CSOONLINE.com - Data Protection

New Ways to Approach Security in a Web 2.0 World

Thu, 04 Sep 2008 04:00:00 GMT

Web 2.0 technologies have changed the way many organizations do business. But new tools have also ushered in a new age of security threats. Brian Foster, vice president of product management with Symantec, shares his insight on what you need to do to safeguard your company in today's business environment.

Study: Weak Passwords Still Main Security Defense

Joan Goodchild — Thu, 04 Sep 2008 04:00:00 GMT

New research finds most organizations still use passwords to protect important data. But the study also says they provide little protection against a breach.

Information Security Governance: Centralized vs. Distributed

Wed, 03 Sep 2008 04:00:00 GMT

Audry Agle, VP at The First American Corporation, on creating a model that works for your business.

Leading a Converged Security Operation: Critical Skills

Joan Goodchild — Tue, 02 Sep 2008 04:00:00 GMT

The cultural challenges are significant, and the CSO has to lead the way in learning and changing. We spoke with several converged CSOs for their take on building the necessary skills to hold the job.

New Security Rules on Tap for Credit-Card Handlers

Tue, 02 Sep 2008 04:00:00 GMT

Companies that handle credit cards can expect to see revised security rules released in early October.

Security ROI: Fact or Fiction?

Tue, 02 Sep 2008 04:00:00 GMT

Bruce Schneier says ROI is a big deal in business, but it's a misnomer in security. Make sure your financial calculations are based on good data and sound methodologies.

Information Security and the Importance of Context

Fri, 29 Aug 2008 04:00:00 GMT

Those entrusted with information security must raise their contextual awareness, say Ben Rothke and Benjamin Tomhave

FUD Watch: Sometimes, Data Breach Hype Is Justified

Bill Brenner — Thu, 28 Aug 2008 04:00:00 GMT

Each new data breach shows just how off the mark organizations can be when it comes to security. Public hangings may be necessary, but the facts had better be solid.

Separation of Duties and IT Security

Tue, 26 Aug 2008 04:00:00 GMT

Muddied responsibilities create unwanted risk. Kevin Coleman says auditors may start labeling poorly defined IT duties as a material deficiency.

Novell's iPrint Open To Attack, Say Researchers

Tue, 26 Aug 2008 04:00:00 GMT

Attackers can exploit bugs in Novell Inc.'s iPrint application to obtain corporate information or hijack computers, security experts said.

Microsoft admits posting flawed update

Mon, 25 Aug 2008 04:00:00 GMT

Microsoft Corp. re-released one of its Aug. 11 security updates, explaining that it had posted an incomplete version to its own download center last week.

Online Encyclopedia Lists Internal Security Threats

Thu, 21 Aug 2008 04:00:00 GMT

A free online encyclopedia of internal network security issues was released Tuesday by network security provider Promisec, which includes popular Web-based applications among possible data-loss threats.

Torvalds: Fed Up With The 'Security Circus'

Tue, 19 Aug 2008 04:00:00 GMT

Linus Torvalds, creator of the Linux kernel, says he's fed up with what he sees as a "security circus" surrounding software vulnerabilities and how they're hyped by security people.

Peer-to-peer client uTorrent fixes serious vulnerability

Mon, 18 Aug 2008 04:00:00 GMT

One of the most popular programs used by some to illegally share files under copyright has patched a serious software vulnerability.

AOL Phisher Gets Seven Year Sentence

Robert McMillan — Thu, 14 Aug 2008 04:00:00 GMT

AOL Phisher Michael Dolan has been sentenced to seven years in prison.