Latest Product Reviews

HyTrust

HyTrust sees an opportunity to address an inherent weakness in managing the virtual infrastructure.
 

Astaro Security Gateway 7.5

March 01, 2010  |  Astaro Security Gateway 7.5
A hardware appliance that provides many different security features rolled into one appliance.
 

Latest News

Apple issues Safari 4.0.5 to fix 16 vulnerabilities

Angela Moscaritolo March 12, 2010

Apple has pushed out the latest version of Safari -- its first update to the web browser since November -- to close 16 holes.
 

LifeLock settles with FTC over ID theft product claims

Dan Kaplan March 12, 2010

LifeLock will pay $11 million to the Federal Trade Commission (FTC) and $1 million to a group of 35 state attorneys general to settle charges that the Tempe, Ariz.-based company made false claims that its product could prevent identity theft.
 

Troyak shutdown signals short-lived win against Zeus

Angela Moscaritolo March 11, 2010

The takedown of a rogue internet service provider known as "AS Troyak," which was linked to the prolific Zeus botnet, caused a massive but brief drop in the number of active Zeus command-and-control servers this week before attackers reconnected their criminal operations.
 

Pennsylvania CISO out of a job following RSA Conference appearance

Dan Kaplan March 11, 2010

Bob Maley, the former CISO of Pennsylvania, may have been fired because of remarks he made about a recent breach affecting the state.
 

Twitter to vet links with goal of curbing phishing attacks

Dan Kaplan March 10, 2010

Twitter on Tuesday launched a new service designed to curb phishing links delivered in the microblogging site's direct messages and email notifications.
 

Latest Opinions

Let's get back to reality

Lysa Myers, director of research, West Coast Labs March 10, 2010

Reality sets in not longer after taking an information security job, as step two of this author's "Five Stages of Employment" series continues.
 

Are you sure you're prepared for a data breach?

Steve Collins, security sector lead, Text 100 Public Relations March 05, 2010

A public relations expert offers a blueprint for preparing for and responding to a data breach.
 

Integrating access control tools is the primary key to a seamless system

Van Page, founder & president, CapSure February 26, 2010

In today's world of technology, the most efficient visitor management and access control systems contain an element of integration between electronic access control tools and a visitor management system.
 

The enterprise information protection paradigm

Daniel Geer Jr., chief scientist emeritus, Verdasys February 23, 2010

A paradigm shift is already here: Data is now king. And, Dan Geer offers an organizing precept, with an unblinking eye focused on information, to ensure networks remain safe.
 

Six years later, CAN-SPAM Act leaves spam problem unresolved

Martin Lee, senior software engineer, Symantec Hosted Services February 16, 2010

In 2004 at the World Economic Forum, Bill Gates proclaimed: "Two years from now, spam will be solved." Six years later there is no indication that the spam problem will ever be solved. So what went wrong?
 

2010 SC Awards



























The winners of the 2010 SC Awards U.S. were announced in San Francisco. Click here to see the results.

The SC Podcast

ASBPE Awards 2009

SC Magazine wins 7 ASBPE Awards

We received two national ASPBE Golds, two Northeast Region Golds and three Silvers.
 

SC Magazine
2010 edit calendar

SC Magazine's 2010 editorial calendar is now available.

Click here to download the PDF.

Perspectives: 20 years of IT security

For SC Magazine's 20th anniversary, we rounded up a number of security veterans to get their perspectives on the past 20 years of security. Click here to view this special anthology.

 Join us on Facebook!
 

 Follow us on Twitter!

Call for Papers

A call for papers is now open for the third annual SC World Congress in New York and the inaugural SC Congress Canada. Visit the home page of the SC World Congress and find (under "Key Links" at the right) how to be a presenter or speaker at these two events. Click on the "Call for Papers" links to learn more.

SC Magazine Poll

SC News Bytes

TJX money launderer sentenced to four years

While hacker Albert Gonzalez awaits his sentencing date, scheduled for later this month, one of his co-conspirators in the TJX, BJ's Wholesale Club and Sports Authority hacks was sentenced Thursday in federal court in Boston to 46 months in prison and fined $75,000. Prosecutors said Humza Zaman, formerly a programmer at Barclays bank, laundered $600,000 to $800,000 in identity theft proceeds for Gonzalez. Zaman received a 10 percent cut for his work. — AM
 

TSA insider indicted on tampering charges

A former U.S. Transportation Security Administration (TSA) employee was indicted Wednesday for planting malicious code on a government server, which contained data about suspected terrorists that was used to screen airport workers, federal authorities said. Douglas James Duchak, 46, of Colorado Springs, Colo. was a data analyst at the TSA from 2004 to 2009. He carried out the scheme, which caused at least $5,000 in damages, after learning his employment would be terminated. If convicted, he faces up to 10 years in federal prison and a fine of up to $500,000. — AM
 
more »

From the Blogs


The Data Breach Blog

Arkansas National Guard external hard drive goes missing

An external hard drive containing the personal information about tens of thousands of Arkansas National Guard soldiers recently went missing.
 

The News Team Blog

Pennsylvania CISO's dismissal not in good judgment

The information security industry took a step back this week with news that the CISO of the state of Pennsylvania, Bob Maley, lost his job, likely over remarks he made during a panel discussion last week at the RSA Conference.
 

IT Security Entrepreneurs' Forum

The Security Innovation Network (SINET) invites you to join us at Stanford University on March 16 and 17 for the Fourth Annual IT Security Entrepreneurs' Forum.


The IT Security Entrepreneurs' Forum (ITSEF) levels the playing field for early stage, emerging companies and raises the awareness of next-generation solutions into the federal government, industry and system integration markets.

 Subscribe to the RSS for this page  [view all our RSS feeds here]
Popular Topics
Analyst Reports & Industry Surveys Botnets Breach Remediation Breaches & Exposures Browser Flaws Cloud Computing Compliance Cybercrime Data Breaches Data Leakage Prevention Database Security Government Hackers Hacking Identity Theft Lawbreakers & Cybercrime Malware Nation State Patch Management Patch Tuesday Phishing Retail RSA Conference 2010 Vulnerabilities & Flaws Vulnerability Management