Security

Security Topic Center

Get the latest news and in-depth analysis about IT security, including information about viruses and other malware, security patches, data protection and more

Facebook malware scam takes hold

A "worrying number" of Facebook users are sharing a link to a malware-laden fake CNN news page reporting the U.S. has attacked Iran and Saudi Arabia, security firm Sophos said Friday.
Read more...

Hungarian hacker gets 30 months for extortion plot on Marriott

A Hungarian hacker who attempted to extort money from Marriott International Inc. by stealing confidential data from its computers and threatening to expose it was sentenced to 30 months in prison.

Microsoft wraps up ads aimed at Google with IE9 pitch

Microsoft on Friday wrapped up a three-day campaign against rival Google by claiming its newest browser, Internet Explorer 9, is superior in stopping users from being tracked by online advertisers.

Anonymous grabs email from firm that defended Marine in Haditha case

In what's turning out to be quite a busy Friday for the hacking collective, Anonymous today said it has broken into the website of a law firm that represented a U.S. Marine accused of killing civilians in Haditha, Iraq.

German gov't endorses Chrome as most secure browser

Germany's cyber security agency today recommended that Windows 7 users run Google's Chrome browser, citing the application's sandbox and auto-update features.

Who really was behind the SOPA protests?

Some critics have blamed Silicon Valley tech firms for the massive online protests last month against two controversial copyright bills. Other groups have trumpeted the grassroots nature of the protests.

PHP 5.3.10 fixes critical remote code execution vulnerability

The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers running an older version of the Web development platform.

Google won't delay new privacy policy despite EU concerns

Google does not plan to delay its new privacy policy despite calls from Europe's data protection watchdog.

Google reveals Android malware 'Bouncer,' scans all apps

Google yesterday unveiled an automated system that scans Android apps for potential malware or unauthorized behavior, a move critics have long called the company to make.

Lawsuit raises questions about email privacy at work

A recent lawsuit filed against the U.S. Food and Drug Administration is drawing attention to the question of whether employees have a reasonable expectation of privacy when using personal email accounts on workplace computers.

Send Faxes From the Web: Three Services Tested

Though you might be tempted to ditch your office fax machine, you probably have to send out at least a few faxes every year. Windows lets you fax from the OS itself; but it requires you to use a landline that your small business may not want tied up, and it lacks security and mobile features that your business may need.

SaaS, APTs and Asymmetric Risk Take Spotlight at Security Threats 2012

What's your stance on SaaS? Is your perimeter as secure as you think? How can the insurance calculus on asymmetric risk illuminate your company's security exposure? CIO.com's Bernard Golden recaps the provocative discussions entertained at the Security Threat 2012 conference.

Security Manager's Journal: Should physical security belong to us?

Facilities departments often take charge of physical security, but they usually don't understand the systems behind it.

Ira Winkler: Is Google evil? The jury is out

Google's changes to its privacy policy should have been expected. It's what any corporation intent on maximizing value would do. But does that make it right?

Sanitize your hard drives with Drive eRazer Ultra

Drive eRazer Ultra can wipe your hard drives in a variety of ways to make sure that any data that resided on it is completely and unalterably gone.

Best Security Suites: PC Bodyguards

Have security suites reached the point where they all work?

Many pcAnywhere systems still sitting ducks

Symantec warns that its product should not be connected directly to the Internet, yet an estimated 140,000 computers are configured to allow direct external access

Even the best patching programs probably miss this

Kenneth Van Wyk warns that vulnerabilities in programming frameworks are slipping through the cracks. (Insider; registration required)

The real reasons why SOPA and PIPA are real bad

A reader letter makes Gibbs sum up why SOPA and PIPA are such bad ideas.

Out with SOPA, in with cloud

Count us among the critics of SOPA and PIPA, the two ill-conceived bills that were intended to protect American firms against copyright infringement by foreign websites.