Stories by Karen Haslam

FBI highlights iMessage encryption issues, Department of Defense isn't sure where its mobiles are

By Karen Haslam | 08 April, 2013 18:28

We all know that iMessage is encrypted, but US law enforcers have only just realised they can't intercept it. And in other news, the Department of Defense has detected weaknesses in the US army's mobile strategy.

Java and Flash vulnerabilities mean Macs are no longer safe from security threats

By Karen Haslam | 07 March, 2013 14:29

Recently Apple has taken to blocking Java and Flash via Xprotect, this is not surprising given the alarming number of vulnerabilities discovered so far this year

Is the Chinese Government exploiting a hole in Office for Mac?

By Karen Haslam | 15 February, 2013 19:37

Phishing emails have been sent to the Uyghur community that include Microsoft Word documents, which once open, activate a Mac OS X backdoor.

Apple allows banned Java back on the Mac after update

By Karen Haslam | 04 February, 2013 19:20

Enterprises who rely on Java are breathing a sign of relief today as Apple has issued an update to Java, returning it to the Mac.

New Mac malware stealing passwords

By Karen Haslam | 10 September, 2012 13:11

Another piece of Mac malware has been identified by antivirus software maker Dr Web.

Apple stops password resets after iCloud hack

By Karen Haslam | 08 August, 2012 13:04 | 1 Comment

Apple has told its support staff not to process password change requests that come in via the phones. An Apple customer service representative said that Apple was halting all AppleID password resets by phone.

Apple admits fault in iCloud hack situation

By Karen Haslam | 07 August, 2012 14:15

Apple has admitted that its “internal policies were not followed completely” in a case that enabled hackers to access journalist Mat Honan’s iCloud account.

Apple concerned about mobile payment security

By Karen Haslam | 09 July, 2012 19:33 | 1 Comment

Google already offers Google Wallet payments via Android phones and Microsoft is set to launch its own digital-wallet service, but Apple isn't yet willing to enable credit card payments via the iPhone due to concerns about security.

Google to push out patch to address Galaxy Nexus sales ban

By Karen Haslam | 06 July, 2012 00:03

Google is teaming up with Samsung to push out a patch that should help the companies avoid the Galaxy Nexus sales ban.

CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Dynamic Threat Intelligence

The FireEye Dynamic Threat Intelligence cloud interconnects FireEye appliances deployed within customer networks, technology partner networks, and service providers around the world.

more »

Submit your own security event

Submit your training courses

Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.

Read More
more »