EU to launch bug bounties for 14 open source projects
Europe stumps up cash for bug bounties to secure over a dozen popular open source projects.
Europe stumps up cash for bug bounties to secure over a dozen popular open source projects.
CISOs are getting more clout than ever but it’s not translating into cross-business partnerships or far-reaching security strategies, according to a new survey of the CISO’s role that found just 51 percent of companies have an organisation-wide information security strategy.
David Braue | 20 Sep | Read more
Australia continues to punch well above its weight as a target for online attacks, with new figures from content distribution network Akamai putting us second in the world – behind only the United States – as a target for online Web attacks.
David Braue | 22 May | Read more
Now in its 20th year, Symantec has released their annual threat report. We spoke with Piero DePaoli, Senior Director for Global Product Marketing for Information Security at Symantec at the recent RSA Conference.
Anthony Caruana | 05 May | Read more
Now in its 20th year, Symantec has released its annual threat report. We spoke with Piero DePaoli, Senior Director for Global Product Marketing for Information Security at Symantec at the recent RSA Conference.
Anthony Caruana | 04 May | Read more
They say you should never perform with children or animals. Juniper Networks’ CSO Chris Hoff found that out the hard way when he was upstaged by nine year old Reuben Paul. Reuben created a fake website, injected it with a Java exploit and executed a social engineering attack on Hoff at the RSA Conference.
Anthony Caruana | 25 Apr | Read more
BlackBerry has confirmed BlackBerry OS 10, BES 12 and 10 and other products are affected by the FREAK flaw, but it has no patch.
Several security experts say GHOST, the latest far-reaching open source security bug, is a potentially serious threat and will be annoying to fix, but is probably not catastrophic.
The security of the web itself was tested in unprecedented ways in 2014--but the news isn't all bad.
The OpenSSL project has kicked off the new year with fixes for handful of bugs that fortunately are not as disastrous as Heartbleed or POODLE.
Ongoing concerns about the security of cloud-hosted data will drive many companies to put their cloud initiatives on the back burner in 2015, security firm WatchGuard has predicted as it singles out the most and least concerning security trends for the new year.
David Braue | 12 Dec | Read more
Every year, our inboxes get hit with a flood of press releases and announcements with predictions for the next year. Well, we're into November and the predictions for infosec in 2015 have started arriving.
Anthony Caruana | 14 Nov | Read more
Back in July 2001 two security researchers, Marc Maiffret and Ryan Permeh from eEye Digital Security, discovered the Code Red worm - a piece of malware that targeted Microsoft's IIS software and propagated wildly until it was stopped. It was followed by more vulnerabilities and threats until Microsoft was forced to launch its Trustworthy Computing initiative in 2002.
Anthony Caruana | 24 Oct | Read more
Peter Allor is the Lead Security Strategist in IBM's Critical Infrastructure Group. He works at the forefront of information security, working with researchers to look at events, as they happen, to learn about new techniques that are being adopted by attackers from a protection perspective and how to deal with those in across distributed computing in the cloud. But he is on the board of directors of FIRST - the Forum of Incident Response and Security Teams and ICASI - the Industry Consortium for Advancement of Security on the Internet.
Anthony Caruana | 16 Oct | Read more
A lot of attention is being focused on cryptography and other security controls being manipulated by attackers who are exploiting poor implementations, lack of maintenance and seemingly unforseen omissions in the controls coding. This can lead to a trusted security control being turned into a weapon of choice.
Christopher Flynn | 16 Sep | Read more