-
The bottom line on phishing
Phishing attacks on enterprises can be calamitous in terms of compromised networks or damaged brand names, and the Anti-Phishing Working Group (APWG), which aggregates and analyzes phishing trends data worldwide, offers some of the best insight from industry into what's occurring globally in terms of this cybercrime. The following list of frequently asked questions about phishing is derived from the APWG's April report that covers the period July-December 2012 worldwide.
-
12 Must-Do PC Tasks
Computers may have become a lot more user-friendly over the past decade, but they're still far from perfect--PCs require a certain amount of configuration and maintenance to operate at their full potential. Unfortunately, because we humans are also far from perfect, we frequently don't put in the work we should, and we end up with a slower, sloppier, less secure machine as a result.
-
Retailer faces uphill battle in US$13M lawsuit against Visa, analyst says
Specialty retailer Genesco faces an uphill battle in its precedent-setting US$13.3 million lawsuit against Visa USA, a Garner analyst said.
-
IT security managers too focused on compliance, experts say
Companies with IT security strategies that focus mostly on complying with key standards are dangerously unprepared for emerging cyber threats, said security experts at the RSA Conference 2013 here this week.
-
Ruby on Rails patches more critical vulnerabilities
Those using the Ruby on Rails web application framework on their websites are being advised to update the software immediately after multiple new vulnerabilities were found. It's the second time this month that Rails has been patched because of serious flaws.
-
Apple not ready to kill OS X Snow Leopard yet
Apple yesterday gave its strongest signal yet that it will continue to support OS X Snow Leopard with patches for the foreseeable future rather than retire the still-active operating system.
Get exclusive access to CSO, invitation only events, reports & analysis. - 1
Bank trojan targets users of Bitcoin exchange Mt Gox
- 2
Australian Information Security Association issues blunt warning as National Cyber Security Awareness Week begins
- 3
ACMA database keeps finger on Australia’s malware pulse
- 4
Review: Mobile Device Management
- 5
The week in security: Aussie banks targeted as mobiles drive privacy fears
- FTR&D EngineerSA
- FTSenior Python DeveloperNSW
- FTTest Analyst (MS Environment) .netNSW
- FTQuality ManagerSA
- FTOS Web Applications DeveloperNSW
- FTTest EngineerVIC
- FTLead Software EngineerSA
- FTTest Analyst (MS Environment) .netNSW
- FTJob Title: Mac Systems/ Enterprise Systems EngineerNZ
- FTFlash / ActionScript Developer - ContractNSW
- FT.NET - Sitecore Developer - Melbourne - PermNSW
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
