Editor's News

Monitoring is a key part of a cyber security approach, but look at what could be achieved with protective monitoring. Speaking at the Government IT Security and risk management conference in London, Pankaj Mistry, head of IT Security and IT security office at the Department of Work and Pensions, said that while monitoring is one of the “ten steps to cyber security”, what should be done is proactive monitoring. “Monitoring is about looking at network...

Former White House Chief Information Officer (CIO) Theresa Payton has been named as the keynote speaker for the Irish Governance, Risk & Compliance (GRC) Conference.   At the ISACA Ireland annual conference “GRC 2.0 - Breaking Down the Silos”, which takes place on the 3rd of October at Dublin's Croke Park, Payton will shine the spotlight on the challenges CIOs and the wider IT Governance fraternity face in meeting the expectation of supporting their organisation’s goals....

The European Banking Federation (EBF) and Europol's European Cybercrime Centre (EC3) have signed a Memorandum of Understanding (MoU) to increase cooperation in the European Union between law enforcement and the financial sector.   This MoU will permit the exchange of expertise, statistics, along with other strategic information between both parties. Furthermore, facilitating the exchange of data on threats to enable financial institutions to protect themselves, whilst the immediate reporting of new malware and evolving means of payment...

Texan retailer Sheplers, an independent retailer of western and cowboy garments, has admitted that its payment systems have been breached and it had suffered a loss of customer information.   According to the company, impacted information included names, credit and debit card account numbers and expiration dates and it was payment systems were affected between June 11th and September 4th. It is not believed that its web store or PIN numbers were affected.   According...

IT security professionals are being encouraged to give up time to help with understaffed charities.   The concept of “GiveADay” is set to be launched next month at the IP Expo conference in London and will encourage professionals to commit to give a day to help charities in all aspects of IT, security and data privacy.   Following the launch, professionals can register to offer their skills and experience, called contributions, to a charity. GiveADay...

While more than 84 per cent of employees rate privacy as a top three concern, there is a clear lack of trust in the ability of their employer to manage their mobile security and privacy.   According to a survey of over 5,000 employees from 19 countries worldwide by AdaptiveMobile, just 30 per cent of respondents preferred their employer to manage their corporate mobility service, but trust levels in their mobile operator were higher with...

UK risk management and security firm Protection Group International has launched the world’s most sophisticated cyber training facility open to the private sector.   The academy will offer cutting-edge cyber security courses in the group’s immersive environment, which is designed to equip both businesses and public sector institutions with the knowledge and skills to identify and offset cyber threats to their networks, data and other assets.   In addition to training for cyber security specialists,...

The reign of credit card and identity fraud for profit will come to an end in a number of years as the cyber crime scope changes.   Speaking to IT Security Guru at the Dell Security Summit in Brussels, Tim Brown, executive director of security at Dell Software, said that he felt that espionage would increase as we see an attacker who goes after information systems, and there will be more attacks on data using...

Malware that is specifically tailored to target and take control of web servers to enslave them into a botnet has been detected.   Speaking to IT Security Guru, Ryan Barnett, lead security researcher at Trustwave, said that while the company sees new files all of the time, what was distinctive about this was that the code was markedly different, and it aimed specifically at servers.   “They are the ‘super soldiers’ of a botnet as...

Home Depot has admitted that 56 million unique payment cards were affected by the cyber attack.   In a statement, Home Depot confirmed that it has eradicated the malware and completed a payment security project to provide enhanced encryption of payment data on its Point of Sale terminals from next year.   In a two week investigation, it said that its own IT security team has been working around the clock with leading IT security...