-data/ http://www.infosecurity-magazine.com/view/1925/panda-security-offers-beta-of-global-protection-2010/ Panda Security has uploaded the first beta test of its next-generation IT security suite, Global Protection 2010, to its website. 2009-05-27 http://www.infosecurity-magazine.com/view/1925/panda-security-offers-beta-of-global-protection-2010/ http://www.infosecurity-magazine.com/view/1927/jericho-forum-links-with-cloud-security-alliance/ Hard on the heels of unveiling Cloud Cube, its four-dimensional best practice model for cloud computing security in April, security industry association the Jericho Forum has linked with the Cloud Security Alliance (CSA), a not-for-profit vendor group. 2009-05-27 http://www.infosecurity-magazine.com/view/1927/jericho-forum-links-with-cloud-security-alliance/ http://www.infosecurity-magazine.com/view/1879/adobe-follows-microsoft-down-path-of-regular-security-updates/ After a number of security problems with its software that required patching, Adobe has apparently decided it is time for regular security updates. 2009-05-26 http://www.infosecurity-magazine.com/view/1879/adobe-follows-microsoft-down-path-of-regular-security-updates/ http://www.infosecurity-magazine.com/view/1874/isf-infosecurity-standards-incorporated-into-acuitys-software/ The Information Security Forum (ISF) and London-based services and software provider, Acuity Risk Management, have signed an intellectual property (IP) licensing agreement to integrate ISF’s Standard of Good Practice for Information Security into Acuity’s STREAM risk and compliance management software. 2009-05-22 http://www.infosecurity-magazine.com/view/1874/isf-infosecurity-standards-incorporated-into-acuitys-software/ http://www.infosecurity-magazine.com/view/1844/survey-shows-information-security-awareness-is-high-yet-compliance-is-low-/ SAI Global’s Benchmarking Survey 2008 finds that 95% of employees believe information security is important, but that there is a lack of knowledge and training surrounding how to identify and report incidents. 2009-05-21 http://www.infosecurity-magazine.com/view/1844/survey-shows-information-security-awareness-is-high-yet-compliance-is-low-/ http://www.infosecurity-magazine.com/view/1852/39-million-bank-credit-error-highlights-need-for-code-auditing/ A succession of errors - at the programme code development level and human error when inputting the data - are reported to have resulted in a New Zealand couple being credited with NZ$10 million (£3.9 million) rather than a much smaller sum as the proceeds of a bank credit line. 2009-05-21 http://www.infosecurity-magazine.com/view/1852/39-million-bank-credit-error-highlights-need-for-code-auditing/ http://www.infosecurity-magazine.com/view/1820/mcafee-acquires-solidcore-for-whitelisting-technology/ McAfee will acquire Solidcore Systems, a whitelisting specialist, in a US$33m deal which will allow McAfee to integrate Solidcore's technology into its blacklisting malware detection and prevention products, as well as to bolster its high-end corporate IT security offerings. 2009-05-20 http://www.infosecurity-magazine.com/view/1820/mcafee-acquires-solidcore-for-whitelisting-technology/ http://www.infosecurity-magazine.com/view/1827/pgp-founder-talks-about-voip-security-at-itweb/ Phil Zimmerman, the founder of PGP - and inventor of the Pretty Good Privacy technology after which the firm is named - will be speaking about voice over internet protocol (VOIP) security at the ITWeb Security Summit in Johannesburg, South Africa next week. 2009-05-20 http://www.infosecurity-magazine.com/view/1827/pgp-founder-talks-about-voip-security-at-itweb/ http://www.infosecurity-magazine.com/view/1833/gumblar-malware-attack-sweeps-web/ A modified attack that alters Google searches is taking the web by storm according to security researchers, who have identified more malware domains being used in the attack. 2009-05-20 http://www.infosecurity-magazine.com/view/1833/gumblar-malware-attack-sweeps-web/ http://www.infosecurity-magazine.com/view/1822/learn-about-how-to-protect-against-datastealing-malware/ Data-stealing malware that can evade current security systems could cause serious harm to an enterprise. Trend Micro’s eBook ‘Outthink the Threat’ offers information on data-stealing malware and how to fight it. 2009-05-19 http://www.infosecurity-magazine.com/view/1822/learn-about-how-to-protect-against-datastealing-malware/ http://www.infosecurity-magazine.com/view/1809/gateshead-college-opens-digital-forensics-lab/ Gateshead College in the UK has opened a digital forensics lab for the training of information security staff to combat cybercrime such as digital fraud. 2009-05-18 http://www.infosecurity-magazine.com/view/1809/gateshead-college-opens-digital-forensics-lab/ http://www.infosecurity-magazine.com/view/1789/thirtytwo-mod-pcs-went-walkabout-in-first-131-days-of-2009/ Statistics from the UK's Ministry of Defence show that a total of 28 laptops and four desktop PCs have been lost or stolen in the period of January 1 to May 11 this year. 2009-05-17 http://www.infosecurity-magazine.com/view/1789/thirtytwo-mod-pcs-went-walkabout-in-first-131-days-of-2009/ http://www.infosecurity-magazine.com/view/1782/paypal-registration-page-vulnerabilities-revealed/ Methodman, a so-called 'grey hat' hacker specialising in discovering cross-site scripting (XSS) flaws, claims to have uncovered a number of XSS security flaws in various Paypal registration pages. 2009-05-15 http://www.infosecurity-magazine.com/view/1782/paypal-registration-page-vulnerabilities-revealed/ http://www.infosecurity-magazine.com/view/1788/unlimited-online-backup-from-fsecure/ An unlimited online backup solution, which works automatically in the background, has been launched by Finnish IT security service provider F-Secure. 2009-05-15 http://www.infosecurity-magazine.com/view/1788/unlimited-online-backup-from-fsecure/ http://www.infosecurity-magazine.com/view/1781/who-should-police-illegal-internet-filesharing/ A row has broken out between a coalition representing creative industries in the UK and internet service providers (ISPs) over who and how the internet should be policed for illegal file-sharing. 2009-05-14 http://www.infosecurity-magazine.com/view/1781/who-should-police-illegal-internet-filesharing/ http://www.infosecurity-magazine.com/view/1769/software-piracy-on-the-rise/ Worldwide software piracy is on the rise, according to a study by the Business Software Alliance and analyst firm IDC. 2009-05-13 http://www.infosecurity-magazine.com/view/1769/software-piracy-on-the-rise/ http://www.infosecurity-magazine.com/view/1776/australian-twofactor-payment-card-authentication-technology-on-beta-test/ A two-factor authentication system - complete with keypad and display - has been successfully integrated into a plastic payment card by Melbourne-based EMUE and is being trialled by MBNA in the UK 2009-05-13 http://www.infosecurity-magazine.com/view/1776/australian-twofactor-payment-card-authentication-technology-on-beta-test/ http://www.infosecurity-magazine.com/view/1766/internet-attacks-expected-around-2010-fifa-world-cup/ Symantec warns against an “extensive number of attacks over the internet” expected to hit around the 2010 FIFA World Cup in football. 2009-05-12 http://www.infosecurity-magazine.com/view/1766/internet-attacks-expected-around-2010-fifa-world-cup/ http://www.infosecurity-magazine.com/view/1767/forrester-questions-the-security-of-cloud-computing/ With the economic downturn, cloud computing is seen as a way to improve operational efficiency, reduce headcounts and help with the bottom line, but according to the report from Massachusetts-based Forrester Research on cloud computing, organisations should not jump on the ‘cloud wagon’ before considering security and privacy concerns. 2009-05-12 http://www.infosecurity-magazine.com/view/1767/forrester-questions-the-security-of-cloud-computing/ http://www.infosecurity-magazine.com/view/1768/estonia-now-firmly-on-the-fbi-cybercrime-map/ The importance of Estonia, one of the most Internet-connected and e-trading nations on earth, has ramped up a notch or two with the FBI, which has announced plans to station a cybercrime expert and his/her team in the country later this year. 2009-05-12 http://www.infosecurity-magazine.com/view/1768/estonia-now-firmly-on-the-fbi-cybercrime-map/ http://www.infosecurity-magazine.com/view/1746/governments-must-cooperate-on-cyber-security-report/ Governments around the world must work together to address the issue of cyber security, according to a report from Deloitte. 2009-05-11 http://www.infosecurity-magazine.com/view/1746/governments-must-cooperate-on-cyber-security-report/ http://www.infosecurity-magazine.com/view/1754/learn-about-how-to-protect-data-assets-and-ip/ With an increasingly complex legislative and regulatory landscape, ensuring compliance can be difficult. Overtis Systems’ white paper ‘Realising Compliance’ shows how its integrated protection solution VigilancePro™2 can make the task easier. 2009-05-11 http://www.infosecurity-magazine.com/view/1754/learn-about-how-to-protect-data-assets-and-ip/ http://www.infosecurity-magazine.com/view/1755/swine-flu-challenges-information-security/ The recent outbreak of swine flu has thrown up a number of topics related to information security ranging from secure sharing of data between health professionals, to spam / phishing and issues around remote working. 2009-05-11 http://www.infosecurity-magazine.com/view/1755/swine-flu-challenges-information-security/ http://www.infosecurity-magazine.com/view/1745/finjan-reports-iframes-attack-on-indian-government-website/ The secure web gateway solutions provider Finjan has reported that a major Indian government website - which averages around three hits per minute (source: Alexa) - has been hit by an Iframes injection exploit. 2009-05-10 http://www.infosecurity-magazine.com/view/1745/finjan-reports-iframes-attack-on-indian-government-website/ http://www.infosecurity-magazine.com/view/1738/bt-investigation-into-ebay-hard-drives-reveals-us-air-defence-launch-secrets-/ The latest annual BT investigation into the sale of second-hand hard drives on the internet has turned up trumps, with researchers buying a hard drive on the internet auction website eBay, containing the launch procedures for a US military air defence system. 2009-05-08 http://www.infosecurity-magazine.com/view/1738/bt-investigation-into-ebay-hard-drives-reveals-us-air-defence-launch-secrets-/ http://www.infosecurity-magazine.com/view/1739/web-20-sites-prime-hacker-target-says-report/ Web 2.0-driven websites are now a premier target for hackers, amounting to 21% of all reported hacking incidents, according to an IT security report from the Secure Enterprise 2.0 Forum. 2009-05-08 http://www.infosecurity-magazine.com/view/1739/web-20-sites-prime-hacker-target-says-report/ http://www.infosecurity-magazine.com/view/1744/information-security-technology-not-enough/ Information security technology is of little use if employees unwittingly give up log-in details, passwords and other sensitive information to hackers using social engineering. 2009-05-08 http://www.infosecurity-magazine.com/view/1744/information-security-technology-not-enough/ http://www.infosecurity-magazine.com/view/1724/fake-search-engines-used-to-divert-users-to-malware-infected-websites/ Hackers are starting to create fake search engine sites to divert hapless internet users to malware infected websites, says PandaLabs, the research operation of Panda Security. 2009-05-07 http://www.infosecurity-magazine.com/view/1724/fake-search-engines-used-to-divert-users-to-malware-infected-websites/ http://www.infosecurity-magazine.com/view/1730/id-cards-rollout-starts-in-manchester-security-industry-concerned/ The UK Home Office has announced that Manchester City will see the first ID cards in the controversial £5bn UK national identity card scheme this year. 2009-05-07 http://www.infosecurity-magazine.com/view/1730/id-cards-rollout-starts-in-manchester-security-industry-concerned/ http://www.infosecurity-magazine.com/view/1711/parabons-grid-technology-simulates-ddos-site-attacks/ Parabon Computation has launched a new service that simulates a distributed denial of service (DDoS) attack on a company Web site. 2009-05-06 http://www.infosecurity-magazine.com/view/1711/parabons-grid-technology-simulates-ddos-site-attacks/ http://www.infosecurity-magazine.com/view/1713/global-security-challenge-competition-open-for-entries/ The fourth annual Global Security Challenge Competition where security entrepreneurs compete for up to US$500 000 in cash grants, is open for entries until 15 June 2009. 2009-05-06 http://www.infosecurity-magazine.com/view/1713/global-security-challenge-competition-open-for-entries/ http://www.infosecurity-magazine.com/view/1716/rsa-splunks-sales-benefit-from-economic-downturn-/ Splunk, the vendor who calls itself “the google for data centres” are seeing an increase in sales due to the high crime that comes hand in hand with an economic downturn. 2009-05-06 http://www.infosecurity-magazine.com/view/1716/rsa-splunks-sales-benefit-from-economic-downturn-/ http://www.infosecurity-magazine.com/view/1691/palo-alto-networks-formally-launches-in-the-uk/ After several years of offering its products via a few specialist systems integrators in the UK, California's Palo Alto Networks has established a formal presence in the country. 2009-05-05 http://www.infosecurity-magazine.com/view/1691/palo-alto-networks-formally-launches-in-the-uk/ http://www.infosecurity-magazine.com/view/1698/conficker-and-facebook-twitter-attacks-dominate-q1-email-threats/ The Conficker worm and attackers’ social engineering techniques exploiting users on Facebook, Myspace and Twitter, dominated the email threats in the first quarter (Q1) of 2009, according to identity-based unified threat management (UTM) solutions provider Cyberoam and its Israeli messaging and web security partner Commtouch. 2009-05-05 http://www.infosecurity-magazine.com/view/1698/conficker-and-facebook-twitter-attacks-dominate-q1-email-threats/ http://www.infosecurity-magazine.com/view/1677/german-police-arrest-bavarian-cracking-group/ Police in Bavaria have arrested 11 people suspected of being members of the Hacksector cracking group, which maintains a dark hats forum of the same name on the Internet. 2009-05-01 http://www.infosecurity-magazine.com/view/1677/german-police-arrest-bavarian-cracking-group/ http://www.infosecurity-magazine.com/view/1679/infosecurity-europe-firms-get-access-to-military-grade-forensics/ It's not often that firms supplying specialist network forensics technology to US government agencies are allowed to supply their systems software to civilian companies, especially outside of the United States, but Utah-based Solera Networks has achieved this. 2009-05-01 http://www.infosecurity-magazine.com/view/1679/infosecurity-europe-firms-get-access-to-military-grade-forensics/ http://www.infosecurity-magazine.com/view/1680/infosecurity-europe-pgp-announce-release-of-command-line-for-ibm-power-systems-at-mature-industry-exhibition/ Encryption specialists PGP announced the release of their PGP Command Line for IBM Power systems at Infosecurity Europe 2009. 2009-05-01 http://www.infosecurity-magazine.com/view/1680/infosecurity-europe-pgp-announce-release-of-command-line-for-ibm-power-systems-at-mature-industry-exhibition/ http://www.infosecurity-magazine.com/view/1684/infosecurity-europe-police-central-ecrime-unit-cant-afford-to-tackle-ecrime-/ At the Infosecurity Europe show, London, on 30 April 2009, in a session titled ‘The dynamics of e-crime’, an audience member - an employee of the police central e-crime unit (PCeu) within the Metropolitan police service – interrupted the panel to declare that police are not ignoring the increasing problem of e-crime, but are under-funded and thus unable to tackle it effectively. 2009-05-01 http://www.infosecurity-magazine.com/view/1684/infosecurity-europe-police-central-ecrime-unit-cant-afford-to-tackle-ecrime-/ http://www.infosecurity-magazine.com/view/1671/infosecurity-europe-employee-awareness-of-security-is-dangerously-immature-says-isc2s-colley/ John Colley, managing director of (ISC)2 EMEA lamented the lack of security is company culture in his talk ‘Are we getting the basics right’ at Infosecurity Europe this year. 2009-04-30 http://www.infosecurity-magazine.com/view/1671/infosecurity-europe-employee-awareness-of-security-is-dangerously-immature-says-isc2s-colley/ http://www.infosecurity-magazine.com/view/1623/infosecurity-europe-serious-structural-internet-security-flaw-revealed/ Peter Wood, chief of operations with First Base Technologies, the penetration testing specialist, and a member of the ISACA conference committee, has uncovered a structural security flaw with the internet that is not easily fixable. 2009-04-29 http://www.infosecurity-magazine.com/view/1623/infosecurity-europe-serious-structural-internet-security-flaw-revealed/ http://www.infosecurity-magazine.com/view/1628/infosecurity-europe-mobileoriginated-spam-set-to-be-a-major-problem/ The issue of spam is a major concern for vendors and attendees at the show. And, while internet service providers (ISPs) are doing their bit in shutting down the accounts of spammers in real time, it`s only the fixed line ISPs that have this luxury. 2009-04-29 http://www.infosecurity-magazine.com/view/1628/infosecurity-europe-mobileoriginated-spam-set-to-be-a-major-problem/ http://www.infosecurity-magazine.com/view/1633/infosecurity-europe-infosec-professionals-still-hold-value-even-in-downturn-say-isc2/ A recent survey released at Infosecurity Europe by (ISC)2 suggests that security professionals are holding their value even in the economic downturn. 2009-04-29 http://www.infosecurity-magazine.com/view/1633/infosecurity-europe-infosec-professionals-still-hold-value-even-in-downturn-say-isc2/ http://www.infosecurity-magazine.com/view/1646/infosecurity-europe-webroot-survey-finds-concern-over-web-20-collaboration/ A survey commissioned by security provider Webroot found that half of the information security professionals questioned intend to put plans for collaboration on hold due to concerns over security. 2009-04-29 http://www.infosecurity-magazine.com/view/1646/infosecurity-europe-webroot-survey-finds-concern-over-web-20-collaboration/ http://www.infosecurity-magazine.com/view/1647/infosecurity-europe-business-social-networkers-can-learn-a-lot-from-kids/ Chris Boyd, director of malware research at FaceTime Security Labs, warned against the dangers of social networking at the talk ‘Social networking pirates: Batten down the hatches, Cap’n Jack is coming’ at Infosecurity Europe. 2009-04-29 http://www.infosecurity-magazine.com/view/1647/infosecurity-europe-business-social-networkers-can-learn-a-lot-from-kids/ http://www.infosecurity-magazine.com/view/1531/gridsure-announces-authentication-for-microsoft-iag/ GrIDsure, the pictorial-based authentication technology specialist, has launched an application for Microsoft's Intelligent Application Gateway. 2009-04-28 http://www.infosecurity-magazine.com/view/1531/gridsure-announces-authentication-for-microsoft-iag/ http://www.infosecurity-magazine.com/view/1532/infosecurity-europe-show-opens-with-security-cafes-and-expert-forums/ The Infosecurity Europe show opens for a three-day run in London today, with two features that are new for 2009 - security cafes and expert forums. 2009-04-28 http://www.infosecurity-magazine.com/view/1532/infosecurity-europe-show-opens-with-security-cafes-and-expert-forums/ http://www.infosecurity-magazine.com/view/1586/infosecurity-europe-lord-erroll-calls-for-greater-punishment-for-cybercrime-/ Lord Erroll stole the limelight, and the audience’s attention on the ‘Who got caught out the last 12 months’ keynote panel at the Infosecurity Europe show in London, 28 April 2009, by calling for greater penalties and repercussions for cybercrime. 2009-04-28 http://www.infosecurity-magazine.com/view/1586/infosecurity-europe-lord-erroll-calls-for-greater-punishment-for-cybercrime-/ http://www.infosecurity-magazine.com/view/1593/infosecurity-europe-president-obamas-blackberry-revealed/ The guys on the Blackberry stand at the Infosecurity Europe show weren't willing to talk specifically about it, but it looks like the White House has taken delivery of a custom Blackberry smartphone for President Obama. 2009-04-28 http://www.infosecurity-magazine.com/view/1593/infosecurity-europe-president-obamas-blackberry-revealed/ http://www.infosecurity-magazine.com/view/1594/infosecurity-europe-rt-hon-david-blunkett-mp-supports-biometric-passports/ The Right Honourable David Blunkett, MP, the former Home Secretary, has eschewed his original support in the 1990s for national ID cards in favour of biometric passports. 2009-04-28 http://www.infosecurity-magazine.com/view/1594/infosecurity-europe-rt-hon-david-blunkett-mp-supports-biometric-passports/ http://www.infosecurity-magazine.com/view/1595/infosecurity-europe-its-the-people-stupid-who-should-police-the-worldwide-internet/ At ‘Who should police the global internet – Who is ultimately responsible?’, a keynote speech at Infosecurity Europe, the Rt Hon. Alun Michael MP highlighted the importance of ‘all people’ helping to fight crime, while detective superintendent Charlie McMurdie of the police central e-crime unit (PCeU), called for volunteers to assist in e-crime prevention. 2009-04-28 http://www.infosecurity-magazine.com/view/1595/infosecurity-europe-its-the-people-stupid-who-should-police-the-worldwide-internet/ http://www.infosecurity-magazine.com/view/1502/tony-blairs-hacked-facebook-profile-contains-a-serious-message/ Politics aside, the recent hack of Tony Blair’s Faith Foundation Facebook page reveals a serious problem with the application used in the page’s creation, says application vulnerability specialist, Fortify Software. 2009-04-27 http://www.infosecurity-magazine.com/view/1502/tony-blairs-hacked-facebook-profile-contains-a-serious-message/ http://www.infosecurity-magazine.com/view/1506/a-new-generation-security-architecture-revealed/ Join Infosecurity magazine and Check Point software technologies in a webinar discussing `software blades,' a new architecture that allows companies to select from a library of over 20 software-driven systems to create a tailored security gateway for specific environments. 2009-04-27 http://www.infosecurity-magazine.com/view/1506/a-new-generation-security-architecture-revealed/ http://www.infosecurity-magazine.com/view/1529/trend-micro-extends-security-envelope-around-playstation-consoles/ You might not think it, but junior's Playstation Portal (PSP) and Playstation 3 games consoles are capable of compromising the security of a home (and office) IT network resources. 2009-04-27 http://www.infosecurity-magazine.com/view/1529/trend-micro-extends-security-envelope-around-playstation-consoles/ http://www.infosecurity-magazine.com/view/1541/rsa-recession-will-hit-small-information-security-companies-hard-say-experts-/ Despite the need for security being exaggerated in an economic downturn, smaller IT security companies will suffer, says Dave Hansen, Corporate SVP &GM Security Business Unit at CA, speaking to Infosecurity at the RSA conference in San Francisco. 2009-04-27 http://www.infosecurity-magazine.com/view/1541/rsa-recession-will-hit-small-information-security-companies-hard-say-experts-/ http://www.infosecurity-magazine.com/view/1482/privacy-international-slams-ico-ruling-on-google-street-view/ Privacy International has slammed the Information Commissioner's Office (ICO) ruling that Google Street View does not contravene the Data Protection Act. 2009-04-24 http://www.infosecurity-magazine.com/view/1482/privacy-international-slams-ico-ruling-on-google-street-view/ http://www.infosecurity-magazine.com/view/1433/tufin-technologies-launches-open-api-security-initiative/ Tufin Technologies has announced a policy and security network API (application programming interface) initiative and has enlisted the support of several IT security vendors for the program. 2009-04-23 http://www.infosecurity-magazine.com/view/1433/tufin-technologies-launches-open-api-security-initiative/ http://www.infosecurity-magazine.com/view/1434/smoothwall-unveils-lowcost-secure-web-gateway-appliance/ SmoothWall has taken the wraps off a new rack-mounted web filtering appliance that uses the company's Guardian web filtering technology. 2009-04-23 http://www.infosecurity-magazine.com/view/1434/smoothwall-unveils-lowcost-secure-web-gateway-appliance/ http://www.infosecurity-magazine.com/view/1463/infosecurity-webinar-predictions-become-reality/ Predictions made by Professor Peter Sommer, a leading IT forensics specialist, in a Check Point-sponsored Infosecurity webinar earlier this week, have become reality with the release of a report at a conference in Prague. 2009-04-23 http://www.infosecurity-magazine.com/view/1463/infosecurity-webinar-predictions-become-reality/ http://www.infosecurity-magazine.com/view/1422/rsa-lumension-and-microsoft-ink-whitelisting-deal/ Endpoint security company Lumension teamed up with Microsoft at the RSA show to launch a software whitelisting service. The move, which sees the companies sharing information about legitimate software applications, lends increasing credence to the idea that blacklisting malicious software by signature is becoming less tenable as the number of malware variants increases. 2009-04-22 http://www.infosecurity-magazine.com/view/1422/rsa-lumension-and-microsoft-ink-whitelisting-deal/ http://www.infosecurity-magazine.com/view/1424/finjan-uncovers-one-of-worlds-largest-botnets/ Finjan has uncovered what appears to be one of the largest bot networks controlled by a single cybercrime gang, with 1.9 million infected zombie computers forming the swarm. 2009-04-22 http://www.infosecurity-magazine.com/view/1424/finjan-uncovers-one-of-worlds-largest-botnets/ http://www.infosecurity-magazine.com/view/1435/rsa-symantec-ceo-enrique-salem-calls-for-automated-information-security-/ In his keynote at RSA in San Francisco, Symantec CEO Enrique Salem called for a significant shift in the way vendors and end-users approach information security. Change, said Salem, is needed to fight the current targeted threat landscape. 2009-04-22 http://www.infosecurity-magazine.com/view/1435/rsa-symantec-ceo-enrique-salem-calls-for-automated-information-security-/ http://www.infosecurity-magazine.com/view/1407/avg-launches-free-linkscanner-web-security-application/ AVG, the producers of one of the most popular free anti-virus applications, is now offering a free URL checking utility. 2009-04-21 http://www.infosecurity-magazine.com/view/1407/avg-launches-free-linkscanner-web-security-application/ http://www.infosecurity-magazine.com/view/1420/rsa-nsa-director-lieutenant-alexander-asks-rsa-conference-to-work-with-nsa-to-secure-nation-/ Director of NSA, Lieutenant General Keith B Alexander, congratulated the information security industry on its excellent work in his keynote address to RSA conference attendees in San Francisco on 21 April 2009. 2009-04-21 http://www.infosecurity-magazine.com/view/1420/rsa-nsa-director-lieutenant-alexander-asks-rsa-conference-to-work-with-nsa-to-secure-nation-/ http://www.infosecurity-magazine.com/view/1403/email-authentication-needs-to-be-taken-seriously-ota/ Research from the Online Trust Alliance (OTA) claims to show that companies need to take email authentication a lot more seriously than they presently do, as well as implement the technology on much more widespread basis. 2009-04-20 http://www.infosecurity-magazine.com/view/1403/email-authentication-needs-to-be-taken-seriously-ota/ http://www.infosecurity-magazine.com/view/1376/learn-about-smartphone-security-with-one-of-the-industrys-leading-it-security-experts/ Infosecurity is proud to announce that Professor Peter Sommer, a leading forensic and IT security specialist, will be participating in the Check Point Software Technologies-sponsored webinar, which takes place at 2:30pm UK time (3:30 CET) on Tuesday, April 21. 2009-04-17 http://www.infosecurity-magazine.com/view/1376/learn-about-smartphone-security-with-one-of-the-industrys-leading-it-security-experts/ http://www.infosecurity-magazine.com/view/1346/tory-mp-green-will-not-be-charged/ Tory MP Damian Green, who was arrested as part of an inquiry over Home Office leaks, will not face charges. 2009-04-16 http://www.infosecurity-magazine.com/view/1346/tory-mp-green-will-not-be-charged/ http://www.infosecurity-magazine.com/view/1331/skype-not-as-secure-as-you-might-think/ Although VOIP afficionadoes are wont to promote the encrypted nature of Skype Internet telephony calls, it's now becoming accepted that the use of a compressed data mode within Skype opens the gates to pattern recognition and slow, but steady, text-based decoding of the voice transmissions as a result. 2009-04-15 http://www.infosecurity-magazine.com/view/1331/skype-not-as-secure-as-you-might-think/ http://www.infosecurity-magazine.com/view/1332/check-point-completes-nokias-security-appliance-business/ It's been a complicated take-over, apparently, but Check Point Software Technologies has at last completed the acquisition of Nokia's security appliances business which was announced last year. 2009-04-15 http://www.infosecurity-magazine.com/view/1332/check-point-completes-nokias-security-appliance-business/ http://www.infosecurity-magazine.com/view/1334/symantec-report-observes-surge-in-malicious-code-for-2008/ Security provider, Symantec, found that malicious code activity continued to grow at a record pace throughout 2008, with the most prominent target being confidential information, according to the Symantec Internet Security Threat Report Volume XIV. 2009-04-15 http://www.infosecurity-magazine.com/view/1334/symantec-report-observes-surge-in-malicious-code-for-2008/ http://www.infosecurity-magazine.com/view/1337/marshal8e6-acquires-avinti-poised-to-enter-cloud-computing-/ Email and web security vendor Marshal8e6 has acquired Avinti, a behavioural analysis specialist, for an undisclosed sum. 2009-04-15 http://www.infosecurity-magazine.com/view/1337/marshal8e6-acquires-avinti-poised-to-enter-cloud-computing-/ http://www.infosecurity-magazine.com/view/1296/black-hat-briefings-start-on-thursday/ The organisers of the main Black Hat security conference - which takes place at the Moevenpick City Centre hotel in Amsterdam's Piet Heinkade this Thursday and Friday - have announced that presenters will reveal no less than six high profile vulnerabilities at the event. 2009-04-14 http://www.infosecurity-magazine.com/view/1296/black-hat-briefings-start-on-thursday/ http://www.infosecurity-magazine.com/view/1261/microsoft-security-report-pools-data-from-windows-users-everywhere/ In what some people might term as a case of Big Brother on steroids - or an in-depth anonymous analysis - depending on your viewpoint, Microsoft has published the latest version of its six monthly security intelligence report. 2009-04-09 http://www.infosecurity-magazine.com/view/1261/microsoft-security-report-pools-data-from-windows-users-everywhere/ http://www.infosecurity-magazine.com/view/1248/safenet-report-decline-in-mobile-safety/ Although almost half of UK business workers are required to access sensitive company data on a daily basis, one in three organisations lack the required mobile security, according to information security specialist SafeNet. 2009-04-08 http://www.infosecurity-magazine.com/view/1248/safenet-report-decline-in-mobile-safety/ http://www.infosecurity-magazine.com/view/1249/phishers-await-bite-from-credit-crunch-email/ An opportunist scam is seeing phishers use recession fears as bait, warns the Foreign and Commonwealth Office (FCO). 2009-04-08 http://www.infosecurity-magazine.com/view/1249/phishers-await-bite-from-credit-crunch-email/ http://www.infosecurity-magazine.com/view/1250/its-been-a-hard-days-night-for-paul-mccartneys-web-site/ The operators of Paul McCartney's web site were caught with their electronic pants down this week after the portal was found to be serving up malware. 2009-04-08 http://www.infosecurity-magazine.com/view/1250/its-been-a-hard-days-night-for-paul-mccartneys-web-site/ http://www.infosecurity-magazine.com/view/1251/infosecurity-gets-twittered-up/ Infosecurity magazine are now on Twitter. Please ‘follow’ us to receive our latest news, views and industry comments. 2009-04-08 http://www.infosecurity-magazine.com/view/1251/infosecurity-gets-twittered-up/ http://www.infosecurity-magazine.com/view/1163/samsung-appoints-wick-hill-as-it-security-distributor/ Samsung, a name better known for its PC and mobile phone offerings, has signed veteran value-added distributor Wick Hill to handle its IT security products in the UK. 2009-04-07 http://www.infosecurity-magazine.com/view/1163/samsung-appoints-wick-hill-as-it-security-distributor/ http://www.infosecurity-magazine.com/view/1164/conficker-methodology-appears-in-updated-neeris-worm/ Even though version D of the Conficker worm failed to cause havoc - as was widely predicted - on April 1, the worm's methodology continues to cause problems in the shape of an updated version of the Neeris worm. 2009-04-07 http://www.infosecurity-magazine.com/view/1164/conficker-methodology-appears-in-updated-neeris-worm/ http://www.infosecurity-magazine.com/view/1165/hispasec-enhances-free-online-malware-analysis-service/ Hispasec Sistemas, one of Spanish-speaking world's rising IT security stars, has enhanced its online malware analysis service to accept programmes of up to 10 megabytes, as well as supporting an impressive 23 languages via its on-screen interface 2009-04-07 http://www.infosecurity-magazine.com/view/1165/hispasec-enhances-free-online-malware-analysis-service/ http://www.infosecurity-magazine.com/view/1065/ibm-warns-over-four-percent-conficker-infection-rate/ After scanning around two million PCs, IBM's ISS security division says that around four percent of the PCs it scanned were infected by the Conficker worm. 2009-04-03 http://www.infosecurity-magazine.com/view/1065/ibm-warns-over-four-percent-conficker-infection-rate/ http://www.infosecurity-magazine.com/view/1016/us-cybercrimes-soar-by-33-in-2008/ Cybercrimes in the United States hit record numbers last year, according to a report from the Internet Crime Complaint Centre (IC3), a partnership between the FBI and the National White Collar Crime Centre. 2009-04-02 http://www.infosecurity-magazine.com/view/1016/us-cybercrimes-soar-by-33-in-2008/ http://www.infosecurity-magazine.com/view/1318/truly-depressing-gfi-laments-lack-of-insight-into-current-it-needs-from-uk-smes/ Small to medium enterprises (SMEs) are underestimating the security danger posed by their employees, especially in light of the current recession, according to network security software developer, GFI. 2009-03-31 http://www.infosecurity-magazine.com/view/1318/truly-depressing-gfi-laments-lack-of-insight-into-current-it-needs-from-uk-smes/ http://www.infosecurity-magazine.com/view/1015/arbor-networks-warns-on-mime-sniffingbased-phishing-attacks-/ Hiding data within digital pictures - known as steganography in security circles - has been known about for years, but now it appears the darkware community have taken the technology concept one step further and are hiding HTML and Java code calls within images when sending out phishing emails. 2009-03-30 http://www.infosecurity-magazine.com/view/1015/arbor-networks-warns-on-mime-sniffingbased-phishing-attacks-/ http://www.infosecurity-magazine.com/view/1012/teltech-intros-payasyouuse-lie-detector-phone-service/ TelTech has launched what appears to be the industry's first pay-as-you-use telephone voice analysis (lie detection) service. 2009-03-26 http://www.infosecurity-magazine.com/view/1012/teltech-intros-payasyouuse-lie-detector-phone-service/ http://www.infosecurity-magazine.com/view/1004/one-quarter-of-british-databases-almost-certainly-illegal/ A report published this week condemns the growing number of databases in Britain holding information from health and education to welfare, law enforcement and tax. 2009-03-25 http://www.infosecurity-magazine.com/view/1004/one-quarter-of-british-databases-almost-certainly-illegal/ http://www.infosecurity-magazine.com/view/1013/pirate-bay-develops-anonymous-vpn-user-protection/ Pirate Bay, the file-sharing index portal that has been the subject of several legal skirmishes in recent years, is about to fly into another storm of controversy following the development of what appears to be an anonymous VPN for its registered users. 2009-03-25 http://www.infosecurity-magazine.com/view/1013/pirate-bay-develops-anonymous-vpn-user-protection/ http://www.infosecurity-magazine.com/view/1014/symantec-admits-card-data-probably-leaked-from-india/ In a response to a BBC investigation into the leaking of payment card data from Indian call centres, Symantec's Indian operation has admitted that card data on three of its customers may have been leaked from its call centre contractor in India. 2009-03-25 http://www.infosecurity-magazine.com/view/1014/symantec-admits-card-data-probably-leaked-from-india/ http://www.infosecurity-magazine.com/view/811/cansecwest-lasers-and-electronic-sniffing-take-over-from-van-eck/ If you're an IT security professional with a long memory, you'll recall a BBC TV demonstration of the Van Eck phenomenon - the process of eavesdropping on a CRT monitor at a distance of several metres using low-cost electronics in the mid-1980s following the publishing of a paper on the subject. 2009-03-23 http://www.infosecurity-magazine.com/view/811/cansecwest-lasers-and-electronic-sniffing-take-over-from-van-eck/ http://www.infosecurity-magazine.com/view/762/grey-goose-2-ties-kremlin-more-closely-to-georgia-cyberattacks/ The follow-up to the Grey Goose cyberwar document has more closely linked Russia to the cyberwar against Georgia. The Kremlin's FSB tried to cloak its operations by mimicking the activities of loosely-connected criminal group the Russian Business Network, claims the explosive report, released today. 2009-03-20 http://www.infosecurity-magazine.com/view/762/grey-goose-2-ties-kremlin-more-closely-to-georgia-cyberattacks/ http://www.infosecurity-magazine.com/view/740/mobiles-put-four-out-of-five-commuters-at-risk-of-id-theft/ A survey of commuters by data protection company, Credant Technologies, has reported that 80% of mobile phone users store information on their devices that could be used to steal their identities. 2009-03-19 http://www.infosecurity-magazine.com/view/740/mobiles-put-four-out-of-five-commuters-at-risk-of-id-theft/ http://www.infosecurity-magazine.com/view/741/russians-hack-diebold-atm-software/ The act of ATM Card skimming and shoulder surfing - used by criminals the world over to create cloned cards from users of bank cash machines - has entered a new dimension. 2009-03-19 http://www.infosecurity-magazine.com/view/741/russians-hack-diebold-atm-software/ http://www.infosecurity-magazine.com/view/752/internet-explorer-firefox-and-safari-hacked-within-hours/ This year's CanSecWest, held in Vancouver, British Columbia, opened on Wednesday, with the main focus of the cracking contest being on mobile phones. 2009-03-19 http://www.infosecurity-magazine.com/view/752/internet-explorer-firefox-and-safari-hacked-within-hours/ http://www.infosecurity-magazine.com/view/704/mckinnon-attracts-support-of-terry-waite-and-sting-/ Supporters for Gary McKinnon can now include former captive Terry Waite and singer Sting amongst their numbers. 2009-03-17 http://www.infosecurity-magazine.com/view/704/mckinnon-attracts-support-of-terry-waite-and-sting-/ http://www.infosecurity-magazine.com/view/705/bogus-bomb-somewhere-near-you/ Security labs have discovered a variant of malicious spam that is engineered to report an exploded bomb within the recipient’s vicinity. 2009-03-17 http://www.infosecurity-magazine.com/view/705/bogus-bomb-somewhere-near-you/ http://www.infosecurity-magazine.com/view/706/eu-data-retention-directive-slammed-by-pgp-corporation-/ This month sees the European Union Data Retention Directive coming into force. The new law, which is expected to be fortified by UK- specific legislation, requires that ISPs store IP interactions by their customers for up to a year. 2009-03-17 http://www.infosecurity-magazine.com/view/706/eu-data-retention-directive-slammed-by-pgp-corporation-/ http://www.infosecurity-magazine.com/view/684/egress-launches-lowcost-secure-data-transfer-service/ Egress Software Technologies has moved its secure data transfer services into the online software-as-a-service market, adopting pay-as-you-go plus subscription models for the services at the same time. 2009-03-16 http://www.infosecurity-magazine.com/view/684/egress-launches-lowcost-secure-data-transfer-service/ http://www.infosecurity-magazine.com/view/656/bbc-creates-a-botnet-of-22-000-pcs-in-investigation/ The BBC has drawn criticism for an investigation that involved its researchers creating a botnet swarm of around 22 000 infected PCs. 2009-03-12 http://www.infosecurity-magazine.com/view/656/bbc-creates-a-botnet-of-22-000-pcs-in-investigation/ http://www.infosecurity-magazine.com/view/625/it-security-vendors-and-australian-police-embroiled-in-technology-spat/ An interesting technology row is quietly brewing in Australia that, if unresolved, could have repercussions elsewhere in the world. 2009-03-11 http://www.infosecurity-magazine.com/view/625/it-security-vendors-and-australian-police-embroiled-in-technology-spat/ http://www.infosecurity-magazine.com/view/570/google-docs-leaks-out-private-data/ The security rating of cloud computing has taken a battering with news that users of Google's online word processing service - Google Docs - may have shared their data with unauthorised users. 2009-03-10 http://www.infosecurity-magazine.com/view/570/google-docs-leaks-out-private-data/ http://www.infosecurity-magazine.com/view/475/major-emusic-site-hit-by-hackers/ Spotify, an advertising-driven e-music site launched in 2006 and with more than a million users across Europe, has suffered a data breach involving the personal details of around 10 000 members. 2009-03-06 http://www.infosecurity-magazine.com/view/475/major-emusic-site-hit-by-hackers/ http://www.infosecurity-magazine.com/view/471/isc2-securelondon-event-highlights-the-importance-of-getting-the-basics-right/ Training, education and awareness topped the list of ‘basics’ for information security management in a panel debate held at (ISC)2’s SecureLondon Security Leadership Seminar on Tuesday. The full –day conference, focussed on content security, illustrated that the human factor is becoming a key information security concern in a data-centric world. 2009-03-05 http://www.infosecurity-magazine.com/view/471/isc2-securelondon-event-highlights-the-importance-of-getting-the-basics-right/ http://www.infosecurity-magazine.com/view/473/aladdin-announces-web-20-security-enhancement/ Aladdin Knowledge Systems has enhanced its eSafe security software to support granular control of advanced web 2.0 websites such as Facebook and LinkedIn. 2009-03-05 http://www.infosecurity-magazine.com/view/473/aladdin-announces-web-20-security-enhancement/ http://www.infosecurity-magazine.com/view/470/quocirca-explains-content-security-in-the-age-of-mass-storage/ Bob Tarzey, service director with Quocirca, the business research analysis firm and a regular contributor to Infosecurity's Webinar series, has written a feature on the issues relating to content security and how they relate to the modern world of mass storage. 2009-03-04 http://www.infosecurity-magazine.com/view/470/quocirca-explains-content-security-in-the-age-of-mass-storage/ http://www.infosecurity-magazine.com/view/468/new-version-of-l0phtcrack-to-be-unveiled-next-week/ Seasoned penetration testers and security experts will recall that L0phtCrack, a seriously heavy-duty password testing utility, was quietly withdrawn by Symantec in 2006, after the IT security vendor reportedly became worried about export regulations of the high-tech software from the United States. 2009-03-03 http://www.infosecurity-magazine.com/view/468/new-version-of-l0phtcrack-to-be-unveiled-next-week/ http://www.infosecurity-magazine.com/view/466/messagelabs-says-spam-soars-then-subsides-during-february/ MessageLabs, the email security service provider, reports that February was an unusual month for spam, with levels rising to 79.5% of all email messages in the early part of the month, before falling back to below average levels. 2009-03-02 http://www.infosecurity-magazine.com/view/466/messagelabs-says-spam-soars-then-subsides-during-february/ http://www.infosecurity-magazine.com/view/467/google-crack-our-native-client-and-win-8192-6000/ Google is challenging the cracking community to rip apart its ActiveX alternative called Google Native Client. 2009-03-02 http://www.infosecurity-magazine.com/view/467/google-crack-our-native-client-and-win-8192-6000/ http://www.infosecurity-magazine.com/view/238/john-lewis-monitors-moves-on-cctv/ John Lewis Partnership may in future link movement analysis software to in-store CCTV cameras, according to the employee-owned store chain’s head of business protection. 2009-02-28 http://www.infosecurity-magazine.com/view/238/john-lewis-monitors-moves-on-cctv/ http://www.infosecurity-magazine.com/view/463/council-staff-breach-security-of-national-id-database/ The Department of Work and Pensions (DWP) have admitted that 33 public sector workers across 30 local authorities have accessed the Customer Information System (CIS) “without business justification”. 2009-02-26 http://www.infosecurity-magazine.com/view/463/council-staff-breach-security-of-national-id-database/ http://www.infosecurity-magazine.com/view/464/update-dpp-has-insufficient-evidence-to-prosecute-mckinnon-in-uk/ Karen Todner, solicitor for NASA hacker Gary McKinnon has issued a statement disclosing that the Office of the Director of Public Prosecutions (DPP) “do not consider that they have sufficient evidence before them to prosecute Mr McKinnon in the United Kingdom.” 2009-02-26 http://www.infosecurity-magazine.com/view/464/update-dpp-has-insufficient-evidence-to-prosecute-mckinnon-in-uk/ http://www.infosecurity-magazine.com/view/465/cansecwests-pwn2own-cracking-contest-goes-twintrack/ The three-day Pwn2Own cracking contest - which kicks off on March 18 at the CanSecWest security conference in Vancouver - is always a popular headliner, mainly because of its healthy reward for great system and software hacks. 2009-02-26 http://www.infosecurity-magazine.com/view/465/cansecwests-pwn2own-cracking-contest-goes-twintrack/ http://www.infosecurity-magazine.com/view/461/microsoft-working-on-secure-web-browser/ Microsoft's research operation has published a paper detailing a security-enabled web browser application code-named Gazelle. 2009-02-25 http://www.infosecurity-magazine.com/view/461/microsoft-working-on-secure-web-browser/ http://www.infosecurity-magazine.com/view/462/check-point-to-revolutionise-network-security/ At Check Point Experience in Paris this week, Gil Shwed, co-founder and chief executive of Check Point, announced the company’s intention to fundamentally alter network security with the launch of a software blade architecture. 2009-02-25 http://www.infosecurity-magazine.com/view/462/check-point-to-revolutionise-network-security/ http://www.infosecurity-magazine.com/view/460/six-out-of-ten-employees-steal-company-data/ A study of US workers has revealed that six out of every ten employees surveyed stole company data upon leaving their job in the last year. 2009-02-24 http://www.infosecurity-magazine.com/view/460/six-out-of-ten-employees-steal-company-data/ http://www.infosecurity-magazine.com/view/459/european-union-to-investigate-internet-telephony-eavesdropping/ Against a backdrop of the increasing use of internet telephony (aka voice over IP) by criminals as a way of avoiding wiretaps, the European Union has thrown its weight behind research into how to monitor internet telephony calls on a cost-effective basis. 2009-02-23 http://www.infosecurity-magazine.com/view/459/european-union-to-investigate-internet-telephony-eavesdropping/ http://www.infosecurity-magazine.com/view/458/obama-orders-review-of-cyber-security-following-faa-hack/ President Obama has requested a 60-day review of the ‘plans, programmes and activities’ in place to combat hacking in federal computer systems, following the recent breach at the Federal Aviation Administration (FAA) when 48 file systems were accessed. 2009-02-20 http://www.infosecurity-magazine.com/view/458/obama-orders-review-of-cyber-security-following-faa-hack/ http://www.infosecurity-magazine.com/view/456/parliamentary-forum-to-discuss-police-central-ecrime-unit/ Monday 23 February will see the annual parliamentary forum on e-crime, where the subject of the Police Central e-crime Unit (PCeU) is expected to spark some strong views, following events at last year’s forum. 2009-02-19 http://www.infosecurity-magazine.com/view/456/parliamentary-forum-to-discuss-police-central-ecrime-unit/ http://www.infosecurity-magazine.com/view/457/black-hat-researchers-blow-hole-in-intel-bios-security/ The Black Hat security event taking place in Washington this week brought its usual array of hacker methodology revelations, but Intel watchers will have sat up straight after hearing how researchers have effectively blown a hole in the firm's trusted execution technology. 2009-02-19 http://www.infosecurity-magazine.com/view/457/black-hat-researchers-blow-hole-in-intel-bios-security/ http://www.infosecurity-magazine.com/view/454/facebook-backs-down-on-owning-rights-to-users-info/ Facebook has backed down from a controversial change in its terms which gave it rights to its users' information. 2009-02-18 http://www.infosecurity-magazine.com/view/454/facebook-backs-down-on-owning-rights-to-users-info/ http://www.infosecurity-magazine.com/view/455/trend-micro-moves-it-security-onto-routers/ Trend Micro, which claims to be the 'number three' IT security software vendor worldwide, has unveiled a new family of applications designed to run on networking routers, rather than computers. 2009-02-18 http://www.infosecurity-magazine.com/view/455/trend-micro-moves-it-security-onto-routers/ http://www.infosecurity-magazine.com/view/453/kaspersky-site-hack-expands-to-bitdefender-and-fsecure/ Romanian hackers are reported to be targeting the web sites of several IT security vendors. 2009-02-17 http://www.infosecurity-magazine.com/view/453/kaspersky-site-hack-expands-to-bitdefender-and-fsecure/ http://www.infosecurity-magazine.com/view/452/first-arrests-in-heartland-payment-systems-data-breach/ The first arrests in connection with the recently disclosed breach at Heartland Payment Systems have been made in Florida. 2009-02-16 http://www.infosecurity-magazine.com/view/452/first-arrests-in-heartland-payment-systems-data-breach/ http://www.infosecurity-magazine.com/view/451/malicious-urls-arrive-on-digg-web-portal/ The ingenuity of malware distributors has reached new levels - of depths - depending on your point of view. 2009-02-12 http://www.infosecurity-magazine.com/view/451/malicious-urls-arrive-on-digg-web-portal/ http://www.infosecurity-magazine.com/view/449/uk-government-agencies-changing-approach-to-data-security/ Amidst all the reports of data breaches and intrusions in recent months comes a spot of good news, namely that a report from BeCrypt claims to show that UK government agencies are adopting a positive attitude to data security. 2009-02-11 http://www.infosecurity-magazine.com/view/449/uk-government-agencies-changing-approach-to-data-security/ http://www.infosecurity-magazine.com/view/444/itsec-vendors-rally-to-support-safer-internet-day/ Microsoft and several IT security firms have rallied to support the EU-sponsored Safer Internet Day, which is being backed by pledges from 17 social networking and web 2.0 portals. 2009-02-10 http://www.infosecurity-magazine.com/view/444/itsec-vendors-rally-to-support-safer-internet-day/ http://www.infosecurity-magazine.com/view/445/adobeforrester-research-reveals-web-20-not-so-pervasive/ A major European study commissioned by Adobe and carried out by Forrester Research shows that `knowledge workers' within European organisations are far less keen on collaborating with each other using Web 2.0 and other advanced internet technologies than was previously thought. 2009-02-10 http://www.infosecurity-magazine.com/view/445/adobeforrester-research-reveals-web-20-not-so-pervasive/ http://www.infosecurity-magazine.com/view/440/sunbelt-working-on-nextgen-antivirus-technology/ Sunbelt Software claims to have developed a new anti-virus technology called `file emulation' in its battle against malware. 2009-02-09 http://www.infosecurity-magazine.com/view/440/sunbelt-working-on-nextgen-antivirus-technology/ http://www.infosecurity-magazine.com/view/441/online-hotel-fraud-scamming-71-000-travellers-a-month/ FraudTip, a Web security portal, claims that an internet scam is defrauding around 71 000 travellers every month by the simple expedient of routing internet users to fraudulent versions of popular booking sites. 2009-02-09 http://www.infosecurity-magazine.com/view/441/online-hotel-fraud-scamming-71-000-travellers-a-month/ http://www.infosecurity-magazine.com/view/442/fortinet-highlight-rise-in-malware/ The Threatscape report from UTM solution provider, Fortinet, detailing trends in vulnerabilities and malware in the first month of 2009, revealed the rise of the buffer overflow exploit to Microsoft Security Bulletin MS08-067, as well as a swell in online gaming malware. 2009-02-09 http://www.infosecurity-magazine.com/view/442/fortinet-highlight-rise-in-malware/ http://www.infosecurity-magazine.com/view/443/hackers-hit-the-road/ In a fresh case of social engineering, ever-resourceful hackers in the US have found a new way to direct unsuspecting users into downloading a virus, through fake parking tickets. 2009-02-09 http://www.infosecurity-magazine.com/view/443/hackers-hit-the-road/ http://www.infosecurity-magazine.com/view/259/facetime-eliminates-url-filtering-fees-as-v20-gateway-released/ FaceTime Communications has celebrated the release of v2.0 of its Unified Security Gateway (USG) appliance by waiving the fees for URL filtering on new purchases. 2009-02-05 http://www.infosecurity-magazine.com/view/259/facetime-eliminates-url-filtering-fees-as-v20-gateway-released/ http://www.infosecurity-magazine.com/view/260/pgp-research-highlights-crippling-data-breach-losses/ Research just released by crypto specialist PGP Corporation claims to show that the average cost of a data breach soared by 28% during 2008, with typical costs weighing in at an astonishing £1.7 million per incident. 2009-02-05 http://www.infosecurity-magazine.com/view/260/pgp-research-highlights-crippling-data-breach-losses/ http://www.infosecurity-magazine.com/view/257/blind-hacker-fulfils-sneakers-movie-role-17-years-on/ Movies have a funny habit of becoming reality and the 1992 hacker movie Sneakers, starring Robert Redford, is no exception. 2009-02-04 http://www.infosecurity-magazine.com/view/257/blind-hacker-fulfils-sneakers-movie-role-17-years-on/ http://www.infosecurity-magazine.com/view/258/ukrainian-isp-servers-shut-down/ UkrTeleGroup, an infamous internet service provider in the Ukraine, has had its primary IP connection "depeered" by FiberNet, the Miami-based uplink provider. 2009-02-04 http://www.infosecurity-magazine.com/view/258/ukrainian-isp-servers-shut-down/ http://www.infosecurity-magazine.com/view/255/google-falls-victim-to-human-error/ On Saturday, Google users were warned that all their search results were potentially harmful, due a widespread result of human error. 2009-02-03 http://www.infosecurity-magazine.com/view/255/google-falls-victim-to-human-error/ http://www.infosecurity-magazine.com/view/256/companies-their-own-worst-enemy-says-ibm-xforce-report/ The annual report from IBM's X-Force security operation shows what many IT managers have suspected for some time, namely that Web application vulnerabilities represent the major risk for most organisations. 2009-02-03 http://www.infosecurity-magazine.com/view/256/companies-their-own-worst-enemy-says-ibm-xforce-report/ http://www.infosecurity-magazine.com/view/252/child-protection-database-will-be-accessible-to-390-000-staff/ The controversial child protection database, to house the contact details for all under 18 year olds in England, is to be accessible to 390 000 staff, according to ministers. 2009-01-30 http://www.infosecurity-magazine.com/view/252/child-protection-database-will-be-accessible-to-390-000-staff/ http://www.infosecurity-magazine.com/view/253/cisco-moves-into-security-and-unified-communications/ Cisco continued its diversification away from its mainstream networking roots this week with the release of a range of security, storage and unified communications offerings for small businesses. 2009-01-30 http://www.infosecurity-magazine.com/view/253/cisco-moves-into-security-and-unified-communications/ http://www.infosecurity-magazine.com/view/254/panda-security-research-shows-high-incidence-of-malicious-email/ Research just released by Panda Security claims that just 8.6 per cent of email that reached companies last year was non-malicious. 2009-01-30 http://www.infosecurity-magazine.com/view/254/panda-security-research-shows-high-incidence-of-malicious-email/ http://www.infosecurity-magazine.com/view/250/isaca-unveils-new-it-security-business-model/ ISACA, the Information Systems Audit and Control Association, has developed a new business model for IT security. 2009-01-29 http://www.infosecurity-magazine.com/view/250/isaca-unveils-new-it-security-business-model/ http://www.infosecurity-magazine.com/view/251/hackers-run-up-120-000-phone-bill-for-canadian-law-firm/ If you've had a high company phone bill recently, spare a thought for Martin & Hillyer, a law firm in Burlington, Ontario. 2009-01-29 http://www.infosecurity-magazine.com/view/251/hackers-run-up-120-000-phone-bill-for-canadian-law-firm/ http://www.infosecurity-magazine.com/view/247/obama-administration-publishes-agenda-for-cybersecurity/ The newly-appointed Obama administration has wasted no time in fulfilling one of its mainstay election promises by publishing an agenda for cybersecurity. 2009-01-27 http://www.infosecurity-magazine.com/view/247/obama-administration-publishes-agenda-for-cybersecurity/ http://www.infosecurity-magazine.com/view/248/despite-all-the-warnings-it-users-still-not-using-encryption/ Research just published by crypto specialist Steganos has revealed that - despite all the well-publicised data losses in the last few years - technology users have still not embraced encryption to protect their personal information. 2009-01-27 http://www.infosecurity-magazine.com/view/248/despite-all-the-warnings-it-users-still-not-using-encryption/ http://www.infosecurity-magazine.com/view/245/monster-slain-by-hackers/ Careers website Monster.com and USAjobs.gov, the careers site for the US federal government, have been targeted by hackers, who have harvested user information including IDs, passwords and addresses. 2009-01-26 http://www.infosecurity-magazine.com/view/245/monster-slain-by-hackers/ http://www.infosecurity-magazine.com/view/246/infosecurity-magazine-work-with-tories-on-infosec-policy-/ The UK government should be demonstrating best practice when it comes to information security, said Eleanor Laing, MP, in a meeting with Infosecurity magazine on Monday 22nd January. 2009-01-26 http://www.infosecurity-magazine.com/view/246/infosecurity-magazine-work-with-tories-on-infosec-policy-/ http://www.infosecurity-magazine.com/view/242/update-mckinnon-wins-permission-for-judicial-review/ 'NASA hacker' Gary McKinnon has won permission from the High Court to apply for a judicial review against his extradition to the United States. 2009-01-23 http://www.infosecurity-magazine.com/view/242/update-mckinnon-wins-permission-for-judicial-review/ http://www.infosecurity-magazine.com/view/243/10-000-bounty-placed-on-ddos-hackers/ Overclockers.co.uk (OCUK), an online computer hardware reseller firm, have announced they are placing a bounty of £10 000 on the heads of hackers behind a Distributed Denial of Service (DDoS) attack on their web site earlier in the month. 2009-01-23 http://www.infosecurity-magazine.com/view/243/10-000-bounty-placed-on-ddos-hackers/ http://www.infosecurity-magazine.com/view/244/germanys-train-it-resources-offline-due-to-ups-failure/ Here's a lesson in IT contingency planning, courtesy of Deutsche Bahn, the German railway network company, whose IT systems - including station indicator boards, electronic ticketing, self-service counter tickets and Internet pages - all went off line on January 14 due to single UPS failing. 2009-01-23 http://www.infosecurity-magazine.com/view/244/germanys-train-it-resources-offline-due-to-ups-failure/ http://www.infosecurity-magazine.com/view/241/uscert-warns-microsoft-windows-autorun-off-advice-is-flawed/ The US Computer Emergency Readiness Team (US-CERT) has warned Microsoft's advice on how to turn off the autorun option within Windows is not effective. 2009-01-22 http://www.infosecurity-magazine.com/view/241/uscert-warns-microsoft-windows-autorun-off-advice-is-flawed/ http://www.infosecurity-magazine.com/view/226/kaspersky-claims-pole-position-on-windows-7-antivirus/ Kaspersky Lab claims to be first out of the gate with a test edition of its AntiVirus software for the Windows 7 platform. 2009-01-21 http://www.infosecurity-magazine.com/view/226/kaspersky-claims-pole-position-on-windows-7-antivirus/ http://www.infosecurity-magazine.com/view/229/government-aligns-with-iisp-/ The UK government’s Infosec Training Paths and Competencies (ITPC) scheme is to transfer to the Institute of Information Security Professionals (IISP) with effect from 1 April 2009. 2009-01-21 http://www.infosecurity-magazine.com/view/229/government-aligns-with-iisp-/ http://www.infosecurity-magazine.com/view/234/heartland-card-payment-system-breach-bigger-than-tjx/ Reports are coming in that a New Jersey-based payment processor's IT systems have been compromised in what experts are calling the biggest payment card data breach ever. 2009-01-21 http://www.infosecurity-magazine.com/view/234/heartland-card-payment-system-breach-bigger-than-tjx/ http://www.infosecurity-magazine.com/view/223/organisations-unaware-of-inhouse-virtual-architecture/ Two-thirds of firms in the UK are reportedly unable to identify exactly what virtual resources are in active use on their IT systems, according to a study just released. 2009-01-20 http://www.infosecurity-magazine.com/view/223/organisations-unaware-of-inhouse-virtual-architecture/ http://www.infosecurity-magazine.com/view/215/downadup-worm-hits-millionplus-pcs-in-24-hours/ Finnish IT security vendor F-Secure reports that a worm that exploits a months-old Windows flaw has infected more than 1.1 million PCs in space of 24 hours. 2009-01-16 http://www.infosecurity-magazine.com/view/215/downadup-worm-hits-millionplus-pcs-in-24-hours/ http://www.infosecurity-magazine.com/view/217/extradition-looms-as-the-fires-of-hell-burn-for-gary-mckinnon/ At the time of writing, the NASA hacker Gary McKinnon, who reportedly perpetrated the biggest military hack on record, was awaiting a decision from the Crown Prosecution Service on whether a recent signed confession, along with his diagnosis with Asperger’s syndrome, would help him to avoid extradition to the US and a potential 70 year prison sentence. 2009-01-16 http://www.infosecurity-magazine.com/view/217/extradition-looms-as-the-fires-of-hell-burn-for-gary-mckinnon/ http://www.infosecurity-magazine.com/view/213/israelihamas-battle-escalates-to-botnets/ The ongoing conflict between Israel and Hamas in the Middle East has escalated beyond a spat of hacker Web site attacks plus defacements and into the realms of botware. 2009-01-14 http://www.infosecurity-magazine.com/view/213/israelihamas-battle-escalates-to-botnets/ http://www.infosecurity-magazine.com/view/189/its-hammertime-for-discarded-computers-says-which-magazine/ Which? Computing magazine has encouraged the smashing of computer hard drives after buying eight second-hand hard drives from eBay and finding confidential information on each. 2009-01-09 http://www.infosecurity-magazine.com/view/189/its-hammertime-for-discarded-computers-says-which-magazine/ http://www.infosecurity-magazine.com/view/227/trust-trumps-price-for-online-consumers/ Amid the build-up to Christmas, a survey commissioned by VeriSign finds that 85 percent of online shoppers maintain that trust in a site is the most important issue when online shopping. 2008-12-16 http://www.infosecurity-magazine.com/view/227/trust-trumps-price-for-online-consumers/ http://www.infosecurity-magazine.com/view/239/lumension-survey-predicts-itsec-trends-for-2009/ End of year research commissioned by enterprise endpoint security specialist Lumension has found that outsourcing is likely to be a major IT security talking point in 2009. 2008-12-12 http://www.infosecurity-magazine.com/view/239/lumension-survey-predicts-itsec-trends-for-2009/ http://www.infosecurity-magazine.com/view/231/hidden-rootkitdoslaunching-flaw-discovered-in-vista/ A potentially serious flaw has been discovered in Windows Vista that can allow rootkits to be hidden or denial-of-service attacks to be executed from deep within the operating system. 2008-11-24 http://www.infosecurity-magazine.com/view/231/hidden-rootkitdoslaunching-flaw-discovered-in-vista/ http://www.infosecurity-magazine.com/view/235/infosecurity-work-with-tory-mps-to-develop-data-security-working-group-/ Infosecurity magazine were honoured to receive an invitation from MPs Eleanor Laing and Nick Herbert to visit the Houses of Parliament this week, to discuss the Conservative party’s data security agenda. 2008-11-13 http://www.infosecurity-magazine.com/view/235/infosecurity-work-with-tory-mps-to-develop-data-security-working-group-/ http://www.infosecurity-magazine.com/view/222/information-security-awards-recognise-honour-excellence-leadership-and-vision/ Executive Alliance, provider of premium leadership recognition forums worldwide, has announced the winners of the Information Security Executive (ISE) and Project of the Year United Kingdom and Ireland Awards for 2008. 2008-10-24 http://www.infosecurity-magazine.com/view/222/information-security-awards-recognise-honour-excellence-leadership-and-vision/ http://www.infosecurity-magazine.com/view/233/security-flaw-exposed-in-google-chrome/ Fresh after Google’s tenth birthday, the entrepreneurial company is facing reports that its new browser, Chrome, contains a security flaw, just a day after its release in beta. 2008-09-05 http://www.infosecurity-magazine.com/view/233/security-flaw-exposed-in-google-chrome/ http://www.infosecurity-magazine.com/view/219/top-secret-iraq-and-alqaeda-documents-left-on-train-/ Top-secret documents, containing information on al-Qaeda and Iraq, were found on the seat of a commuter train, according to BBC news reports released today. 2008-06-12 http://www.infosecurity-magazine.com/view/219/top-secret-iraq-and-alqaeda-documents-left-on-train-/ http://www.infosecurity-magazine.com/view/1150/government-meets-with-cynicism-after-revealing-plans-for-giant-database/ The government faces sceptisicm after revealing plans to implement a huge database storing citizens’ phone and web records. 2008-05-23 http://www.infosecurity-magazine.com/view/1150/government-meets-with-cynicism-after-revealing-plans-for-giant-database/ http://www.infosecurity-magazine.com/view/1148/facebook-photos-exposed-/ A security lapse on Facebook has made large libraries of private photographs, including one of Paris Hilton, available for all users to access. Exploiting a recent upgrade to the networking site’s privacy settings, a Canadian hacker was able to view pictures that were intended as private. 2008-03-26 http://www.infosecurity-magazine.com/view/1148/facebook-photos-exposed-/ http://www.infosecurity-magazine.com/view/1137/highly-confidential-home-office-laptop-sold-on-ebay/ Police are investigating a possible Home Office security breach after the discovery of an encrypted laptop containing a scrambled disc with the words ‘Home Office, highly confidential’ written on it. The laptop was found in a computer shop near Bolton, after a customer had taken it in for repair. The laptop was said to have been brought on eBay. 2008-02-28 http://www.infosecurity-magazine.com/view/1137/highly-confidential-home-office-laptop-sold-on-ebay/ http://www.infosecurity-magazine.com/view/1112/pcidss-failure-could-hit-brands-gaming-firms-told/ The potential damage to a brand justifies the high cost of Payment Card Industry Data Security Standard (PCI-DSS) security compliance work, a major payment card operator told a gambling conference. 2008-01-29 http://www.infosecurity-magazine.com/view/1112/pcidss-failure-could-hit-brands-gaming-firms-told/ http://www.infosecurity-magazine.com/view/1159/doctors-encourage-patients-to-optout-after-nhs-data-losses/ A letter for patients to use to opt-out of the English NHS’s nascent central database of medical records, written by doctors and medical privacy campaigners, has reached more than 200 000 downloads. Meanwhile, nine NHS trusts have admitted data breaches, in the wake of HM Revenue and Customs’ loss of 25 million people’s data. 2008-01-04 http://www.infosecurity-magazine.com/view/1159/doctors-encourage-patients-to-optout-after-nhs-data-losses/ http://www.infosecurity-magazine.com/view/1078/better-job-prospects-for-infosecurity-staff-says-sans/ Infosecurity professionals will see improved job opportunities in 2008, according to the SANS Institute. The US-based organisation believes that as senior executives in government realise that their systems have already been compromised, and that they do not control those systems, they will react by creating new jobs. 2008-01-02 http://www.infosecurity-magazine.com/view/1078/better-job-prospects-for-infosecurity-staff-says-sans/ http://www.infosecurity-magazine.com/view/207/big-phishhunters-make-small-tank-vulnerable/ PhishTank, a mass-participation website used to track phishing sites, is susceptible to voting fraud by criminals, according to researchers at Cambridge University’s Computer Laboratory. 2007-12-21 http://www.infosecurity-magazine.com/view/207/big-phishhunters-make-small-tank-vulnerable/ http://www.infosecurity-magazine.com/view/1133/government-to-toughen-data-protection-act/ New sanctions will be added to the UK’s Data Protection Act for serious breaches, the chancellor Alistair Darling told parliament on 17 December. 2007-12-19 http://www.infosecurity-magazine.com/view/1133/government-to-toughen-data-protection-act/ http://www.infosecurity-magazine.com/view/1141/norwich-union-life-fined-126m/ The UK’s Financial Services Authority has fined life assurance company Norwich Union Life £1.26 million ($2.54m, €1.77m) for “not having effective systems and controls in place to protect customers' confidential information and manage its financial crime risks” (statement). 2007-12-17 http://www.infosecurity-magazine.com/view/1141/norwich-union-life-fined-126m/ http://www.infosecurity-magazine.com/view/1143/banks-voice-approval-of-phone-biometrics/ Several banks are adopting voice biometric technology, while BT is preparing to offer an internal service commercially, according to exhibitors at the first European Voice Biometrics Conference, held in London on 28 and 29 November. 2007-12-06 http://www.infosecurity-magazine.com/view/1143/banks-voice-approval-of-phone-biometrics/ http://www.infosecurity-magazine.com/view/218/uk-government-loses-data-on-25m-britons/ The UK government has lost personal data on every child in the country, as well as national insurance numbers and bank account details of parents and carers claiming child benefit, on two password-protected CDs sent through an internal mail service. 2007-11-20 http://www.infosecurity-magazine.com/view/218/uk-government-loses-data-on-25m-britons/ http://www.infosecurity-magazine.com/view/1147/ico-asks-uk-to-criminalise-severe-data-breaches/ The UK information commissioner’s office (ICO) has asked the government to make serious breaches of the Data Protection Act a criminal offence, rather than attracting fines as at present. 2007-11-14 http://www.infosecurity-magazine.com/view/1147/ico-asks-uk-to-criminalise-severe-data-breaches/ http://www.infosecurity-magazine.com/view/236/flawless-id-doesnt-exist-says-ecommerce-specialist/ Passwords are not enough to keep criminals out, Sanjay Bavisi, president of the International Council of Electronic Commerce Consultants (the EC-Council), told a session on 5 November at the CSI 2007 conference in Washington DC. 2007-11-07 http://www.infosecurity-magazine.com/view/236/flawless-id-doesnt-exist-says-ecommerce-specialist/ http://www.infosecurity-magazine.com/view/1151/bt-counterpanes-bruce-schneier-talks-to-eleanor-dallaway-about-why-he-hasnt-been-fired-yet/ Bruce Schneier has increased BT’s press mentions in the North American press by 21% since the UK telecom giant’s acquisition of his firm Counterpane one year ago. BT insists that the acquisition ran smoothly and that the two companies are working well together, and Bruce tells us that the Counterpane people are happy. But it seems there are a few creases in the BT Counterpane story that still need to be ironed out – Bruce’s job title being the first. 2007-11-02 http://www.infosecurity-magazine.com/view/1151/bt-counterpanes-bruce-schneier-talks-to-eleanor-dallaway-about-why-he-hasnt-been-fired-yet/ http://www.infosecurity-magazine.com/view/1140/rsa-europe-2007-kiwis-felt-id-cards-wouldnt-fly/ New Zealand has rejected physical identity cards, central databases and data matching in creating its national identity scheme, one of the scheme’s architects told the RSA Europe conference in London on 24 October. 2007-10-25 http://www.infosecurity-magazine.com/view/1140/rsa-europe-2007-kiwis-felt-id-cards-wouldnt-fly/ http://www.infosecurity-magazine.com/view/1155/rsa-europe-2007-personalities-required-for-teambuilding/ When building an information security team, it is just as important to recruit on the basis of personality as it is to find someone with the right technical qualifications, according to Peter Berlich, a director of (ISC)2. 2007-10-25 http://www.infosecurity-magazine.com/view/1155/rsa-europe-2007-personalities-required-for-teambuilding/ http://www.infosecurity-magazine.com/view/216/biometrics-2007-joining-up-data-would-speed-border-checks/ Biometrics at borders could be reduced and better focused, allowing faster transit for trusted passengers, according to speakers at Biometrics 2007. 2007-10-22 http://www.infosecurity-magazine.com/view/216/biometrics-2007-joining-up-data-would-speed-border-checks/ http://www.infosecurity-magazine.com/view/1157/biometrics-2007-biometrics-help-security-trump-privacy/ New biometric technologies and plans for increased surveillance are jeopardising society’s right to liberty and privacy, argued David Murakami Wood, managing editor of Surveillance & Society, at the Biometrics 2007 conference on Friday 19 October. 2007-10-22 http://www.infosecurity-magazine.com/view/1157/biometrics-2007-biometrics-help-security-trump-privacy/ http://www.infosecurity-magazine.com/view/1153/biometrics-2007-fingerprints-fail-to-tackle-football-hooligans/ A fingerprint recognition system failed to prevent black-listed fans from entering football grounds and was easily fooled by simple spoofing techniques, according to a trial by Dutch research organisation TNO. 2007-10-19 http://www.infosecurity-magazine.com/view/1153/biometrics-2007-fingerprints-fail-to-tackle-football-hooligans/ http://www.infosecurity-magazine.com/view/1145/isse-weighs-privacy-against-internet-security/ Finding the right balance between internet security and privacy is becoming increasingly hard when addressing cyber terrorism, experts at last week’s annual ISSE conference argued. 2007-10-04 http://www.infosecurity-magazine.com/view/1145/isse-weighs-privacy-against-internet-security/ http://www.infosecurity-magazine.com/view/225/spend-less-on-it-security-says-gartner/ Organisations should aim to spend less of their IT budgets on security, Gartner vice-president John Pescatore told the analyst firm’s London IT Security Summit on 17 September. 2007-09-18 http://www.infosecurity-magazine.com/view/225/spend-less-on-it-security-says-gartner/ http://www.infosecurity-magazine.com/view/1154/biometrics-move-from-banking-to-borders/ Biometrics has changed in several significant ways over the last decade, according to a prominent expert in the field. 2007-08-24 http://www.infosecurity-magazine.com/view/1154/biometrics-move-from-banking-to-borders/ http://www.infosecurity-magazine.com/view/1142/uk-should-introduce-data-breach-notification-law-say-lords/ The UK should make banks liable for online fraud and follow US states in forcing organisations to notify victims of information leaks, according to a wide-ranging report published on 10 August by the House of Lords science and technology select committee. 2007-08-10 http://www.infosecurity-magazine.com/view/1142/uk-should-introduce-data-breach-notification-law-say-lords/ http://www.infosecurity-magazine.com/view/1139/floodzone-security-suppliers-confident-of-business-continuity/ Users of IT security products should see no gaps in service resulting from floods in Britain, despite the location of several vendors in some of the worst-affected towns. 2007-07-23 http://www.infosecurity-magazine.com/view/1139/floodzone-security-suppliers-confident-of-business-continuity/ http://www.infosecurity-magazine.com/view/1156/google-buys-postini-to-sell-infosecurity-as-a-service/ Google is buying its way into the infosecurity market, through purchasing security service provider Postini for $625 million (£310m, EUR458m) in cash, it said on 9 July. 2007-07-10 http://www.infosecurity-magazine.com/view/1156/google-buys-postini-to-sell-infosecurity-as-a-service/ http://www.infosecurity-magazine.com/view/209/infosec-ignorance-is-a-barrier-to-security-in-americas-cup-/ This year, the Victory Challenge team introduced security into their game plan as they challenged the Swiss defender Alinghi, in the 32nd America’s Cup. 2007-06-25 http://www.infosecurity-magazine.com/view/209/infosec-ignorance-is-a-barrier-to-security-in-americas-cup-/ http://www.infosecurity-magazine.com/view/1136/new-web-threats-gain-momentum-/ Eighty per cent of infected websites have been compromised by a third-party hacker, according to the latest threat statistics from Sophos. 2007-06-21 http://www.infosecurity-magazine.com/view/1136/new-web-threats-gain-momentum-/ http://www.infosecurity-magazine.com/view/174/renault-formula-1-deploy-irm-to-protect-car-designs-/ At the British Grand Prix in 2006, over four gigabytes of data was created over the weekend, including 150 documents containing car designs, technical specifications and other important testing and race data. Under pressure to keep their sensitive information secure, the Renault Formula 1 team chose Oracle content management (formerly Stellent) to manage, share and secure critical documents and information across the organisation, remotely and trackside. 2007-06-20 http://www.infosecurity-magazine.com/view/174/renault-formula-1-deploy-irm-to-protect-car-designs-/ http://www.infosecurity-magazine.com/view/172/lloyds-tsb-turns-frauddetection-software-on-staff/ Lloyds TSB has purchased pattern-recognition software from US vendor Actimize for detecting employee fraud within its retail banking operation. Use of such software is already common in financial services for spotting fraud in external transactions, such as credit card spending. 2007-06-08 http://www.infosecurity-magazine.com/view/172/lloyds-tsb-turns-frauddetection-software-on-staff/ http://www.infosecurity-magazine.com/view/224/nato-aids-estonia-in-denial-of-service-fight/ Governments will need to defend their nations from cyber-attacks as well as physical attacks, after the Baltic state of Estonia suffered from several weeks of denial of service attacks on its web-sites, following its relocation of a Soviet-era war memorial. 2007-05-29 http://www.infosecurity-magazine.com/view/224/nato-aids-estonia-in-denial-of-service-fight/ http://www.infosecurity-magazine.com/view/1144/nato-aids-estonia-in-denial-of-service-fight/ Governments will need to defend their nations from cyber-attacks as well as physical attacks, after the Baltic state of Estonia suffered from several weeks of denial of service attacks on its web-sites, following its relocation of a Soviet-era war memorial. 2007-05-29 http://www.infosecurity-magazine.com/view/1144/nato-aids-estonia-in-denial-of-service-fight/ http://www.infosecurity-magazine.com/view/1152/one-gang-corners-the-market-in-phish/ One gang is responsible for more than half of all attempted phishing for the likes of online banking log-in details, and has found ways to extend the lives of its web-sites, according to researchers at Cambridge University. 2007-05-17 http://www.infosecurity-magazine.com/view/1152/one-gang-corners-the-market-in-phish/