Infosecurity News

  1. Aussie bank customers hit by advanced phishing techniques

    Customers of the Commonwealth Bank in Australia are being targeted by a new breed of phishers, who seem intent on scamming them out of their e-banking and payment card details.

  2. Guide to handling personal data launched by BCS and ISAF

    The British Computer Society (BCS) has linked up with the Information Security Awareness Forum (ISAF) to launch a professional code of best practice when handling personal data.

  3. Twitter worm steals user details

    A worm on Twitter is tricking users into giving up their user details at the same time as redirecting victims to a dating website where the aggregate number of views result in affiliate revenue.

  4. ENISA evaluates network resilience of MPLS, IPv6 and DNSSEC

    The European Network and Information Security Agency (ENISA) has released two reports on how and if Multi Protocol Label Switching (MPLS), Internet Protocol version 6 (IPv6) and Domain Name System Security Extensions (DNSSEC) could improve the resilience of communication networks.

  5. Google indexes details on thousands of credit and debit cardholders

    Police in Victoria, Australia are investigating a potentially major security incident in which the stolen personal details of thousands of credit and debit card holders from Australia, Germany and the UK were posted to a blogging site and auto-indexed into the Google search engine.

  6. Jericho Forum links with Cloud Security Alliance

    Hard on the heels of unveiling Cloud Cube, its four-dimensional best practice model for cloud computing security in April, security industry association the Jericho Forum has linked with the Cloud Security Alliance (CSA), a not-for-profit vendor group.

  7. Open Group advises on risk management methods

    Independent consortium the Open Group is trying to resolve what it sees as confusion about risk management in the industry by publishing a guide to choosing a risk management methodology.

  8. RAF data loss included sensitive vetting data

    The Ministry of Defence (MoD) has omitted information that the theft of hard drives in September 2008 with data on RAF personnel also included highly sensitive RAF vetting records.

  9. Anti-malware groups align themselves

    Anti-malware efforts took a significant step forward this week with the announcement of an initiative to try and bring legitimate software businesses together and lock out malware writers.

  10. £3.9 million bank credit error highlights need for code auditing

    A succession of errors - at the programme code development level and human error when inputting the data - are reported to have resulted in a New Zealand couple being credited with NZ$10 million (£3.9 million) rather than a much smaller sum as the proceeds of a bank credit line.

  11. Survey shows information security awareness is high, yet compliance is low

    SAI Global’s Benchmarking Survey 2008 finds that 95% of employees believe information security is important, but that there is a lack of knowledge and training surrounding how to identify and report incidents.

  12. Gumblar malware attack sweeps web

    A modified attack that alters Google searches is taking the web by storm according to security researchers, who have identified more malware domains being used in the attack.

  13. McAfee acquires Solidcore for whitelisting technology

    McAfee will acquire Solidcore Systems, a whitelisting specialist, in a US$33m deal which will allow McAfee to integrate Solidcore's technology into its blacklisting malware detection and prevention products, as well as to bolster its high-end corporate IT security offerings.

  14. Gateshead College opens digital forensics lab

    Gateshead College in the UK has opened a digital forensics lab for the training of information security staff to combat cybercrime such as digital fraud.

  15. Infosecurity Weekly Brief - May 18 2009

    Infections, Intrusions, Protections and Misdirections

  16. Paypal registration page vulnerabilities revealed

    Methodman, a so-called 'grey hat' hacker specialising in discovering cross-site scripting (XSS) flaws, claims to have uncovered a number of XSS security flaws in various Paypal registration pages.

  17. Australian two-factor payment card authentication technology on beta test

    A two-factor authentication system - complete with keypad and display - has been successfully integrated into a plastic payment card by Melbourne-based EMUE and is being trialled by MBNA in the UK

  18. Software piracy on the rise

    Worldwide software piracy is on the rise, according to a study by the Business Software Alliance and analyst firm IDC.

  19. Estonia now firmly on the FBI cybercrime map

    The importance of Estonia, one of the most Internet-connected and e-trading nations on earth, has ramped up a notch or two with the FBI, which has announced plans to station a cybercrime expert and his/her team in the country later this year.

  20. Forrester questions the security of cloud computing

    With the economic downturn, cloud computing is seen as a way to improve operational efficiency, reduce headcounts and help with the bottom line, but according to the report from Massachusetts-based Forrester Research on cloud computing, organisations should not jump on the ‘cloud wagon’ before considering security and privacy concerns.

Why Not Watch?

  1. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

  2. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  3. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  4. Modernizing GRC: From Checkbox to Strategic Advantage

What’s Hot on Infosecurity Magazine?