Columbia University has notified 3,000 faculty members that their names, addresses, social security numbers, and bank account numbers were available on the internet for two years.

Genuine news sites publish information on events – these sites, say the Chinese authorities, promised not to publish information for a fee.

A software bug can often lead to a vulnerability that can be exploited with sophisticated exploit code. Or sometimes you can just instal a free add-on that lets you do the same thing with no effort.

In a joint exercise between between multiple law enforcement agencies, 36 websites associated with an e-commerce platform known as an automated vending cart (AVC) used to sell stolen credit cards were taken down on Wednesday.

A researcher has uncovered a backdoor in RuggedCom software used to control traffic and railroad systems that could enable a remote attacker to take control of the systems.

A hacker has posted source code for VMware’s ESX virtual machine on the internet, the company has confirmed.

Christopher Graham, the UK Information Commissioner, talks about his role as an information regulator and facilitator at Infosecurity Europe in London

A disturbing one in five Mac computers are infected by some form of malware, according to research by IT security firm Sophos.

The three companies represented on the keynote panel (G4S Secure Solutions, Steria UK, and Skipton Building Society) are very different; and their CISOs have very different views on the functioning of risk management within infosec.

The US Department of Health and Human Services, the Health Information Trust Alliance (HITRUST), and 14 healthcare organizations have set up the first Cybersecurity Incident Response and Coordination Center for the healthcare industry