Security

Rooting Android phone bypasses Google Wallet security; just one of many remaining flaws

KevinFogarty — Wed, 15 Feb 2012 23:57:18 +0000

Google was quick to correct a flaw in Google Wallet that would let strangers delete your login, type in their own and take over accounts Wallet was supposed to guard. Data stores are still insecure, rooting the phone bypasses all Wallet security.

How well does facial recognition work for device security?

StillADotcommer — Wed, 15 Feb 2012 17:27:24 +0000

Some of the laptops around the office as well as some new Androids have facial recognition software that can be used in lieu of a pin or swipe pattern to unlock the device. I haven't taken the time to really test it out since neither my Android or laptops has the feature, and I've had enough other stuff to keep me busy lately.

Computer security film from 1990 just as relevant today

keithshaw — Wed, 15 Feb 2012 17:02:26 +0000

Security issues in 1990 were just as big then, only the equipment has changed.

Malware network threats rising, how to defend yourself

IDGNS staff — Wed, 15 Feb 2012 16:32:39 +0000

In 2011, cybercriminals stepped up their game with the creation of malware networks (malnets)-distributed network infrastructures that exploit popular places on the Internet like search engines and social networking sites to repeatedly launch a variety of malware attacks.

Apple iPhone address book uploading drama continues

James Gaskin — Wed, 15 Feb 2012 16:08:18 +0000

Disturbing details keep coming, like the fact every iPhone app has complete access to wide range of data.

Startup Porticor launches with encryption technology for cloud computing

IDGNS staff — Wed, 15 Feb 2012 11:39:52 +0000

Israel-based startup Porticor launches this week with technology aimed at giving enterprises a way to encrypt data held in cloud computing services, including those from Amazon and Rackspace.

First look: Norton's 2012 desktop, smartphone security push

IDGNS staff — Wed, 15 Feb 2012 08:34:52 +0000

Norton today released an updated version of its Norton 360 desktop and mobile security software, while also rolling out a new licensing arrangement for combined PC, Mac and Android use.

Nortel executives knew of data breach, chose to do nothing

IDGNS staff — Wed, 15 Feb 2012 00:57:39 +0000

The data breach into Nortel's data systems was known to company executives, including the CEO, for over a decade, but the company refused to take steps to prevent data loss.

Crypto experts analyze millions of X.509 certificates, call RSA crypto flawed

IDGNS staff — Tue, 14 Feb 2012 23:27:52 +0000

Cryptography researchers collected millions of X.509 public-key certificates that are publicly available over the web and found what they say is a shockingly high frequency of duplicate RSA-moduli keys.

Microsoft quashes 21 bugs, blocks drive-by attacks

IDGNS staff — Tue, 14 Feb 2012 21:59:52 +0000

Microsoft today issued nine security updates that patched 21 vulnerabilities in Windows, IE, Office, .Net, Silverlight and SharePoint Server, including several critical bugs that can be exploited with drive-by attacks.

Microsoft, Oracle, Adobe send patches for Valentine's Day

IDGNS staff — Tue, 14 Feb 2012 21:27:55 +0000

The Valentine's Day 2012 edition of Patch Tuesday is upon us, and Microsoft has come forward with details on the nine bulletins it previewed last week.

Senate bill may require 'critical' networks to adopt cyber standards

IDGNS staff — Tue, 14 Feb 2012 21:02:24 +0000

A bill in the U.S. Senate would require operators of so-called critical infrastructure networks to adopt cybersecurity practices if evaluations by the U.S. Department of Homeland Security find their security lacking.

How much will the security flaws in Google Wallet set back the transition to "digital wallets"?

AppDevGuy — Tue, 14 Feb 2012 19:05:27 +0000

The security flaw in Google Wallet apparently would allow pretty much anyone with access to your phone, once they got through the screen lock (if it is even used), to gain access to the contents of your prepaid Google card.

FBI says social media monitoring won't infringe privacy rights

IDGNS staff — Tue, 14 Feb 2012 17:57:54 +0000

The FBI said its proposed plans to monitor social media sites to improve real-time situation awareness will be fully vetted by the agency's Privacy and Civil Liberties Unit.

Four keys to successful BYOD

IDGNS staff — Tue, 14 Feb 2012 17:25:52 +0000

The bring your own device (BYOD) movement formally advocates use of personal equipment for work and obligates IT to ensure jobs can be performed with an acceptable level of security, but how can risks be addressed given the range of devices used and the fact that you lack control of the end point?