-
Loss and theft of mobile devices costs BBC over £750,000 in three years
A freedom of information request has revealed that the BBC has spent over £750,000 on lost or stolen laptops, mobile phones and tablets in just three years.
-
SQL injection flaws easy to find and exploit, Veracode report finds
The software industry’s inability to reduce the number of security flaws in its code is fuelling an age of the ‘everyday hacker’, criminals who can exploit vulnerabilities with a minimum of technical skills, Security testing firm Vercode’s latest State of Software Security (SoSS) report has suggested.
-
6 IT Security Innovations to Keep You Ahead of Attackers
Hardly a day goes by without a new security threat emerging. Traditional security tools aren't always up to the task of keeping sensitive business information in safe hands. These six innovations will help you stay a step ahead.
-
Lulzsec sets sights on U.S. Senate and game-maker Bethesda
The Lulzsec hacking group continues to cause headaches for IT staffers. On Monday it published data it obtained from servers belonging to the U.S. Senate and Bethesda Softworks, a Rockville, Maryland, game maker.
-
Security apps full of common software flaws, report finds
Security developers are one of the two software sectors most likely to write insecure code, an analysis of applications submitted to code-testing outfit Veracode has found.
Get exclusive access to CSO, invitation only events, reports & analysis. 
Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).
- Have an incident response plan.
- Pre-define your incident response team
- Define your approach: watch and learn or contain and recover.
- Pre-distribute call cards.
- Forensic and incident response data capture.
- Get your users on-side.
- Know how to report crimes and engage law enforcement.
- Practice makes perfect.
Warning: Tips for secure mobile holiday shopping
I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.
