news aggregator

Foxy Fox foolishness foxes foolish fools

A US Air Force security training exercise which created a false buzz about the filming of Transformers 3 succeeded in creating awareness of phishing issues, but went a little further than was expected.…

Who's responsible for ensuring security?

Workshop Business today is a very different beast to that of just five years ago, and a world away compared to ten years back. While some of us are undoubtedly still office based, there has been an equally clear trend towards more flexible working which is less dependent on a fixed location. The spread of Wi-Fi in the home and workplace and then in public areas made mobile working feasible and even tolerable. And with increasingly effective connectivity technologies such as 3G, mobility for all its good or ills is here to stay.…

US cybersecurity is weakened by our desire to keep government out of business.

Still deadlocked on one

The jury deciding the fate of the man accused of breaching Sarah Palin's Yahoo Mail account has reached a verdict on three of the charges filed against him but can't come to a decision about the fourth, according to news reports.…

Free White Paper - Data quality and cost reduction

Data hole plugged after impersonated keystroke attack

Google has restored its "personalized" search suggestions after purging the tool of a critical vulnerability that allowed attackers to steal a user's web history.…

Just add javascript

Microsoft says it's investigating a security flaw in older versions of its SharePoint Server product that an independent researcher says can easily expose sensitive data and user authentication credentials.…

McAfee, Symantec, and even Microsoft confirm facts that Adobe PDF exploits are continuing to climb during 2010. According to one security researcher, Adobe will take its cue from Google Chrome and add sandboxing defenses to its PDF software this year in order to beef up on Reader and Acrobat security.

It is no secret that pro-copyright lobbyists are exploiting child pornography to get file-sharing sites pulled offline. They have done so for years. Their ultimate goal is to use child porn as an excuse to impose a global Internet filter, and with a new directive being presented in the EU their strategy seems to be paying off.

Crypto shopping spree

Symantec has announced a surprise deal to buy both email and data encryption firms PGP Corporation and GuardianEdge Technologies for a combined total of $370m in cash.…

Assessing the changing direction of security

Mini Poll Okay, we've banged on often enough about how security shouldn't be about products - it should be about making sure our data is adequately protected and all such good ideas. But the question is just how practical is this? We know a whole load of change is coming to IT today, some internal and some external. We also know that the bad guys are getting badder, smarter and better-equipped to breach the increasingly fragmented protection mechanisms we have in place.…

Secret sauce

Chinese government rules due to come into force on Saturday would oblige security vendors to disclose encryption information.…

You want to use Facebook, but you also want to keep your private information from being spread all over the Internet. The key is to understand how Facebook works, where your information is going, and how to navigate the service's labyrinth of privacy controls.

But here at EFF, we are also wondering if we’ve just seen the future of copyright enforcement. Although the Gizmodo seizure doesn’t appear to be rooted in copyright, having cops kicking in doors over what seems like a private dispute reminded us of recent efforts by the big content industries to get law enforcement to go after “copyright thieves.”

DDoS demo backfires

A Texas man has agreed to plead guilty to charges he trained a botnet on a popular internet service provider so he could demonstrate custom-made malware to a potential customer.…

Hactivist assault as 'tulip frenzy'

The attacks that paralyzed Estonian internet traffic for three days in 2007 were fueled by online anonymity and a phenomenon known as contagion, according to a report by three academics.…

Trojans, botnets and scareware sound frightening... and for good reason.

But could avoid more jail

Terry Childs - the sysadmin who refused to hand back passwords to San Francisco's network - has been found guilty of computer tampering.…

Exactly what kind of information does Google collect when those Street View cars roll down your street? Google has decided to offer more insight into the process and what happens to the data.

Enter the insufferable hype machine

Opinion Infosec, the annual IT security trade show, has always been a place to do deals rather than to unveil new research or make significant product announcements.…

Game on

Hackers have overcome Ubisoft's controversial DRM system that relied on constant connection to the internet for games to function.…