Infosecurity News

  1. RSA Europe: Barings Bank collapse avoidable if controls were in place

    The collapse of the UK Barings Bank in 1995 could have been avoided if proper controls and systems had been in place, Nick Leeson, the guy that brought down the Barings Bank told the audience at the RSA Conference Europe on 22 October.

  2. RSA Europe: We need revocable personal data says ISF president

    Speaking at the RSA Europe conference in London this week, ISF president Professor Howard Schmidt said that there is now a need for people to be able to revoke the personal data they present for identification and credit-worthiness to financial institutions.

  3. RSA Europe: Two-factor authentication is worth nothing, says executive director, EEMA

    At the RSA Europe conference, 20 October 2009, in a session titled ‘Governments face up to the cyber security challenge’, Roger Dean, executive director of EEMA, declared two-factor authentication “not worth anything anymore”.

  4. Rapid7 acquires Metasploit open source project

    Rapid7, the vulnerability management security specialist, has acquired Metasploit, the ongoing open source security project that developed the Metasploit Framework. The move is billed as allowing Rapid7 to enhance its penetration testing technologies.

  5. RSA Europe: Identity theft is too easy and can even be automated says IT security expert

    The realities of identity theft and the modus operandi of cybercriminals were explained to delegates at this week's RSA Security conference in London by Brian Honan, a principal security consultant with BH Consulting of Ireland.

  6. BitDefender readies for Windows 7 release to consumers

    Although business users have had copies of Windows 7 on their machines for a short while now, this Thursday will see the first copies of the new Microsoft operating system released to consumers. And BitDefender says it is ready, as its 2010 range of IT security products have just been released, complete with Windows 7 certification.

  7. Symantec says internet users plagued by fake anti-virus software

    Research just published by Symantec claims to show that users are increasingly being fooled into installing fake anti-virus software - aka scamware - onto their machines.

  8. Find out how to implement least-privilege security management for Linux and UNIX

    A least-privilege security model has its merits, but it can be challenging to implement in for example Linux and UNIX environments where administrators often share passwords to root- or other superuser accounts. Find out how to implement least-privilege security management for Linux and UNIX for free on October 27 at 10am Pacific Time.

  9. Biometrics 2009: Sagem Sécurité and Hitachi introduce multi-modal finger vein and fingerprint device

    Biometrics company Sagem Sécurité and the Japanese engineering and information technology firm Hitachi, will unveil their biometric multi-modal finger vein and fingerprint device, Finger VP, at Biometrics 2009 in London this week.

  10. Weekly brief - October 19, 2009

    US$4000 lost in Facebook scam; Michigan's airport website closed due to malware; the first Windows 7 security patches appear; and more. We report on the IT security news...

  11. Wal-Mart EPOS system source code hacked - how secure is the payment card data?

    Reports are coming in that the source code of the Wal-Mart highly customized point-of-sale (EPOS) computer system - used in almost 900 of its stores across the US - has been hacked.

  12. Lawsuits fly over T-Mobile Sidekick cloud data loss

    T-Mobile has reportedly been hit by two class action lawsuits alleging that the cellular carrier misled consumers into believing that their data was secure after data was lost in the cloud

  13. Half of UK firms lack knowledge on security breaches

    Research just published by PricewaterhouseCoopers claims to show that around half of UK companies do not know how many security breaches they have experienced in the past year.

  14. Sophos introduces data loss prevention technology

    Sophos has added a new data loss prevention (DLP) technology to its stable of enterprise security software. The addition will, said the veteran security vendor, simplify how companies mitigate against accidental data loss.

  15. Fake anti-virus programmes hijack and block computers

    PandaLabs has identified an aggressive trend for selling fake anti-virus programmes or rogueware, where instead of users seeing a series of warnings prompting them to buy a paid version, a fake anti-virus programme is combined with ransomware, hijacking computers and rendering them useless until victims complete the purchase.

  16. Webroot reports tax return malware-infecting email scam reaching the UK

    Webroot, the internet security software specialist, reports that an Internal Revenue Service (IRS) tax email scam - in which US internet users have been emailed a malware-infected warning about under-stating their income or underpaying of tax - has arrived in the UK.

  17. ISSE 2009: CECA receives TeleTrusT Innovation Award 2009 for e-signing in Spanish banks

    TeleTrusT, the German IT security association, awarded the TeleTrusT Innovation Award 2009 to the Spanish Savings Banks Organisation (Confederación Española de Cajas de Ahorros, CECA) for its e-signing project at ISSE 2009 last week in The Hague.

  18. Loss of main user accounts cause anger and bewilderment among Apple Mac Snow Leopard users

    Apple Computer has been criticised for failing to address a potentially major code flaw in copies of Snow Leopard, its new Mac operating system, which means users' main accounts can get wiped.

  19. QSA system is broken, says Heartland CEO

    In a session titled ‘Enhancing payment security in 2010’, Robert O. Carr, Chairman and CEO or Heartland Payment Systems - the subject of potentially the world’s biggest data security breach earlier this year - declared that the model used by quality security assessors (QSA) is “broken”.

  20. ISSE 2009: IAM investments should increase in 2010 despite economic climate

    Identity and access management (IAM) investments should be increased rather than decreased due to the current economic climate, according to around three quarters of respondents to a survey presented at ISSE 2009 last week by KPMG IT Advisory and Everett in cooperation with eema and IIR.

Why Not Watch?

  1. How To Enhance Security Operations with AI-Powered Defenses

  2. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  3. Five Non-Negotiable Strategies to Get Identity Security Right in 2026

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?