Data Protection — News

Have You Changed Your Facebook Privacy Settings Lately

By Tony Bradley | 24 June, 2011 02:13

Is your social network secure? Do you even know where the account security and privacy settings are, or what the default settings are? A recent survey conducted by ESET illustrates the relative insecurity of social networks--which is alarming given the volume and sensitivity of information that is shared on them.

Anonymous, LulzSec bring bragging rights back to hacking, CTO says

By Tim Greene | 24 June, 2011 00:45

Hactivist groups such as Anonymous and LulzSec hearken back to earlier days when Web attacks were done for bragging rights, not profits, says the new CTO of incident-response, forensics company Mandiant.

UK court rules LulzSec hacker to remain in police custody

By Jeremy Kirk | 24 June, 2011 00:17

A 19-year-old British man who remains the lone suspect detained for a series of successful cyberstrikes by the hacking group Lulz Security will remain in police custody until at least Saturday, a London court ruled Thursday.

India has issued 9.5 million digital identity numbers

By John Ribeiro | 23 June, 2011 23:40

India has issued digital identities to about 9.5 million people so far, and plans to step up enrollment to 1 million a day from October, the head of the agency issuing the biometric identities said on Thursday at a conference in Bangalore.

Ukraine disrupts $72M Conficker hacking ring

By Jeremy Kirk | 23 June, 2011 23:36

Ukraine's security service said on Thursday it had disrupted a cybercrime ring that cost the banking industry more than US$72 million using Conficker, a fast-spreading worm unleashed in 2008.

Digital forensics company lands strategic investments

By Tim Greene | 24 June, 2011 06:38

Incident-response forensics company Mandiant has received strategic investments from two separate investment firms with the aim of expanding the company's field staff that responds to security breaches as well as investing more in research and development.

Gartner: new security demands arising for virtualisation, cloud computing

By Ellen Messmer | 24 June, 2011 07:31

The rush toward virtualisation of internal enterprise computing resources and cloud computing can have many advantages, such as server consolidation, but it's largely outracing traditional security and identity management practices. That's leaving huge gaps, a sense of chaos and questions about where security products and services should be applied in the world of multi-vendor virtual-machine (VM) hypervisors.

How to Password-Protect a Folder in Windows 7

By Rick Broida | 23 June, 2011 09:38

Reader Ash wants to know if there's a way to password-protect individual folders in Windows 7:

Challenges remain with Convention on Cybercrime framework: Unisys

By Hamish Barwick | 23 June, 2011 10:43

The Gillard Government's decision to set up legislative framework to allow Australia to sign the Council of Europe Convention on Cybercrime treaty was a good step forward but privacy and civil liberty concerns need to be taken into account, according to a security expert

LulzSec members to be outed by Netherlands hacking group

By Tim Greene | 23 June, 2011 07:34

A hacking group in the Netherlands promises to publish photos, phone numbers and addresses of LulzSec members in response to similar treatment by LulzSec.

Brazilian government, energy company latest LulzSec victims

By Robert McMillan | 23 June, 2011 06:05

Websites belonging to the Brazilian government and energy giant Petrobras were knocked offline Wednesday in a series of cyberattacks.

90 per cent of companies say they've been hacked: Survey

By Jaikumar Vijayan | 23 June, 2011 05:37

If it sometimes appears that just about every company is getting hacked these days, that's because they are.

Startup Bromium takes aim at cloud security

By Stephen Lawson | 23 June, 2011 05:07

Simon Crosby, the former CTO of Citrix Systems' data center and cloud business, has formed a startup called Bromium that will aim to solve security problems in a cloud environment.

Hack Attacks Escalating? Here's a Reality Check

By Ed Oswald | 23 June, 2011 04:06

Hack attacks from online thugs such as Anonymous and LulzSec appear to signal a hacker Armageddon. Not only has Sony been relentlessly targeted by hackers this year so has the Central Intelligence Agency, Sega,, the U.K. government, and dozens of other high-profile company and government agency Web sites.

Password management systems: How to compare and use them

By Beth Schultz | 23 June, 2011 00:58

With username and password prompts coming at users with every personal and professional login, every once in a while they're bound to forget which combinations go with which access requests.

Ponemon study: Cyber attacks more frequent, severe

By Tim Greene | 22 June, 2011 23:46

Cyber attacks are becoming more frequent and severe, and the vast majority of businesses have suffered at least one data breach in the past year, a Ponemon Institute survey says.

Tesco Bank in chaos as customer login choked offline for third day

By Leo King | 22 June, 2011 21:06

Some Tesco Bank customers have been unable to see their accounts for a third day, prompting scores of angry comments online.

Mozilla retires Firefox 4 from security support

By Gregg Keizer | 22 June, 2011 21:06

Unnoticed in the Tuesday release of Firefox 5 was Mozilla's decision to retire Firefox 4, the browser it shipped just three months ago.

Pure Hacking develops security practice for the enterprise

By Hamish Barwick | 22 June, 2011 15:53

Ethical hacker company, Pure Hacking, has developed a strategic security practice designed to seek out vulnerabilities in companies before black hat hackers find them.

Despite arrest, Lulzsec sails on

By Robert McMillan | 22 June, 2011 11:41

The hacking group known as LulzSec pledged to continue their online rampage Tuesday, a day after U.K. police arrested a man allegedly affiliated with the group.

CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Secure Virtualization of Business Applications

Run your mission-critical applications in a secure and compliant virtual datacenter, or private cloud.

Latest Jobs
Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).

  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.