-
Week of 14 May 2012 Gartner report: UTM market on the upswing, expert says (14 May 2012)
Gartner released a report detailing market growth from 2010-2011 throughout the UTM vendor industry.
PCI Council urges P2P encryption for mobile payments (16 May 2012)
A PCI Council guidance document requires merchants to use a validated PIN entry device or secure card reader to accept payments using mobile devices.
Android security model doing best to enable mobile malware spread (16 May 2012)
At Information Security Decisions 2012, Dan Guido put the mobile malware focus on the Android security model and Google’s mobile app vetting process.
-
Week of 07 May 2012 PCI virtualization compliance still a challenge (09 May 2012)
No black and white when it comes to PCI compliance in virtualized environments, experts say.
Microsoft fixes code targeted by Duqu in May 2012 Patch Tuesday (08 May 2012)
Experts suggest patience when dealing with this month’s round of Microsoft updates.
-
Week of 30 Apr 2012 Adobe pushes patch for actively exploited Flash Player vulnerability (04 May 2012)
Adobe is addressing a zero-day flaw in Flash Player being used by cybercriminals in email attacks targeting Internet Explorer users.
Microsoft program breach led to early RDP vulnerability exploit (03 May 2012)
Microsoft said a member of its confidential Active Protections Program leaked information that prompted an exploit targeting a flaw patched in March.
Microsoft to fix 23 vulnerabilities in May 2012 Patch Tuesday (03 May 2012)
Microsoft said it plans to address flaws in Windows, Office, Silverlight and the .NET Framework.
GlobalPayments breach update explains scope of lapse (02 May 2012)
The payment processor breach is believed to be under 1.5 million credit cards, but the company indicated on Tuesday that banks are issuing a “wide net to protect customers
-
Week of 23 Apr 2012 VMware downplays ESX hypervisor source code leak (25 Apr 2012)
Company says source code was leaked online but says may not mean increased risk.
Java, HTML exploits via Black Hole toolkit dominate attacks, Microsoft says (25 Apr 2012)
The Black Hole Exploit toolkit is behind the bulk of the HTML and Java exploits, according to version 12 of the Microsoft Security Intelligence Report.
-
Week of 16 Apr 2012 HP study finds widespread custom Web application flaws (18 Apr 2012)
A review of hundreds of unique custom Web applications found more than half are vulnerable to cross-site scripting and more than 86% contain injection flaws.
-
Top Information Security Story
DDoS attacks growing in size, break attack bandwidth barrier, Arbor Networks says SearchSecurityIN.com | 08 Feb 2011
Attackers are becoming more skilled at harvesting the amount of bandwidth available and selecting specific targets, a new report finds.