Eskenzi PR ad banner Eskenzi PR ad banner

Editor's News

The UK computer emergency readiness team (CERT) is expected to be operational by January 2014 following the success of the Fusion cell data sharing concept. Although it was recently reported that the team’s announcement had been delayed until next year, Trend Micro president for UK and Ireland Steve Jones told IT Security Guru that it was his understanding that the UK CERT would be up and running in three months. He said: “A plan like this is...

Read more

After the revelations that the NSA has infiltrated traffic into Google and Yahoo’s data centres, German journalists have been advised to stop using their services. According to Reuters, the German Federation of Journalists trade union has recommended journalists avoid the use of search engines and email services from Google and Yahoo for their research and digital communication until further notice. The union said in a statement that “searches made by journalists are just as confidential as...

Read more

Yahoo has launched its first bug bounty program after what it called an “extremely positive” response from the security community. The company was criticised after it “rewarded” a vulnerability disclosure of a cross-site scripting flaw with a $12.50 voucher for a T-shirt. After reviewing its policies, Yahoo security director Ramses Martinez said that a bug bounty program would be rolled out by the en d of October and true to their word, the policy was announced yesterday. Martinez said that it...

Read more

A new certification to align skills and knowledge within healthcare has been launched by (ISC)². The healthcare security and privacy certification has been established as a global standard of competency for healthcare information security and privacy practitioners. According to (ISC)², it is designed to provide healthcare employers and those in the industry with validation that a healthcare security and privacy practitioner has the core level of knowledge and expertise required by the industry to address...

Read more

Microsoft has expanded its bug bounty programs to allow more people to submit flaws and has announced it is willing to pay $100,000 for new mitigation bypass techniques. In a statement, Katie Moussouris, senior security strategist at Microsoft Security Response Center, said that it is expanding the pool of talent who can participate and submit novel mitigation bypass techniques and defensive ideas, to include responders and forensic experts who find active attacks in the wild. “Today’s...

Read more

Microsoft has released an advisory regarding an issue that affects customers using Microsoft Windows Vista, Windows Server 2008, Microsoft Office 2003 through 2010, and all supported versions of Lync. The company said that it was aware of targeted attacks “largely in the Middle East and South Asia” against older software and the exploit requires user interaction as the attack is disguised as an email requesting potential targets to open a specially crafted Word attachment. “If the attachment is...

Read more

A new movement to encourage sharing of information among trusted users has been launched and is seeking new partners. Founder Wolfgang Kandek, CTO of Qualys, said that the campaign has stemmed from experiences of security departments typically being policy driven and beholden to following extensive guidelines and not being able to measure programs in a way that is intelligible to their non-technical colleagues. He said: “We are good at reaching out to people about who...

Read more

A large stash of data was hacked recently, exposing the personal and financial information on more than 850,000 Fortune 500 CEOs, lawmakers and A-list celebrities. Reported by Brian Krebs to have been found on the same servers as the Adobe source code, the file “CorporateCarOnline” the plain text archive apparently contained 850,000 credit card numbers, expiry dates and associated names and addresses, with more than one-quarter (241,000) including  high or no-limit American Express accounts. Those names included basketball star LeBron...

Read more

Banks in the United States are to face a cyber security test that will be conducted by the New York State Department of Financial Services. According to the Wall Street Journal, around 200 banks will be required to participate in a live webcast where they will answer questions about their cyber security policies and processes on 12th December. All of the banks will be asked questions simultaneously and later will be able to see how they stack...

Read more

Microsoft will release eight bulletins next week, including three critical-rated patches for vulnerabilities in Internet Explorer and Microsoft Windows. Tyler Reguly, technical manager of IT security research and development at Tripwire, said: “It's a pretty typical patch Tuesday, Internet Explorer, Windows, and Office patches. This month shows that new Microsoft software isn't immune to flaws -- Office 2013, IE 11, and Windows 8.1 will all receive patches on Tuesday.” Wolfgang Kandek, CTO of Qualys, said...

Read more
Page 285 of 294 1 284 285 286 294