Security Bytes:

March, 2010

March 25, 2010  12:18 AM

FISMA overhaul under way

Michael Mimoso Profile: maxsteel

Compliance with the Federal Information Security Management Act (FISMA) of 2002 has been just that--compliance. Critics rail against it, calling the reg a paperwork drill that has done little to improve the security of federal government IT systems and networks. Agencies continually earn failing...

March 23, 2010  11:46 AM

Latest McAfee DLP update adds database crawling, faster rollout

Robert Westervelt Robert Westervelt Profile: Robert Westervelt

Vendor claims latest version better integrates its 2008 acquisition of Reconnex Inc., builds on support of its ePolicy Orchestrator for easier policy management. McAfee said the latest version of its data loss prevention (DLP) suite increases the speed in which a company can...

March 19, 2010  12:53 PM

Sophos researchers warn of new Amazon phishing scam


Phony email message claims Sony laptop is on the way. Security researchers at SophosLabs have discovered yet another new phishing campaign aimed at users of Amazon .com. A fraudulent Amazon email message claims a Sony VAIO A1133651A laptop has been ordered and is being shipped....

March 18, 2010  11:25 PM

Estonia defense minister talks about 2007 cyberattacks

Marcia Savage Marcia Savage Profile: Marcia Savage

Attacks raised the issue of cybersecurity on the global agenda. Jaak Aaviksoo, the minister of defense of the Republic of Estonia, had the daunting and unenviable task of dealing with the massive cyberattacks that hit his country in the spring of 2007. For more than three...

March 17, 2010  2:32 PM

Robert Maley dismissal, in retrospect, not surprising

Eric Parizo Eric Parizo Profile: Eric Parizo

As first reported last week in the The Patriot-News of Pennsylvania and other outlets, Pennsylvania CISO Robert Maley was either fired or resigned under pressure following an appearance at...

March 5, 2010  1:12 AM

Static source code analysis turned on its head

Michael Mimoso Profile: maxsteel

If you're into source code analysis and Web application security, then you know who Caleb Sima is. Sima, for the uninitiated is cofounder of SPI Dynamics and the guy who helped build the popular

March 4, 2010  4:55 AM

RSA panel weighs PCI implications of cloud computing

Marcia Savage Marcia Savage Profile: Marcia Savage

Cloud computing takes PCI compliance into unfamiliar territory, but PCI auditors should make an effort to understand the technology, experts said during a panel discussion Wednesday at the RSA Conference 2010 in San Francisco. "Auditors have to get used to it," said Liam Lynch, chief security...

March 2, 2010  11:36 PM

Shamir acknowledges chip-and-PIN attack as his favorite

Michael Mimoso Profile: maxsteel

March 2, 2010  4:52 AM

Secure cloud concept built on new Intel processor

Marcia Savage Marcia Savage Profile: Marcia Savage

At a press event here on the opening day of the RSA Conference in San Francisco, EMC's security division, RSA, along with Intel and VMWare unveiled a proof of concept for creating secure and compliant cloud services.  An interesting aspect of this "vision" was its foundation -- an upcoming new...

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: