Compliance & Regulations

March 12, 2010, 10:54AM

Domains Using .Org to Have Tighter Security

The Public Interest Registry will add an extra layer of security known as DNS Security Extensions (DNSSEC) to the .org domain in June -- a move that will protect millions of non-profit organizations and their donors from hacking attacks known as cache poisoning. Read the full article. [Network World]

Shorten URL: http://threatpost.com/en_us/3Jv. Click to copy to clipboard or post to Twitter

March 12, 2010, 10:40AM Threatpost Original

Andy Jaquith on Measuring Meaningful Information Security Metrics

The March issue of Information Security magazine is out this week. The cover story is a look at how security information management systems need to evolve, in particular by integrating identity management with SIM in order to tie policy violations to user activity. Also, expert Andrew Jaquith writes about how to measure meaningful information security metrics. Finally, editor Marcia Savage takes on the HITECH Act's impact on HIPAA and how health care organizations must up their security game. Download the issue here [PDF]

Shorten URL: http://threatpost.com/en_us/3Jy. Click to copy to clipboard or post to Twitter

March 12, 2010, 7:24AM

Another TJX Accomplice Gets Nearly 4-Year Sentence

Humza Zaman, a co-conspirator in the hack of TJX and other companies, was sentenced Thursday in Boston to 46 months in prison and fined $75,000 for his role in the conspiracy. The sentence matches what prosecutors were seeking. Read the full article. [Wired]

Shorten URL: http://threatpost.com/en_us/3JK. Click to copy to clipboard or post to Twitter

March 12, 2010, 7:09AM

Botnets Find New Internet Homes Quickly

The takedown of 100 servers used to control Zeus-related botnets may be a short-lived victory, security researchers said after discovering that about a third of the orphaned channels were able to regain connectivity in less than 48 hours. The resurrection of at least 30 command and control channels came after their ISP found a new upstream provider to provide connectivity to the outside world, autonomous system records showed. Read the full article. [The Register]

Shorten URL: http://threatpost.com/en_us/3JZ. Click to copy to clipboard or post to Twitter

March 11, 2010, 12:43PM

VA Investigating Security Breach of Veterans' Medical Data

The Veteran Affairs Department's inspector general has launched a criminal investigation into a physician assistant's alleged downloading of veterans' clinical data at its Atlanta medical center.

The assistant allegedly recorded two sets of patient data on to a personal laptop for research purposes. One set included three years' worth of patient data and another held 18 years of medical information.  Read the full story [nextgov]

Shorten URL: http://threatpost.com/en_us/3uE. Click to copy to clipboard or post to Twitter

March 11, 2010, 8:53AM

State CSO Fired for Talking Openly at RSA

Pennsylvania's chief information security officer, Robert Maley, has been fired, apparently for talking publicly at the RSA security conference last week about a recent incident involving the Commonwealth's online driving exam scheduling system. Read the full article. [Computerworld]

Shorten URL: http://threatpost.com/en_us/3uO. Click to copy to clipboard or post to Twitter

March 9, 2010, 4:03PM

LifeLock Settles with FTC for $11 Million

LifeLock, an Arizona company promising customers protection from identity theft, has agreed to pay $12 million to settle charges that the company overstated its benefits and used "scare tactics" to gain subscribers. Read the full article. [Computerworld]

Shorten URL: http://threatpost.com/en_us/3td. Click to copy to clipboard or post to Twitter

March 9, 2010, 9:45AM

Online Banking Crime By The Numbers

Organized cyber criminals stole more than $25 million from small to mid-sized businesses in brazen e-banking heists in the 3rd quarter of 2009 alone, federal regulators said last week. Read the full article. [KrebsonSecurity]

Shorten URL: http://threatpost.com/en_us/3t4. Click to copy to clipboard or post to Twitter

March 8, 2010, 4:16PM

Schmidt Says the U.S. Is Not in a Cyberwar

Howard Schmidt, the new cybersecurity czar for the Obama administration, has a short answer for the drumbeat of rhetoric claiming the United States is caught up in a cyberwar that it is losing.

“There is no cyberwar,” Schmidt said. “I think that is a terrible metaphor and I think that is a terrible concept,” Schmidt said. “There are no winners in that environment.” Read the full article. [Wired]

Shorten URL: http://threatpost.com/en_us/3e6. Click to copy to clipboard or post to Twitter

March 5, 2010, 11:59AM

RSA 2010: Experts Reject Taxing Hacks & Malware

Microsoft's idea that the fight against malware could be funded by an Internet tax is "horrible," an analyst said as other experts weighed in on a recent comment by the company's security chief. Read the full article. [Computerworld]

Shorten URL: http://threatpost.com/en_us/3MW. Click to copy to clipboard or post to Twitter

Syndicate content

 

Copyright © 2010 threatpost.com | Terms of Service | Privacy