information security

Blogs, other content management sites targeted by password thieves

August 07, 2013CSO — Brute force attacks to pry login credentials from content management sites like blogs have been growing as more data robbers use a short-term gain for a bigger pay-off later on.

Such sites are attractive targets because they tend to be less secure than other environments -- such as financial services -- and since they're interactive by design, "drive-by" malware planted on them can infect a lot of users quickly, said David Britton, vice president of industry solutions at 41st Parameter.


Small biz survey: No cybersecurity plans -- no worries. What?

Seventy-seven percent of small- and medium-sized businesses believe that their companies are safe from cyber threats and yet 83 percent of them have no formal cyber security plan. Um, yeah. And that was just one of the contradictions uncovered in a survey of 1,015 small- and medium-sized businesses carried out by the National Cyber Security Alliance and Symantec.

Data Security 101: Avoiding the List (INFOGRAPH)

Here’s something that may keep your typical healthcare CIO from getting a good night’s sleep:  the growing list of data breach victims on the federal Department of Health and Human Services (HHS) website. From breaches affecting 500 patients to those that impact millions, it’s an extensive catalog, which shows how even the most sophisticated provider and payer organizations are susceptible to this growing threat.

Securing tomorrow's enterprise

Information security has never been easy. But, in retrospect, securing the standard business IT infrastructure of the past – mainly Windows-based, located primarily on-premise – is beginning to look simple in comparison with the highly heterogeneous, mobile, employee-owned infrastructure of tomorrow.

Cover Your App: Five Lessons from Recent Data Breaches

It's 2012: Do you know all of the places where your personal information lives? Apparently Zappos doesn't and neither do a host of other businesses, as reported in the news on an almost daily basis. Businesses are overwhelmed by how much information they collect, and get into trouble because they don't know what data they actually have, where it's coming from, or where it's going, and hang on to it longer than they should. What's more, as in the case of Facebook, they're not always doing what their privacy policies say they are.


Subscribe to information security