Almost 1-in-5 (18-per cent) of businesses experienced a distributed denial-of-service attack within a year-long timeframe, according to the Global IT Security Risks Survey 2014 - Distributed Denial of Service (DDoS) Attacks from Kaspersky Labs and B2B International.
David Geer | 07 Apr | Read more
Smart cars are savvy, technologically advanced, and computerized devices connected to navigation and entertainment systems, but they also record personal data and have the potential to be hacked. Who owns that information, how it is shared, and how manufacturers can protect against hacking remains unregulated, which is why Sen. Edward Markey (D-Mass.) wants drivers protected.
Kacy Zurkus | 24 Mar | Read more
On Tuesday, my personal account at GoDaddy was compromised. I knew it was coming, but considering the layered account protections used by the world's largest domain registrar, I didn't think my attacker would be successful.
Steve Ragan | 20 Mar | Read more
Ask security pros what they would change about the Internet if they could go back in time knowing what they know now, and most can point to a list of mistakes we could have avoided.
Maria Korolov | 24 Feb | Read more
When you're a company with branches across the country and a malware infection leads to all its outbound email being blacklisted as spam, you have one thing in mind: fix the problem and fix it fast. That's the situation the U.S. operations of Japanese optical sensor maker Hamamatsu found itself in when it turned to a cloud security provider to turn things around in a hurry.
John P. Mello Jr. | 20 Feb | Read more
Each year, the CSO50 awards honor 50 security projects and initiatives that have delivered groundbreaking business value through the innovative application of risk and security concepts and technologies. Here are the 2015 winners:
Stacy Collett | 04 Feb | Read more
Human nature dictates that you can never expect 100% of the people to follow instructions 100% of the time. The same holds true when it comes to protecting information security. At safety science company UL LLC in Northbrook, Ill., Steve Wenc, senior vice president and chief risk officer, and Robert Jamieson, IT security officer, realized early on in their security education efforts that reducing risk would require more than just lectures and written instructions.
Stacy Collett | 04 Feb | Read more
"I've been in the security business for 25-years. The industry spent the first 20 of those developing perimeter security products. Then five years ago, we simply let everybody in, building an ecosystem of third-party vendors and service providers that are now part of our federated enterprise," says Mo Rosen, COO, Xceedium.
David Geer | 23 Jan | Read more
The holiday season is often a time of reflection, a time for organizations to look back and ask themselves 'are we doing things right'.
In an age where data security defenses are getting more and more sophisticated, there will be increased pressure for malicious parties to glean information from within the organization's walls or public places.
Larry Ponemon | 17 Dec | Read more
As natural philosopher and onetime baseball catcher Yogi Berra reportedly said: "It's tough to make predictions, especially about the future."
Taylor Armerding | 16 Dec | Read more
In what some security experts are calling a "game changer," a Minnesota federal court held Target liable earlier this month for data breach losses because the company had ignored its own security alerts.
Maria Korolov | 16 Dec | Read more
An executive at a company whose name is synonymous with antivirus software raised eyebrows earlier this year when he pronounced the death of that form of system protection. Nevertheless, while the effectiveness of that software may have waned over the years, security experts say the pronouncement by Symantec's senior vice president for information security Brian Dye was premature.
John P. Mello Jr. | 16 Dec | Read more
In first nine months of 2014, after 1,922 confirmed incidents, criminals managed to compromise 904 million records. Many of the incidents reported in 2014 were record setting, including twenty of them that resulted in the compromise of more than a million records each.
Steve Ragan | 18 Nov | Read more
There is still time for any list of the "top information security issues of 2014" to be rendered obsolete. The holiday shopping season is just getting into high gear, after all, and everybody knows it was from late November to mid-December last year when the catastrophic Target breach occurred.
Taylor Armerding | 18 Nov | Read more