ISACA, the not-for profit international association of 86 000 IT security, audit and governance professionals, has welcomed news that the UK government has beefed up the penalties the Information Commissioner’s Office (ICO) can impose on errant compani…
Microsoft confirms Thursday patch for Internet Explorer exploit
Confirming what many internet industry watchers thought would happen this week, Microsoft says it will release an out-of-band patch later today, for the Internet Explorer security vulnerability used to attack Google and around 30 other companies affect…
Further evidence links Aurora attack to China
Further evidence has emerged suggesting that the Operation Aurora attack exploiting a zero-day flaw in Internet Explorer came from within the People’s Republic of China.
Internet Explorer zero-day vulnerability spreads to Microsoft Office as fixes surface
Microsoft has scheduled an out-of-band patch for the zero-day vulnerability in Internet Explorer, just as other fixes for the problem began to surface. The company has also admitted for the first time that the attack could be used to compromise a compu…
Sourcefire launches faster IPS configuration
Sourcefire has increased the speed of its intrusion prevention system, or IPS, announcing support for a 20 Gbit/sec clustered model.
$100 000 cracking prize goes unclaimed at CES
Despite 45 teams trying for up to two hours at the recent Consumer Electronics Show in Las Vegas, it seems that the latest USB drive-equipped Swiss Army Knife – which sports an encrypted (Elliptical Curve and AES) data storage feature – was uncracked.
France joins Germany in public slamming of Internet Explorer
Following on from Germany’s internet security agency publicly slamming Internet Explorer over the weekend and advising internet users to switch to another browser, France’s CERTA agency has made a similar pronouncement.
PDF attacks target defense community
Evidence of further targeted attacks are surfacing, just days after Google and other technology companies announced that they had been the victims of a concerted campaign. This time, the attacks targeted PDFs of those in the US defense community, and o…
Internet Explorer zero-day code goes public
The Internet Explorer exploit code used in the Operation Aurora attack against Google and other technology companies has made it into the public domain, and has been incorporated into the Metasploit penetration testing tool, it was revealed this weekend.
Internal security risks webinar this Wednesday
The internal security risk issue is fast becoming a boardroom topic in most organizations, especially now that relatively rare road warriors have given way to a truly mobile workforce, able to work from almost anywhere, in most businesses.