Microsoft is spearheading its second global security initiative in a week by setting up a scheme to try to tackle multi-vendor security threats.

Companies that aren't in compliance with PCI DSS Section 6.6 risk fines and other losses that could reach into the millions of dollars.

The European Commission is said to be close to finalizing an agreement with the United States that would allow the FBI to see the credit card histories and internet browsing habits of European citizens.

Mongomery Ward, an old-line merchant now operating as an internet retailer, suffered a breach of some 51,000 customer credit card numbers, and failed to report it to customers.

VoIPshield Laboratories has alerted companies that market voice over IP systems of new security vulnerabilities.

A Chinese research team has discovered a zero-day vulnerability in Internet Explorer 6 that is being actively exploited to possibly steal credentials and hijack browser sessions.

A new law in Congress would require every U.S. citizen to have electronic health records by 2014. It would also set up privacy rules for those records, requiring information keepers to notify patients of security breaches.

Just a few months after Google and Microsoft announced they were launching online consumer health platforms, a nonprofit has unveiled a common framework to protect sensitive medical records.

Malicious spam has tripled in volume in a week, most of it caused by the Srizbi botnet.

A cross-site scripting vulnerability in Yahoo Mail could leave instant messenger users open to attack.