Infosecurity News

  1. Microsoft’s Bill Harmon on tackling child exploitation online: We can win

    On June 20th at the Microsoft HQ in Seattle, Bill Harmon, associate general counsel, Microsoft digital crimes unit, presented at the TwC International Media Campus Tour on child sexual exploitation online. While he assessed that the problems we have today with child safety is so much greater than thirty years ago due to technology, he concluded that we “can win this war”.

  2. Kayak.com investigates search engine glitch that exposed users' personal data

    Online travel website Kayak.com is investigating a security breach in which personal information of users was available through its search engine.

  3. AT&T security chief: mobiles are the “nail in coffin” for trust, and the perimeter

    The man responsible for the security of AT&T’s network recently told one audience that mobility is perhaps the death knell for trust within an organization’s network perimeter. His solution lies in a gradual network-based security strategy that moves your assets into the cloud.

  4. Pennsylvania man indicted for hacking Energy Department networks

    A Pennsylvania man has been arrested for hacking into computer networks at the Department of Energy (DOE), the University of Massachusetts (U-Mass), and a number of companies and trying to sell access to these networks to an uncover FBI agent.

  5. Fake anti-virus comes to Android – or does it?

    Webroot has reported the arrival of fake anti-virus, one of the most prevalent of PC threats, on the Android mobile platform. Beware of the Android Security Suite Premium – it’s a trojan.

  6. Governments spend too much on cyber surveillance and not enough on catching crooks

    A report from academics including Ross Anderson and Richard Clayton from Cambridge University suggests current cyberdefense is misdirected: too much money is spent on preventing cybercrime rather than apprehending cybercriminals.

  7. Nuclear regulator warns about cybersecurity lapses at California power plant

    The US Nuclear Regulatory Commission (NRC) is warning Southern California Edison that it might take enforcement action against the utility because of cybersecurity lapses found in a May security audit of its San Onofre nuclear power plant.

  8. Customers’ bank details stolen from Glasgow City Council

    Glasgow City Council has been forced to write to 37,835 suppliers and residents following the theft of an unencrypted laptop from its offices in Cochrane Street.

  9. Anonymous and law enforcement: unlikely allies

    Anonymous and the various law enforcement agencies would, at first glance, appear to be pitted against each other. But events suggest that their intentions are remarkably similar.

  10. Teen site Habbo Hotel suspends chat after pornographic content reports

    Finnish online teen community Habbo Hotel has shut down its chat functions after reports of pornographic content, the site announced Wednesday.

  11. Enterprises should employ a “no jailbreak” policy on mobile devices, say analysts

    Gartner’s John Girard and Lawrence Pingree went in depth on mobile security risks at this week’s Gartner Security and Risk Management Summit outside Washington DC. The primary risk to data breaches, as they see it, are allowing jailbroken or rooted devices to access your enterprise environment.

  12. ICO re-opens Google Street View probe in the UK

    The UK’s data protection watchdog, the Information Commissioners Office, has written to Google demanding further information about the collection of personal data via its Street View project.

  13. One-third of CEOs have never been briefed by CISO on security

    A disturbing 36% of chief executive officers (CEOs) have never received an information security report from their chief information security officer (CISO), a survey sponsored by CORE Security found.

  14. US attorney general appoints prosecutors to probe Stuxnet leak

    Attorney General Eric Holder has appointed US attorneys to investigate the leak of information about the US government’s involvement in developing the Stuxnet worm, along with other recent national security breaches.

  15. Security is a pillar of Dell's strategic vision

    Michael Dell participated in one of the keynotes at this week’s Gartner Security and Risk Summit outside Washington DC, in what amounted to a fireside chat with Gartner analysts about Dell’s future in IT security.

  16. ‘Adding Game’ on Facebook spam alert

    Barracuda Labs has discovered a new Facebook spam methodology currently being seeded across the social network giant.

  17. SandForce SF-2000 SSD Processor’s AES-256 is broken

    SandForce, acquired by LSI earlier this year, produces flash storage and SSD processors. For more than a year it has been selling its SF-2000 SSD Processor product with AES 256 encryption – that doesn’t work.

  18. The Metropolitan Police Vs Confidential Access – six sentenced

    Six men associated with Confidential Access were given sentences at Southwark Crown Court on Friday (8 June), ranging from 6 years 9 months to 2 years suspended, for “a catalogue of fraud offences.”

  19. Qualys Inc files for $100m IPO

    On Friday 8 June, Redwood City-based Qualys Inc filed a registration statement on Form S-1 with the Securities and Exchange Commission relating to a proposed initial public offering of shares of its common stock.

  20. PCI requires merchants to pass internal vulnerability assessments

    The PCI Standards Security Council will require merchants to show proof of passing an internal vulnerability assessment beginning June 30, noted Alex Quilter, director of PCI at Qualys.

Why Not Watch?

  1. Audit & Compliance in the Era of AI and Emerging Technology

  2. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  3. Revisiting CIA: Developing Your Security Strategy in the SaaS Shared Reality

  4. Mastering AI Security With ISACA’s New AAISM Certification

What’s Hot on Infosecurity Magazine?