2008-11-26
The vulnerability in the Windows Server Service that Microsoft patched in an emergency update last month is facing a new wave of attacks. Microsoft officials reported a spike in exploits targeting the vulnerability earlier this week. If you haven't patched, now is the time to put it on your schedule.
2008-11-26
With all the talk about smartphones such as the Apple iPhone 3G, security vendors have sought to stir up discussions about mobile phone security. While those mobile and wireless malware threats haven't fully materialized, this holiday season may be the time for consumers to begin arming themselves for the mobile malware battles ahead.
2008-11-26
Have a loved one with an unpatched computer? Or someone who does mobile banking or has difficulty remembering passwords? Consider some of these IT security solutions for their stockings.
2008-11-25
Spam levels are heading back up after dropping dramatically following the shutdown of Web hosting company McColo. According to Symantec security research, some notorious botnets are back in action.
2008-11-25
Google says GeekCondition.com's claims about a Gmail vulnerability are incorrect. The issue is just an example of a successful phishing attack targeting Web domain owners, Google says.
2008-11-25
Stolen and misplaced laptops can leave SMBs susceptible to data breaches if the laptops remain on, but a messaging solution can aid midmarket security. Lenovo's SMS-based kill command gives users the chance to shut down a PC remotely via text message.
2008-11-24
Lenovo is using text messaging to add an additional layer of security to the company’s line of ThinkPad notebooks. Starting in 2009, Lenovo ThinkPad notebook users can use an SMS text message to shut down a laptop that has been stolen or has been lost. This new feature, called Lenovo Constant Secure Remote Disable, was developed in conjunction with Phoenix Technologies to work with the ThinkPad’s BIOS.
2008-11-24
A study from the Anti-Phishing Working Group shows phishers are increasing the use of top-level domains in their campaigns to breach security through social engineering. According to the APWG research, the .hk and .th domains lead the way with the most phishing attacks per 10,000 domains.
2008-11-24
Cyber-crime and the online underground economy are booming as more and more SMBs turn to online stores and services to cut costs. From data encryption to regular password changes, midmarket companies may find it necessary to beef up security standards.
2008-11-24
In a new year-long study, Symantec took a look at the black market for stolen credit cards, banking information and other goods. According to the report, the overall value of the goods observed by Symantec to the traders is around $276 million, but the potential value for cyber-thieves stretches into the billions.
2008-11-24
IBM introduces IBM Resilient Cloud Validation Services, in which its IBM Global Services group helps other companies determine whether their internal cloud computing systems are airtight and fully functional—even though IBM itself has no centralized, clearly marketed cloud computing strategy of its own as a reference.
2008-11-21
Stephan Chenette of Websense describes a new Internet attack vector that could allow hackers to bypass anti-virus protection at both the gateway and the desktop. The technique, called script fragmentation, involves breaking down malware into smaller pieces in order to beat malware analysis engines. Web 2.0 requires new ways of thinking about browser security.
2008-11-21
Botnet operators may change their tactics due to the shutdowns of ISP Intercage and Web hosting company McColo. Security researchers predict a shift to a more distributed botnet model and redundant command and control servers.
2008-11-21
President-elect Barack Obama's cell phone calls and wireless account records were hacked by a Verizon Wireless employee, Verizon Wireless admitted Nov. 20. Verizon Wireless said Bacack Obama's device was a simple voice phone, not a BlackBerry or other smartphone or mobile device designed for e-mail or other data services. In a statement, Verizon Wireless President and Chief Executive Lowell McAdam apologized to Obama and said all employees who had had access to Obama's account, whether authorized or not, were put on immediate leave with pay.
2008-11-20
A reported ban by the U.S. Army on USB devices underscores the growing prevalence of USB-based malware. Researchers at Symantec say they have observed an increase in USB security threats going back at least a year.
2008-11-19
The University of Texas at San Antonio Institute for Cyber Security launches an Internet security incubator to commercialize promising technologies that address major cyber-security and privacy issues. The program offers companies access to UTSA ICS labs and research.
2008-11-19
Cyber-crime is likely to wreak as much havoc as the credit crisis in the coming years if international regulation is not improved, according to some of the world's top crime experts. Damage caused by cyber-crime is estimated at $100 billion annually, says Kilian Strauss, of the Organization for Security and Cooperation in Europe.
2008-11-19
Citigroup announced it may fire as many as 50,000 employees. Hidden amid Citigroup's perceived savings is the cost of managing to shut down access to as many as 1 million accounts, user names and passwords that falls on the IT department. Managing that process effectively can be the difference between a data breach and peace of mind.
2008-11-18
Microsoft is giving up on its Windows Live OneCare subscription service next June. But it is not giving up on the security business entirely - it has plans for a free, anti-malware product code-named "Morro."
2008-11-18
Deduplication software has been an important sales driver for a number of storage companies during the last two years. Enterprises looking to build new storage systems or reconstitute older ones are painfully aware of increasing electrical power costs and are seeking out cost- and environmentally-aware software and hardware.
| 
Security News 
