Category Archives: IT Compliance

No joke, iPhone 5S Touch ID faces hack bounty

The iPhone 5S won’t hit the streets until tomorrow, but there’s already more than $16,000 in cash offered to the first person to hack its Touch ID fingerprint sensor. IsTouchIDhackedyet.com is the brainchild of Nick DePetrillo, an independent security researcher … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Wi-Fi routers: More security risks than ever

LAS VEGAS — More major brand-name Wi-Fi router vulnerabilities continue to be discovered, and continue to go unpatched, a security researcher has revealed at Defcon 21. Jake Holcomb, a security researcher at the Baltimore, Md.-based firm Independent Security Evaluators and … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Does encryption really shield you from government’s prying eyes?

If you’re thinking about encrypting email in light of revelations about U.S. government spying, you may be wasting your time. Recent leaks about surveillance efforts by the secretive National Security Agency have sparked a wide range of questions during the … Continue reading

Posted in IT Compliance, Security Awareness | Leave a comment

Passwords: You’re doing it wrong. Here’s how to make them uncrackable.

PC World – For years now I’ve harangued relatives about their shoddy password practices. Either they use easily hacked passwords or forget   the passwords they’ve created–sometimes both. If you won’t take it from me, beloved family, consider this Password Day … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Online note service Evernote latest firm to get hacked

Yet another company has fallen victim to a hack, with attackers breaking into systems at Evernote, maker of a Web-based note-taking application used by about 50 million people. The company said in a security notice that some user data had … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Nationwide Mutual hack affected ‘1.1 million Americans’

A Nationwide Mutual Insurance data breach that took place on October 3 apparently affected over a million Americans. The company reported to the North Carolina Attorney General that 1.1 million American customers may have been affected by the data breach, … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Security report: Enterprises place reckless trust in third-party software suppliers

Software security testing company Veracode’s just-released Supplemental to its 2012 State of Software Security Report focuses on the software supply chain. It reveals that organizations are confronting externally developed application security risks more than ever – yet most enterprises place … Continue reading

Posted in IT Compliance, News | Leave a comment

NASA scrambles to encrypt laptops after major breach

NASA is scrambling to implement full disk encryption on agency laptops after one containing unencrypted personal information   on a “large” number of people was recently stolen. Agency employees were told of the October 31 theft of the laptop and NASA … Continue reading

Posted in IT Compliance, Security Awareness | Leave a comment

Hold it! Don’t back up to a cloud until you’ve eyed up these figures

Online data vaults are everywhere. On the small storage side, we have options such as Google Drive, Dropbox, and Teamdrive. My Synology NAS, the upcoming 2012 Microsoft Server Suite and any number of virtual appliances can all back up bulk … Continue reading

Posted in IT Compliance | Leave a comment

Adobe Reader 0-day exploit surfaces on underground bazaars

Miscreants have reportedly discovered a zero-day vulnerability in latest version of Adobe Reader. Exploits based on the vulnerability, which circumvents sandbox protection technology incorporated into Adobe X and Adobe XI, are on sale in underground forums. Pricing starts at a … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment