The latest technologies and best practices to secure local, virtual, cloud, and hybrid networks.
Developers are being urged to create applications at an ever-faster pace, with many of them designed to operate on the Web or run on mobile devices. All of these factors open the door to security vulnerabilities. “When secure code practices are not part of development, you end up with data breaches, a large percentage of… Read more
Customers of VPN provider PureVPN recently began receiving e-mails stating that the company was shutting down due to legal issues — but PureVPN quickly announced that the e-mails were fake, and had been sent by hackers who had accessed customers’ names and e-mail addresses (h/t Softpedia). In a blog post on October 6th, PureVPN co-founder… Read more
There is a reason phishing scams remain popular. Despite the fact most knowledge workers know the risks of clicking on unknown attachments or links, a significant number of them continue to do it. A recent Harris Interactive survey found that 19 percent of U.S. employees working in an office said they had opened an email… Read more
Digital certificates play a vital security role on the Internet. They allow you to prove that your websites are genuine, sign applications and software updates to prove that they originated from you, and communicate with customers easily using encryption. The drawback to certificates is that if anything goes wrong, the potential fallout can be disastrous.… Read more
American Banker reports that Citigroup recently admitted having failed to safeguard the personal data (including birthdates and Social Security numbers) of approximately 146,000 customers who filed for bankruptcy between 2007 and 2011 (h/t Softpedia). Citi apparently failed to fully redact court records placed on the Public Access to Court Electronic Records (PACER) system. “The redaction… Read more
Avira recently acknowledged that Avira Browser Security doesn’t allow Web sites to be displayed in the Chrome browser once it’s updated to verison 28 (h/t The H Security). Affected products include Avira Professional Security 2013, Avira Free Antivirus, Avira Antivirus Premium 2013, and Avira Internet Security 2013. “This is caused by an incompatibility between the… Read more
Boston’s Suffolk University recently began notifying an undisclosed number of people who used their credit cards to purchase tickets to Suffolk University events that their personal information may have been accessed when ticketing vendor Vendini was hacked in March of 2013. According to the notification letter [PDF file], customers’ names, mailing addresses, e-mail addresses, phone… Read more
The German Web host Hetzner recently notified its clients that its technicians had discovered a backdoor in one of its Nagios internal monitoring systems (h/t The H Security). “An investigation was launched immediately and showed that the administration interface for dedicated root servers (Robot) had also been affected,” Martin Hetzner stated in the notification letter.… Read more
Jeremiah Grossman, founder and CTO of Whitehat Security, has seen a lot of different types of security attacks in his time. He knows the most common types of attacks aren’t necessarily the ones that have the most risk. In its just-released Annual Website Security Statistics report, Whitehat Security provides insight into the attacks it saw… Read more
The security threat landscape changes constantly, with malicious hackers developing new ways to compromise your systems as older vulnerabilities are discovered and patched. So it’s important to be aware of the threats to enterprise security that are coming over the horizon and heading this way. It’s a question the Georgia Institute of Technology addresses… Read more