More Data Security News

N.J. mayor arrested on hacking, conspiracy charges

The mayor of West New York, New Jersey, was arrested together with his son on Thursday, for allegedly hacking into a website that criticized him and his administration.

Banking malware spies on victims by hijacking webcams, microphones, researchers say

A new variant of SpyEye malware allows cybercriminals to monitor potential bank fraud victims by hijacking their webcams and microphones, according to security researchers from antivirus vendor Kaspersky Lab.

Outsourcing Allows Utility to Refocus IT

Consumers Energy has hired an outsourcer to take over some of its IT operations. The utility hopes the move will allow its own data center workers to focus on projects that directly impact the bottom line.

UNC Charlotte: 350,000 SSNs exposed in decade-long breach

Two issues exposed financial data and Social Security numbers for 350,000 people, although it is thought the information has not been abused, the University of North Carolina at Charlotte said.

Microsoft boots Chinese firm for leaking Windows exploit

Microsoft identified a Chinese security partner as the source of a leak last March in its highly restricted vulnerability information-sharing program.

One in 10 secondhand hard drives in U.K. contain personal data

Britain's Information Commissioner's Office has discovered that more than one in every 10 secondhand hard drives contains recoverable personal information of the original owner.

StubHub scalps fraudsters

Whenever a list of log-on credentials is dumped onto the Web, retailers get hit with waves of automated attacks. Here's how ticket marketplace StubHub fights the threat. Insider (registration required)

Nissan, Under Armor report breaches of employee information

Nissan Motor Co. and apparel maker Under Armor have disclosed recent data breaches involving the potential compromise of employee information.

Most IT, security pros see Anonymous as serious threat

The majority of IT and security professionals believe that Anonymous and hacktivists are among the groups that are most likely to attack their organizations during the next six months, according to the results of a survey sponsored by security vendor Bit9.

Workers did not exceed authorization when data stolen, says appeals court

In a somewhat startling decision, the U.S. Court of Appeals for the Ninth Circuit last week ruled that several employees at an executive recruitment firm did not exceed their authorized access to their company's database when they logged into the system and stole confidential data from it.

Mind the Byte seeks secure clouds to transmit research

Pharmaceutical and chemical research firm Mind the Byte is using vCider, which aims to take the sting out of managing and securing virtual private clouds across different infrastructure providers. Insider (registration required)

Weak passwords still the downfall of enterprise security

A recent data breach that exposed the Social Security numbers of more than 255,000 people in Utah has once again highlighted the longstanding but often underestimated risks posed to organizations by weak and default passwords.

Sophos takes down partner portal after signs of hacking

Security firm Sophos has taken its partner portal offline and will reset every user's password after it found signs of a potential security breach on the server hosting it.

UK hacker accessed accounts for 20 months before bust

The takedown of Edward Pearson is said to be part of a larger crackdown on cybercrime in the UK.

Report: PHI security is MIA

According to "Breach Report 2011: Protected Health Information" by the IT security firm Redspin, 19 million patient health records were breached last year, a 97-percent increase from 2010.

Mark Hurd spells out Oracle analytics vision

Oracle rolled out a series of announcements aimed at portraying itself as a dominant player in business analytics on Wednesday, as well as one relevant to customers of rival SAP.

Amid breach fallout, Global Payments struggles with public message

The breached credit card processor assured investors that the damage has been contained and its security procedures worked. But for nervous card holders with additional questions, a basic website statement will have to do.

The PCI effect -- for better or worse -- following fresh breach of MasterCard, VISA

As many as 10 million users of VISA and MasterCard may have had their card numbers compromised in what sources in the financial sector are calling a "massive" breach of a U.S.-based credit card processor.

ESingles must face reality of LulzSec Reborn's MilitarySingles.com hack, experts say

ESingles has been relentlessly mocked, both by LulzSec Reborn and others who have compared the stolen data with what's on the site.

Operation Global Blackout: Real danger or irrelevant?

Anonymous announced March 31 as the date of the attack, along with the method they intend to use -- disabling the Domain Name Service through DDoS attacks.