August 9th, 2007
In this edition of the Hack Report audiocast, our panel looked at: Consumer Reports story that U.S. consumers lost more than $7 billion over the two years to viruses, spyware and phishing schemes; the Black Hat conference and its demo of how easily cookies can be captured online and used to fake identification; and the […]
August 8th, 2007
Sounds too good to be true—is probably what some people are thinking. But that’s exactly what encryption vendor Ingrian Networks is offering to customers. With the rapid approach of the next PCI deadline on September 30, 2007, there has been a lot of discussion around compliance: what it really means to be compliant, what actions […]
August 1st, 2007
We’ve already discussed the sorry state of affairs for server security along with the related compromise of the perimeter of the network. Gartner recently predicted that 75% of enterprises will be infected by bots by the end of THIS year. Yet no one is shocked. My how the world of network security has changed as […]
July 10th, 2007
After more than $75 million in bogus credit card charges, several Cuban nationals in Florida have been arrested with more than 200,000 credit card account numbers, many of which came from the TJX and Polo Ralph Lauren data breaches, according to U.S. Secret Service officials, commenting on Monday’s announced arrests.
The numbers were sent to the […]
July 6th, 2007
Fidelity National suffered the ultimate insider theft when an IT staffer sold about 2.3 million customer records to a marketing firm. But it’s the low-tech way this techie did it that makes it interesting.
When Fidelity National Information Services this week announced that about 2.3 million customer records had been illegally sold to a group of […]
July 5th, 2007
Often transmitting unencrypted confidential customer data over weakly-protected connections, retailers risk privacy and create backdoors for cyber thieves. And yet, no one’s giving the merchants much of a choice.
When retailers make changes to any system that might impact credit-card processing—be it point-of-sale upgrades, OS patches, database changes, connection improvements, etc.—it needs to be tested.
For the […]