Infosecurity News

  1. CA identifies fakeware, search engines and social networks as major information security threats of 2009

    In its year-end report on the state of IT security, Computer Associates (CA) has noted that fake security software (fakeware), poisoned search engine results and social networking sites such as Bebo, Facebook and Myspace, were the major information security threats of 2009.

  2. UK SMEs not ready for snow fall

    Many small businesses in the UK are not ready for the current snow fall, according to remote access provider LogMeIn of Massachusetts, USA.

  3. ‘Iranian Cyber Army’ hacks Twitter

    A hacker group called ‘Iranian Cyber Army’ hacked Twitter for an hour early on 18 December, redirecting users to a website containing a green flag and Arabic writing.

  4. Businesses migrate to virtualised security appliances

    A study from IDC Research shows that virtualised security appliances (VSAs) are becoming more and more popular amongst a growing number of companies.

  5. Adobe admits to another PDF security vulnerability

    Adobe has announced its latest zero-day security vulnerability in what has become a litany of such flaws this year - and this one won't be patched until halfway through January.

  6. US military drones video feeds hacked by Iraqi terrorists

    The US military is reported to be in quiet uproar after it emerged that Iraqi terrorists have hacked and monitored the video feeds from Predators, pilotless aircraft used for unmanned surveillance.

  7. AppGate and Signify team up on cloud-based two-factor authentication

    AppGate and Signify have announced they are able to offer clients unified secure access to protected information with strong, cloud-based, two-factor authentication.

  8. Secure USB sticks help to defend Royal Marsden hospital data

    The Royal Marsden NHS Foundation Trust, whose hospital was one of the first to develop cancer treatments back in the 1850s, is using secure USB sticks as part of a managed security solution to protect patient records.

  9. Webroot reports zero-day malware generating forged Microsoft security certificates

    The zero-day malware exploit against Adobe Acrobat and Reader reported earlier this week appears to have escalated, with Webroot Software noting that the payload from the exploit is generating a cluster of files designed to look like Windows system files which have been digitally signed with Microsoft security certificates.

  10. Botnet numbers growing fourfold each year

    The number of computers infected by botnet malware has almost quadrupled each year since 2004, according to a report to be released by Project Honey Pot next week.

  11. Spam volumes exceeded pre-McColo levels this year

    One year after the McColo shutdown, spam volumes have not only recovered, but have grown beyond what they were before the rogue ISP was taken offline.

  12. Two-factor authentication technology being compromised says Gartner

    Just when the UK banks have started issuing two-factor authentication devices to a growing number of account holders, a report from the Gartner group claims to show that fraudsters have started to raid user accounts by beating the same technology.

  13. Imperva reports major social networking hub site compromised

    Data security specialist Imperva has issued a warning after discovering a potentially serious SQL injection flaw with Rockyou.com, the social networking application development web portal.

  14. Now Koobface creates its own malicious web pages

    Koobface - the long-running worm which first appeared 12 months ago - is being customised by hackers to crack security systems on website hosting services, and so allow it to auto-create its own web pages.

  15. Encrypted MoD laptop stolen – along with encryption key

    The UK Ministry of Defence says one of its encrypted laptops was stolen from its headquarters in Whitehall, central London in November – along with the laptop’s encryption key.

  16. Hacker makes plea bargain

    The hacker accused of helping to perpetrate the largest credit card theft in US history has agreed to plead guilty as part of a plea bargaining deal with federal prosecutors.

  17. Microsoft fixes browser flaw

    Microsoft’s last Patch Tuesday of the year saw the release of fixes for five flaws in its Internet Explorer browser, including a critical zero-day security vulnerability that was first publicly disclosed three weeks ago.

  18. Fortify introduces SaaS edition of its application vulnerability technology

    After several months of testing with a few clients, Fortify has rolled out a software-as-a-service (SaaS) version of its application vulnerability technology, Fortify 360.

  19. SecureWorks scoops up UK's dns in private cash and stocks deal

    SecureWorks, the US managed information security services specialist, has acquired dns, its UK-based rival, in a cash-and-stock deal that remains private between the two companies.

  20. Koobface rises again - this time it's a Christmas greeting

    Reports are coming in of a new variant of the Koobface worm doing the rounds of PCs connected to the internet. This latest variation of the long-running criminal-driven malware uses a Christmas greeting to spread infections via the Facebook social networking portal.

Why Not Watch?

  1. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  2. Modernizing GRC: From Checkbox to Strategic Advantage

  3. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  4. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

What’s Hot on Infosecurity Magazine?