DoS Attack Feared As Storm Worm Siege Escalates
The massive Storm worm attack has built a botnet of 1.7 million computers -- large enough to unleash a highly damaging denial-of-service attack, researchers fear.
more>>
Number Of Hackers Attacking Banks Jumps 81%
Hackers no longer need to be technical wizards to set up an operation to steal people's banking information and then rob their accounts.
more>>
Hackers Steal U.S. Government Data From PCs
Hackers stole information from the U.S. Department of Transportation and several U.S. companies by seducing employees with fake job-listings on advertisements and e-mail, a computer security firm said.
more>>
Cisco VoIP Flaw Could Lead to Attacks
Cisco's Unified Communications Manager voice over IP software has two vulnerabilities that allow denial-of-service attacks, the company has said.
more>>
The Threat Within: Employees Pose The Biggest Security Risk
The No. 1 tactical security priority for U.S. companies in 2007, according to 37% of respondents, is creating and enhancing user awareness of policies. But this is down from 42% in 2006.
more>>
Despite Deluge Of Data Losses, 40% Don't Monitor Databases
Despite all the data losses that are filling the headlines and leaving hundreds of thousands of people exposed to identity theft, 40% of companies don't monitor their databases for suspicious activity, according to a study released this week.
more>>
Study: Despite data breaches, database security not a top corporate priority
While 78% of large companies say their databases are "critical" or “important” to their business, 40% of them don’t monitor databases for security purposes.
more>>
A Code Of Ethical Conduct For IT Workers
Access to employee data can be tempting, so here are a few simple rules to follow so that we all can get along.
more>>
Survey: Companies Disregard Data Security Breach Risks
Companies are not moving quickly to deploy protections and adopt procedures to cope with a future data security breach, according to a new survey of more than 700 IT executives and security officers.
more>>
Cisco Fixes Fresh Flaws in IOS
Cisco Systems has fixed a pair of flaws in its Internetwork Operating System (IOS) that attackers could exploit to cause a denial of service or tamper with data in a device's file system.
more>>
Thumb Drives Replace Malware As Top Security Concern, Study Finds
A survey of IT managers showed that while more than half use a USB flash drive on a daily basis, many still view portable storage devices as a huge security threat.
more>>
Security's Top Five Priorities
What keeps you awake at night? For security professionals, the awake-at-night issues keep changing. When we did our last "look ahead" story back in December, the industry had not yet been slapped by the TJX breach, Web 2.0 worries, or Gary Min's attempt to steal $400 million worth of trade secrets from DuPont. Security threats, apparently, are like politically-incorrect comments by Don Imus: There's a new one every few minutes.
more>>
65% of Companies Underestimate USB Security Risks
According to GFI Software, an international developer of network security, 65% of companies underestimate the security risks posed by the use of USB sticks, flash drives, iPods and PDAs on company networks.
more>>
Neiman Marcus Loses Data on 160K Employees
A computer stolen from a Neiman Marcus consultant contained personal information on nearly 160,000 current and former employees, the luxury retailer said Tuesday.
more>>
Sober Worm, With New Variant, Makes A Comeback
Researchers saw a new variant of the virulent Sober worm being heavily spammed out a few days ago. The first Sober worm hit in October 2003.
more>>
Hackers Used E-Mail Access to Gov't Computers
A break-in targeting State Department computers worldwide last summer occurred after a department employee in Asia opened a mysterious e-mail that quietly allowed hackers inside the U.S. government's network.
more>>
IT Managers Fear Security Breaches Could Cost Their Jobs
A recent poll showed that only 35% of managers say they are equipped to deal with a data loss, while a majority take their worries home with them.
more>>
Cisco Patches Wi-Fi Vulnerabilities
Cisco Systems has issued two sets of patches for vulnerabilities in its wireless networking software. more>>
The Final 'Final' Nail in WEP's Coffin?
"Ironically, last May, when Bittau, Handley and Lackey released their research showing new flaws in WEP, I remember calling that the final nail in the coffin and the end of the road for WEP," he said in an e-mail exchange. "But it seems that no matter how bad we think WEP is, the news can always be worse than we imagined." more>>
Cisco's NAC Gets Hacked
Researchers in Germany today demonstrated a tool that allows an unauthorized PC to disguise itself as a legitimate client in a Cisco Network Admission Control (NAC) environment, effectively circumventing the networking giant's end-point security strategy. more>>
ANI Zero Day Takes New Turns to the Uber-Nasty
If you're reading this with Internet Explorer on a Windows machine, don't. The Windows animated cursor zero-day attack that was coming through on IE 6 and 7 running on fully patched Windows XP SP2 is now also hitting Windows 2000, Server 2003 and Vista. As F-Secure advises, better to use some other combination. more>>
Microsoft Sees Rise In Attacks on New Flaw
Hackers stepped up attacks Friday on computers running some versions of Windows, a day after Microsoft disclosed a hole related to the mouse cursor. more>>
T.J. Maxx data theft worse than first reported
Data stolen covers transactions dating as far back as December 2002. more>>
Your new ID-theft worry? Photocopiers
Consumers are bombarded with warnings about identity theft. Publicized threats range from mailbox thieves and lost laptops to the higher-tech methods of e-mail scams and corporate data invasions.
Now, experts are warning that photocopiers could be a culprit as well. more>>
Russian Trojan Built To Bypass Banking Security
The Gozi Trojan, which reportedly has been feeding stolen personal information to a Russian crime ring, also is exploiting flaws in the Internet Explorer browser.
more>>
Network Downtime from Security Attacks Proves Costly
Network downtime caused by security attacks is costing large enterprises more than $30 million a year, according to a recent study by Infonetics Research. more>>
Security's Three Deadly Sins
People love lists, and I'm no different. I'm a sucker for all those "10 Best Places to Live" sorts of things, even though I know the town where I live won't make the list. more>>
Hackers' Latest Attack: Malware In Disguise
Virus writers have been pummeling corporate networks and consumers with their latest trick -- malware that wraps itself in a variety of masks to evade detection by antivirus programs. more>>
Cisco Routers Threatened by Drive-By Pharming
Cisco Systems is advising customers to change the default user names and passwords on their routers to guard against a new attack technique Symantec Corp. and Indiana University warned about last week. more>>
T.J. Maxx, Marshalls Customer Data Stolen
TJX Cos Inc. , which operates the T.J. Maxx and Marshalls chains, said Wednesday that the computer systems that process its customer transactions had been breached and customer information had been stolen. more>>
Data Breaches Rising as Firms, Laws Move Slowly
When identity thieves stole sensitive information about thousands of consumers from Alpharetta, Ga.-based ChoicePoint Inc. in February 2005, it caused a national uproar.
Furious consumer advocates demanded changes in the way Social Security numbers, credit card information and addresses are collected and kept by companies, government agencies and others. Lawmakers responded by proposing a flurry of new legislation.
Nearly two years later, though, the number and the cost of data breaches are still growing. more>>
Wisconsin Officials Warn of Identity Theft
The Social Security numbers of 171,000 Wisconsin taxpayers were printed on the labels of tax booklets to be mailed out, prompting state officials to warn of possible identity theft. more>>
Flaw Found in Adobe Acrobat PDF Format
Computer security researchers said Wednesday they have discovered a vulnerability in Adobe Systems Inc.'s ubiquitous Acrobat Reader software that allows cyber-intruders to attack personal computers through trusted Web links. more>>
Cybercrooks Deliver Trouble
It was the year of computing dangerously, and next year could be worse. That is the assessment of computer security experts, who said 2006 was marked by an unprecedented spike in junk e-mail and more sophisticated Internet attacks by cybercrooks. more>>
Universities Vulnerable to ID Thieves
Universities have become attractive targets for hackers who are taking advantage of the openness of the schools' networks, their decentralized security and the personal information they keep on millions of young adults. more>>
Can Your Firm Be Sued for a Data Breach?
In July 2003, California Senate Bill 1386 went into effect, becoming the first state law providing for mandatory notification in the event of a breach. Some 30 states have enacted similar legislation. more>>
Companies still neglect network security
Cyber threats are becoming more sophisticated and are headed in new directions, but too many companies aren't acting on the threats, a panel of experts said this week. more>>
The new reality for IT security
Security executives from around the country converged in Boston this week to hear how their peers are tackling enterprise security and managing risk. more>>
Black Hat Flaw Eludes Cisco
Don't you just hate it when you finally tell someone about that computer bug you've been experiencing -- and all of a sudden, it stops happening? That seems to be the case with a firewall vulnerability discussed at the recent Black Hat Inc. conference. more>>
Does Compliance Have a Silver Lining?
While compliance can he a burden, many organizations are finding value in the process. more>>
McAfee Security Programs May Expose Data
Affects Internet Security Suite, SpamKiller, Privacy Service, Virus Scan Plus. more>>
40M Credit Cards Hacked
Breach at third party payment processor affects 22 million Visa cards and 14 million MasterCards. more>>
Teens Charged Over MySpace Blackmail
Two US teenagers have been charged with attempted extortion and illegal computer access. more>>
TorrentSpy Suit Accuses MPAA of Hacking
The Motion Picture Association of America (MPAA) has denied that it paid a hacker to steal information from TorrentSpy. more>>
Microsoft Issues Tool to Help Developers Cope with Vista Security
Microsoft issues a Window Vista tool to developers that will help them make sure their software does not clash with security features built into the OS. more>>
FIU Student Records Compromised By Hacker
Thousands of students at Florida International University have received notices in the mail warning that their personal records might have been compromised because of a computer hacker. more>>
Kiwis Jail First Internet Fraudster
A New Zealand man has been jailed for nearly three years after he was found guilty of hacking the accounts of internet bank and auction site users. more>>
Bogus Microsoft Security Alert Hides Keylogger Trojan
Spammers have launched a campaign of bogus emails claiming to be security alerts from Microsoft. more>>
