Monthly Archives: November 2012

Security report: Enterprises place reckless trust in third-party software suppliers

Software security testing company Veracode’s just-released Supplemental to its 2012 State of Software Security Report focuses on the software supply chain. It reveals that organizations are confronting externally developed application security risks more than ever – yet most enterprises place … Continue reading

Posted in IT Compliance, News | Leave a comment

NASA scrambles to encrypt laptops after major breach

NASA is scrambling to implement full disk encryption on agency laptops after one containing unencrypted personal information   on a “large” number of people was recently stolen. Agency employees were told of the October 31 theft of the laptop and NASA … Continue reading

Posted in IT Compliance, Security Awareness | Leave a comment

Hold it! Don’t back up to a cloud until you’ve eyed up these figures

Online data vaults are everywhere. On the small storage side, we have options such as Google Drive, Dropbox, and Teamdrive. My Synology NAS, the upcoming 2012 Microsoft Server Suite and any number of virtual appliances can all back up bulk … Continue reading

Posted in IT Compliance | Leave a comment

Ransomware a growing menace, says Symantec

Cybercriminals gangs are creating a surge in ransomware, says a new report from Symantec. Ransomware is a type of malware best described as an online extortion racket. Malware locks or disables your PC in some way and then demands payment … Continue reading

Posted in News, Security Awareness | Leave a comment

E-mailed malware disguised as group coupon offers on the rise

Be sure to double check that Groupon you received in your e-mail — spammers are using the popularity of e-mailed advertisements for group discount deals to send more malware. The rise of malware through fake e-mail advertisements and notifications are … Continue reading

Posted in News, Security Awareness | Leave a comment

Why you shouldn’t watch Obama throw punches on Twitter

If you get a direct message on Twitter telling you to click a link to watch a video of President Barack Obama punching a guy, don’t do it. Spammers are using the idea of the president retaliating against someone for … Continue reading

Posted in News, Security Awareness | Leave a comment

Adobe Reader 0-day exploit surfaces on underground bazaars

Miscreants have reportedly discovered a zero-day vulnerability in latest version of Adobe Reader. Exploits based on the vulnerability, which circumvents sandbox protection technology incorporated into Adobe X and Adobe XI, are on sale in underground forums. Pricing starts at a … Continue reading

Posted in IT Compliance, News, Security Awareness | Leave a comment

Google follows Apple’s lead with Android app security screening

Google’s new app scanner in Android 4.2 Jelly Bean moves the platform closer to Apple’s model of vetting software before it   is made available to mobile device users, a security expert says. Google isn’t expected to copy Apple’s model of … Continue reading

Posted in News, Security Awareness | Leave a comment

PayPal, Symantec hacked as Anonymous begins November 5 hacking spree

The press arm for Anonymous has announced that it has begun its hacking spree for the 5th of November – Guy Fawkes Day. Claims are circulating that hackers – some affilaited with Anonymous, and some not – have dumped user … Continue reading

Posted in News | Leave a comment

Hacker leaks VMware ESX kernel source code online

Hackers associated with the Anonymous collective have leaked the source code for the VMware ESX Server kernel on the Web. Dutch hacker, going by the name “Stun,” tweeted a link to a torrent file earlier today, which downloads at just … Continue reading

Posted in News | Leave a comment