News

• 

  International security team shoots down second Hlux/Kelihos botnet

  A team of security experts cooperating globally say they've disabled a large botnet of about 110,000 remotely controlled infected machines dubbed HLux.B/Kelihos.B by interfering in its peer-to-peer connections in a "poisoning" process to sinkhole them, cutting off the botnet's central control point.

  By Ellen Messmer | 29 March, 2012 03:23

  Tags: botnet, dell, Hlux.B; Kelishos, Intel, kaspersky lab, Microsoft, network security, security, Wide Area Network

• 

  The ultimate tips box

  Got problems with insider threats? Need help securing your wireless LAN because of employees bringing their own devices on to your network? Know how to protect your Android device?

  By Ryan Francis | 22 February, 2012 10:42

  Tags: cloud computing, Configuration / maintenance, Data Center, freemium, hardware systems, internet, LAN & WAN, networking, network security, security, tips, tricks, wireless, WLANs, WLANs / Wi-Fi

• 

  Download InfoWorld's Malware Deep Dive report

  If malware were biological, the world would be in the grip of the worst pandemic in history. In 2009, more than 25 million unique malware programs were identified, more than all the malware programs ever created in all previous years. No one need wonder what all that malware is trying to do: It's trying to steal money -- through data theft, bank transfers, stolen passwords, or swiped identities.

  By InfoWorld staff | 16 February, 2012 01:43

  Tags: antispam, anti-spam, antivirus, anti-virus, Endpoint Protection, freemium, malware, network security, phishing, security, Security Management, social engineering

• 

  Building an IDPS without big iron

  This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter's approach.

  By Livio Ricciulli, president and chief scientist at MetaFlows Inc. | 14 February, 2012 07:31

  Tags: BotHunter, cloud-based IDPS, cloud computing, data breach, flow monitoring, honeypots, IDPS, IDS, insider threat, internet, intrusion detection and prevention systems, Intrusion Prevention, IPS, log management, network security, OS fingerprinting, packet logging, SaaS, SaaS-based IDPS, security, Software as a service

• 

  Continuous Transaction Monitoring (CTM) protects financial integrity, even when network security inevitably fails

  This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter's approach.

  By Patrick Taylor, CEO of Oversight Systems | 14 February, 2012 06:28

  Tags: anonymous, continuous transaction monitoring, infrastructure management, management, networking, network security, Playstation, security, symantec

• 

  Many pcAnywhere systems still sitting ducks

  Despite warnings from security software maker Symantec not to connect its pcAnywhere remote-access software to the Internet, more than 140,000 computers appear to remain configured to allow direct connections from the Internet, thereby putting them at risk.

  By Robert Lemos | 31 January, 2012 22:15

  Tags: Endpoint Protection, hacking, intrusion, network security, Rapid7, security, symantec, Vulnerability Assessment

• 

  Feds want uber cybersecurity compliance standard

  Tired of regulators from three or four federal agencies auditing your network security compliance every year? A congressional task force recommends a super-standard that would cut the number of annual audits back to just one.

  By Tim Greene | 07 October, 2011 01:30

  Tags: firewalls, it management, network security, regulatory compliance, security

• 

  Microsoft, Adobe unleash flood of security updates

  Today is Patch Tuesday again. The ninth of the year already. Microsoft has released five new security bulletins, and Adobe has joined the party with some security patching of its own today. With all of the vulnerabilities and updates, though, you need to take a step back to prioritize and figure out which patches are most urgent.

  By Tony Bradley | 14 September, 2011 05:45

  Tags: Adobe Systems, Microsoft, network security, patches, patches & drivers, phishing, security, spam, symantec, viruses

• 

  How to live with malware infections

  How can you be sure your organization doesn't have insidious viruses or other malware lurking within systems and applications, waiting to inflict damage? You can't.

  By Bob Violino | 05 July, 2011 20:10

  Tags: data protection, data security, Endpoint Protection, firewalls, malware, mobile security, mobile technology, networking, network security, security, Security Management

• 

  Rogue Google certificate used by 300,000 Iranian IPs

  Iranian internet users whose security may have been compromised by the forged Google.com digital certificate could number in the hundreds of thousands. An interim report (PDF) commissioned by DigiNotar, the certification authority (CA) at the centre of the hacking incident, also reveals lax security at the Dutch firm.

  By Stilgherrian | 06 September, 2011 11:02

  Tags: breach, DigiNotar, digital certificates, Dropbox, Fox-IT, Google, hackers, MI6, network security, network servers, pki, security, Tor, VPN servers

• 

  Comodo CEO says DigiNotar hack was state-sponsored

  An attack on a Dutch company that issues certificates used to authenticate websites was state-sponsored, according to the chief executive of Comodo, a company that also issues digital certificates and suffered a similar setback in March.

  By John P. Mello Jr. | 07 September, 2011 03:48

  Tags: Comodo, hackers, network security, security

• 

  Due diligence security is the enterprise Achilles heel

  Big business and government need to invest in data forensics and skills if they intend on fending off targeted attacks, according to analyst firm Gartner.

  By Liam Tung | 26 August, 2011 07:40

  Tags: B Gary, computer forensics, data leakage prevention, LulzSec, malware, network security, Perimeter attacks, rsa, security, SIEM, targeted atatcks, threat detection, vulnerability assessent controls

• 

  USB devices: The big hole in network security

  Ponemon Institute asked 745 information-technology and security managers whether USB drives were important for business use, and if they were secure. What did the survey find?

  By Ellen Messmer | 24 August, 2011 12:42

  Tags: network security, security, usb security

• 

  Anonymous leaks nude images of BART spokesman

  The hacking group Anonymous has waged a full-on war on BART, the San Francisco subway system, over cellular shutdowns to stifle protests. Following two demonstrations that led to temporary station closures, hacking and posting personal information of BART police officers, Anonymous has now posted naked photos of BART spokesman Linton Johnson.

  By Daniel Ionescu | 25 August, 2011 23:34

  Tags: firewalls, hackers, network security, security

• 

  McAfee warns of massive 5-Year hacking plot

  Every company in every conceivable industry is compromised by hackers - or will be­ shortly - according to a report from McAfee, a major maker of cybersecurity software.

  By John P. Mello Jr. | 04 August, 2011 02:59

  Tags: firewalls, hackers, mcafee, network security, online security, security