Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
A massive data breach that could potentially affect millions of individuals who received services from, TRICARE, a provider of health care services to active and retired military personnel was disclosed this week.
Difficulty in achieving compliance, along with overconfidence, complacency and the need to focus on other compliance and security issues are among the possible reasons for the widespread PCI noncompliance.
The Health Research Institute at PwC US said that old privacy and security controls no longer suffice to comply with existing privacy laws and patient consent agreements.
Email is no longer the primary source of records companies must produce when it comes to eDiscovery requests—at least according to a recent Symantec-sponsored survey of legal and IT personnel at 2,000 enterprises worldwide.
Looking to target an underserved aspect of breaches, Co3 says its solution can help businesses cut incident response process time by as much as half – significantly reducing the risk, expense and resources associated with data loss incidents.
On Aug. 9, Microsoft accidentally released information on the five security updates it is planning to release tomorrow as part of this month’s Patch Tuesday.
Qualys made several announcements including a new QualysGuard Consultant Edition, a revamped user interface for its QualysGuard Security and Compliance SaaS Suite, and availability of the latest version of its Web Application Scanning solution.
Symantec has updated its Enterprise Vault archiving software with a mix of data classification technology and a new focus on social media content.
Recent findings from a survey of eCommerce merchants revealed that nearly 70 percent of respondents cited the need to "protect the brand" as the primary driver for tightening controls against hackers and other payment security risks.
The online PCI Awareness training offers the opportunity to learn about PCI DSS, its impact and benefits across an organization and the importance of PCI compliance, in a self-paced course.
- 1 of 7
- ››
FEATURES, INSIGHTS // Compliance
In 2011 we were reminded that software piracy cannot be stopped. Despite the best efforts of software vendors, industry watchdog groups and government, software piracy continues to proliferate.
Merchants who are required to be PCI-DSS Compliant will have to get their validation under provisions of PCI-DSS 2.0 by December 31st, 2011. What are some of the key changes in PCI-DSS 2.0? Are you ready?
Mobile applications and the platforms they are built on make PA-DSS compliance difficult due to the rapidly evolving threat landscape. With increased attacks and their tragic affects on businesses and consumers, it's important to make make sure your mobile operations properly secured.
2011 has been a monumental year for hackers. Businesses as well as consumers felt the brunt of cybercrime by the millions, some of them a few times over. Here’s a look at the top hacks so far this year, and what we can learn from them.
A properly deployed SIEM can add tremendous value to an organization’s security program. This week, Chris describes how you can get the most out of an SIEM solution through proper deployment strategies.
Real security goes beyond compliance, and integrates with validation and security processes. This causes confusion for many organizations as they pursue compliance standards. So let’s break it down.
If you are faced with regulatory compliance, you are faced with a legal issue. And, if you are not compliant, you are essentially breaking the law. There are many standards and regulations in place. But which ones are the most impactful?
Too many IT and risk managers are surprised by security breaches, compromised keys or operational failures that occur from sheer neglect that result when you leave your valuable keys as exposed as a password on a post-it. Hefty, potential fines for failing to comply with regulations are risk enough, but the risks of ignoring these vulnerabilities extend even further.
By tracking the adoption of unlicensed software, your company can turn the age-old piracy problem into revenue generating business unit as well as source data for marketing. Here’s how.
How does a merchant or service provider know if they are required to be PCI DSS certified and what initial steps can they undertake in order to get on their way to PCI DSS 2.0 compliance? This can be a long and complicated process, but here are some tips to help you get started.
- 1 of 4
- ››
Subscribe to SecurityWeek
- With an IPO In Sight, Palo Alto Networks Names New CFO
- Google Adds New Layer to Android Security
- Study Analyzes Fake Facebook Profiles vs. Real Users
- VeriSign Attackers Swiped Data from Servers, Management Left in the Dark
- Half of Fortune 500 and Government Agencies Infected With DNSChanger Malware
- It's Time to Open Our Eyes to Advanced Malware Protection
- AVG Technologies Set for $128 Million IPO Thursday
- Wave Systems Launches Cloud-Based Encryption Service
- Threat Intelligence Market to Reach $905 Million by 2014, Says IDC
- BlackBerry 7 Gets Government Security Stamp
Copyright © 2011 Wired Business Media. All Rights Reserved. Privacy Policy | Terms of Use
