Latest Product Reviews

Yubico

YubiKey is a simple, inexpensive authentication token that works with open source software to provide strong authentication to networks and applications over the internet.
 

Axway MailGate 3.7

March 01, 2010  |  Axway MailGate 3.7
A hardware appliance which offers inbound and outbound protection for downstream SMTP architectures.
 

Latest News

New Hampshire legislature rejects biometrics bill

Angela Moscaritolo March 19, 2010

The New Hampshire House of Representatives on Wednesday rejected a controversial bill that would have banned the use of biometrics data in identification cards.
 

Faux Facebook emails use password reset ploy

Dan Kaplan March 18, 2010

Scammers are trying to infect the computers of Facebook users by claiming their password has been reset and that a replacement credential is contained in an attachment.
 

Revised draft of Cybersecurity Act introduced in Senate

Angela Moscaritolo March 18, 2010

Senate lawmakers on Wednesday introduced a revised draft of the Cybersecurity Act, striking out a controversial clause that would have given the president power to shut down the internet in the event of a digital emergency.
 

Security firm finds bug in Microsoft virtual program

Angela Moscaritolo March 17, 2010

Researchers say Microsoft's virtualization software suffers from a zero-day vulnerability, but the Redmond, Wash. software giant disagrees.
 

Gartner: Virtualization security will take time

Dan Kaplan March 16, 2010

In five years, virtualized systems likely will be more secure than their physical counterparts, but until then, it will be rough sledding for organizations transitioning to the new technology, according to a new report from Gartner.
 

Latest Opinions

Naked endpoints on your net, and what to do about them

Mark Townsend, director of solutions management, Enterasys March 15, 2010

The nonprofit Trusted Computing Group is offering a new standard for managing clientless devices, a specification that can help organizations avoid gaps in network security.
 

Let's get back to reality

Lysa Myers, director of research, West Coast Labs March 10, 2010

Reality sets in not longer after taking an information security job, as step two of this author's "Five Stages of Employment" series continues.
 

Are you sure you're prepared for a data breach?

Steve Collins, security sector lead, Text 100 Public Relations March 05, 2010

A public relations expert offers a blueprint for preparing for and responding to a data breach.
 

Integrating access control tools is the primary key to a seamless system

Van Page, founder & president, CapSure February 26, 2010

In today's world of technology, the most efficient visitor management and access control systems contain an element of integration between electronic access control tools and a visitor management system.
 

The enterprise information protection paradigm

Daniel Geer Jr., chief scientist emeritus, Verdasys February 23, 2010

A paradigm shift is already here: Data is now king. And, Dan Geer offers an organizing precept, with an unblinking eye focused on information, to ensure networks remain safe.
 

2010 SC Awards



























The winners of the 2010 SC Awards U.S. were announced in San Francisco. Click here to see the results.

The SC Podcast

ASBPE Awards 2009

SC Magazine wins 7 ASBPE Awards

We received two national ASPBE Golds, two Northeast Region Golds and three Silvers.
 

SC Magazine
2010 edit calendar

SC Magazine's 2010 editorial calendar is now available.

Click here to download the PDF.

Perspectives: 20 years of IT security

For SC Magazine's 20th anniversary, we rounded up a number of security veterans to get their perspectives on the past 20 years of security. Click here to view this special anthology.

 Join us on Facebook!
 

 Follow us on Twitter!

Call for Papers

A call for papers is now open for the third annual SC World Congress in New York and the inaugural SC Congress Canada. Visit the home page of the SC World Congress today!

SC Magazine Poll

SC News Bytes

Assets frozen for accused pump-and-dumpers

A U.S. District Court judge on Monday ordered the assets frozen for a Russian man, his company BroCo Investments and his co-conspirators. The defendants are accused of using stolen credentials to access online brokerage accounts to boost the share prices of thinly traded stocks, according to a U.S. Securities and Exchange Commission complaint. The 36-year-old ringleader, Valery Maltsev, and his cohorts purchased unauthorized stock orders on behalf of the victims, a move that inflated the share prices. Then, the defendants, who personally owned the same stocks, sold their positions at "artificially inflated prices." The scam resulted in $255,532 in ill-gotten gains and was a violation of federal laws, according to the SEC. — DK
 

Microsoft adds workaround for Internet Explorer bug

Microsoft is now offering an automated workaround to mitigate the Internet Explorer (IE) vulnerability it announced last week. The "Fix It" solution mitigates the bug "by disabling the peer factory class through the modification of a registry key," according to a Friday blog post. The flaw currently is being exploited in targeted attacks, the company said. The issue does not affect Microsoft's newest browser, IE 8. Even with the new workaround, Microsoft may release an out-of-band patch because its next scheduled security update is not due until April 13. — DK
 
more »

From the Blogs


The Data Breach Blog

Arkansas National Guard external hard drive goes missing

An external hard drive containing the personal information about tens of thousands of Arkansas National Guard soldiers recently went missing.
 

The News Team Blog

Pennsylvania CISO's dismissal not in good judgment

The information security industry took a step back this week with news that the CISO of the state of Pennsylvania, Bob Maley, lost his job, likely over remarks he made during a panel discussion last week at the RSA Conference.
 

IT Security Entrepreneurs' Forum

The Security Innovation Network (SINET) invites you to join us at Stanford University on March 16 and 17 for the Fourth Annual IT Security Entrepreneurs' Forum.


The IT Security Entrepreneurs' Forum (ITSEF) levels the playing field for early stage, emerging companies and raises the awareness of next-generation solutions into the federal government, industry and system integration markets.

 Subscribe to the RSS for this page  [view all our RSS feeds here]
Popular Topics
Analyst Reports & Industry Surveys Apple Threats Botnets Breaches & Exposures Browser Flaws Cybercrime Data Leakage Prevention Database Security Email Security Endpoint Protection Government Hackers Hacking Identity Theft Lawbreakers & Cybercrime Malware Patch Management Patch Tuesday Phishing Retail RSA Conference 2010 Spam Virtualization Vulnerabilities & Flaws Vulnerability Management