Mobile Version Subscribe Contact Us About Us Advertising Editorial SC UK SC Aus/NZ

RSS | Login | Register

IT Security Training

Black Hat topics include hacking parking meters, social networks

Angela Moscaritolo June 19, 2009

Researchers are set to discuss a wide range of topics at the annual Black Hat conference.

Security expert wants feds to recruit volunteer pen testers

Dan Kaplan June 18, 2009

One respected security researcher wants to legalize the hacking of federal government and military websites -- and he wants everyone to hear him out.

List of U.S. nuclear facilities inadvertently posted on website

Chuck Miller June 03, 2009

In an inadvertent security breach, a document that detailed information on nuclear sites was posted on the Government Printing Office's website.

GAO report finds security lagging at federal agencies

Dan Kaplan May 21, 2009

Federal agencies continue to be lax in their implementation of information security programs, according to a new report from the Government Accountability Office.

RSA: Ramifications of converging physical and IT security

Angela Moscaritolo April 23, 2009

Companies should consider merging physical and information security into a converged program -- it might be challenging but it will be worth it.

RSA: Cybercriminals keeping up with banking safeguards

Dan Kaplan April 22, 2009

Customer education and a holistic security strategy are the best approaches to fight fraud within the financial services community, a panel of experts said Wednesday at the RSA Conference in San Francisco.

Children's online safety initiative announced

Angela Moscaritolo April 20, 2009

A new program is encouraging information security experts to educate school children about how to protect themselves online.

Despite downturn, IT security spending to increase

Angela Moscaritolo April 13, 2009

Management increasingly is recognizing security as a top business priority, which is resulting in higher budgets for some organizations despite the economic slowdown, according to a new survey.

Survey finds that SMBs often lack basic security

Angela Moscaritolo April 10, 2009

Despite being aware of the importance of security, small-to-medium-size businesses (SMBs) generally are not protecting their networks, according to a survey released Thursday by Symantec.

OWASP Security Spending Benchmarks Report published

Chuck Miller March 20, 2009

Web application security spending is expected to either stay flat or increase, according to the first quarterly Security Spending Benchmarks Report published Thursday by the Open Web Application Security Project.

Web apps account for 80 percent of internet vulnerabilities

Angela Moscaritolo March 18, 2009

Vulnerabilities in web applications made up 80 percent of all web-related flaws in the second half of 2008 and rose in prevalence by about eight percent from the first half of the year.

InfoSec: Cybersecurity expert says preparation key to business survival

Greg Masters March 13, 2009

The world is more interconnected than ever before, so security pros have opportunities to make a difference in their enterprises, a former White House cybersecurity adviser told a group of CSOs.

Senate report calls for new U.S. cybersecurity effort

Chuck Miller February 20, 2009

A new report released this week by the U.S. Senate's Homeland Security and Governmental Affairs Committee calls for a concerted national effort to overcome cybersecurity threats to the United States.

Data Privacy Day celebrates the safeguarding of information

Angela Moscaritolo January 28, 2009

Companies around the globe are recognizing the second annual Data Privacy Day on Wednesday with seminars and other events aimed at educating users and generating discussion around the topic.

NIST releases draft guidelines for data protection

Angela Moscaritolo January 15, 2009

NIST this month released draft recommendations that federal agencies -- and their contractors -- should follow to protect the confidentially of personally identifiable information.

Public and private sectors join in cyberattack simulation

Angela Moscaritolo December 19, 2008

A simulation this week demonstrated the need for better collaboration among public and private security groups.

Amero will not face new trial in teacher porn case

Dan Kaplan November 24, 2008

The former Connecticut substitute teacher who was accused of exposing middle-school students to internet pornography has avoided prison time and a new trial.

French President Sarkozy's bank account hacked

Angela Moscaritolo October 20, 2008

Security professionals weigh in on what may have caused the most recent high-profile personal account breach -- this one involving French President Nicolas Sarkozy.

Study: Hotel network security lacking

Angela Moscaritolo October 06, 2008

Hotel guests across the country could be connecting their laptops to an insecure connection, a new study concludes.

New certification to stress software lifecycle safety

Chuck Miller September 25, 2008

The movement to create secure software received a boost with the launch of a new certification from (ISC)2, called the Certified Secure Software Lifecycle Professional, designed to validate secure software development practices.

Higher learning

Dan Kaplan June 18, 2008

Advanced degrees in information security are popping up with increasing frequency, but are they worth the time? Cynthia Phillips at Brandeis says yes, reports Dan Kaplan.

2008 Salary and career survey: More than money

Illena Armstrong June 18, 2008

Information security pros neither face wage boons nor badlands this year, reports Illena Armstrong.

Floods, tornadoes may encourage internet trickery

Dan Kaplan June 13, 2008

The deadly twisters that ripped through Kansas this week and the historic floods sweeping across the Upper Midwest will soon give rise to donation scams and malicious attacks, the SANS Storm Center warned on Friday.

Bank of New York Mellon loses data on 4.5 million

Dan Kaplan May 22, 2008

Three months after an unencrypted backup tape goes missing, 4.5 million Bank of New York Mellon customers are notified their identities may be at risk.

NSA's website outage due to lack of topological "diversity"'

Jim Carr May 16, 2008

An easy-to-fix -- but often overlooked -- problem most likely took the National Security Agency's website and its mail services down for six or seven hours on Thursday.

Ten universities join information assurance program

Dan Kaplan May 15, 2008

The National Security Agency (NSA) on Thursday announced that 10 new colleges have been designated National Centers of Academic Excellence in information assurance.

From Interop: Be mindful of vendors' motives

Dan Kaplan April 30, 2008

IT security vendors' sole purpose is to generate revenue -- not offer complete security -- and they will only create solutions to stop dangerous threats when they are incentivized to do so, the principal security strategist for IBM Internet Security Systems said Wednesday at Interop in Las Vegas.

Another one bites the dust

Danielle Zeedick, Norwich University April 15, 2008

Mapping the tragedy of the Hannaford breach in a post-mortem sense should be just as important to the grocery chain as the upgrade of the system.

Patching a sick health care system

Günter Ollmann, chief security strategist, IBM Internet Security Systems April 15, 2008

As older generations of non-networked health care machines get replaced with 'smarter' network-integrated versions, the proliferation of embedded operating systems will grow.

Real-world approaches to a complex problem

Jackie Gilbert, founder and VP of marketing, SailPoint April 10, 2008

Before embarking on a role management project, take time to consider your business objectives and project scope, says Jackie Gilbert, founder and VP of marketing, SailPoint.