Brian Prince

A new report by Symantec underscores the threat facing critical infrastructure networks around the world. The statistics tell the tale. In its August Critical Infrastructure Protection Study, (PDF) covering 1,580 responses from businesses in “six industries categorized as critical infrastructure providers,” Symantec found that 53 percent had experienced what was perceived as a politically motivated […]

Adobe Systems patched 23 flaws in Reader and Acrobat today, including two the company warned about last month. “Today’s updates resolve critical vulnerabilities in Adobe Reader 9.3.4 (and earlier versions) for Windows, Macintosh and UNIX, Adobe Acrobat 9.3.4 (and earlier versions) for Windows and Macintosh, and Adobe Reader 8.2.4 (and earlier versions) and Adobe Acrobat […]

Symantec is talking up its mobile security plans. As part of a push across its consumer and enterprise portfolio, Symantec is adding support for Google Android and Apple iOS – the operating system for the iPhone and iPad – as well as an upcoming solution aimed at communication service providers. The focus is on helping […]

Cisco Systems is looking to bring better security and performance to its “Borderless Network” strategy by adding new products that span its switching, routing and wireless portfolios. In the name of security, Cisco announced a new ASA Adaptive Security Appliance and an updated AnyConnect VPN client. The ASA 5585-X Adaptive Security Appliance offers support for […]

Compliance regulations may not be a perfect gauge for security, but a new report from Verizon Business underscores how important they can be. In the “Verizon Payment Card Industry Compliance Report [PDF],” the company analyzes compliance with the Payment Card Industry Data Security Standard (PCI DSS), and how it relates to data breaches. According to […]

Between insider threats and malware attacks, the idea of trust-but-verify is dead as a security model, according to a new report by Forrester Research. In its place, Forrester analyst John Kindervag contends enterprises should embrace the concept of zero trust, a model where insiders and outsiders are equally untrustworthy, and security administrators stop trusting packets […]

A security researcher recently uncovered numerous cross-site scripting vulnerabilities in Twitter, Facebook and MySpace. The social networking sites have patched all the bugs, which were discovered by Nir Goldshlager of Avnet Information Security Consulting and shared with the sites a few weeks ago. “When a user logs in to www.facebook.com, www.twitter.com or www.myspace.com, he is […]

Talk about requiring companies to make it easier for authorities to intercept communications on the Web led a busy week in IT security news that also featured an emergency Microsoft patch and mass arrests in the fight on cyber-crime. The Obama administration’s plans were first reported by the New York Times. The discussions on the […]

Iranian Intelligence Minister Heydar Moslehi announced today the arrests of multiple people he described as “nuclear spies.” Moslehi told the Mehr News Agency of the arrests, but offered no further details. The arrests follow reports that the Stuxnet worm infected computers belonging to staff at the Bushehr nuclear power plant, where it reportedly did no […]

That link that you click on for information about the Stuxnet worm might be leading you to a malicious site. It’s the dark side of search engine optimization; attackers boosting the search engine rankings of malicious sites so they can lure visitors with the promise of interesting news. In this case, it’s the Stuxnet worm […]