Security

A new piece of malicious software has been discovered that cheats Google and potentially other search engines out of money.

Jailbreaking an iPhone leaves users vulnerable to attack by stripping away most of the handset's security protections, a security researcher warned Thursday.

The operators of The Pirate Bay will allow users to delete their accounts on the torrent-tracking site, a feature many users have requested since a deal to sell the site was announced Tuesday.

A new piece of malicious software has been discovered that cheats Google and potentially other search engines out of money.

As mobile users are more frequently pestered by SMS spam, one security vendor is applying its experience in stopping e-mail spam for mobile networks.

McAfee is expanding its staff in China amid a boom in the country's security market fueled by the launch of next-generation mobile networks.

A U.S. company that says its code was copied by a Chinese Internet filtering program has ordered more PC makers not to distribute the Chinese software.

The Kantara Initiative, formed to promote interoperability among identity verification applications and services, launched on Wednesday with big-name backers like Oracle, Intel, eBay's PayPal, AOL, CA, Novell, Fidelity Investments, Liberty Alliance, Boeing, Internet Society and British Telecom.

Although he acknowledges businesses have yet to embrace IPv6, security guru, Scott Hogg, says that doesn’t mean IT executives can ignore the security problems that the next generation Internet protocol can present.

Security experts say it all the time: If a company thinks it has suffered a data security breach, the key to getting at the truth unscathed is to have a response plan in place for what needs to be done and who needs to be in charge of certain tasks. And, as SANS Institute instructor Lenny Zeltser advised in CSOonline's recent How to Respond to an Unexpected IT Security Incident article, "ask lots and lots of questions" before making rash decisions.

Australian Geoff Huston is one of the foremost authorities on Internet routing and scaling issues. We sent Huston, a former Chief Scientist, Telstra Internet, a few questions about the U.S. government's plan to bolster R&D to secure the Internet's core routing protocol, the Border Gateway Protocol (BGP). Here are excerpts of from what Huston had to say:

We recently got the opportunity to interview Eugene Kaspersky, the man behind Kaspersky Anti Virus. Here's what he had to say about the evolution of malware, the future of cybersecurity, the problems with the Internet, and more.

George Peppard said as his character Hannibal Smith on The A-Team, "I love it when a plan comes together." Several trends, if not a plan, are coming together in interesting ways in technology for small businesses. Mix equal parts of online applications, netbooks, and constant wireless networking together, and you get new ways to do more work in more places for less money.

In April 2004 I wrote my first article on the topic of virtualization security. I was trying to bring attention to the security aspects of this "new" technology that was getting quite a bit of hype at the time. The hope was that this time security would not be an afterthought, that we would reverse the equine-escape/egress-closure sequence. The naïvete of youth!

In these days of economic recession, with cyber crime on the rise, it's more important than ever for IT leaders to make the most of their security budget.

Whom can you trust? In security, many of us nurture a healthy sense of paranoia and tend to be distrustful. But as human beings, as social beings, we form bonds of trust with those around us.

IronPort S160

Many sandbox security vendors claim that their products stop all known and unknown attacks. Even assuming the ability to curtail all known attacks could be proven, it's simply impossible to believe that any piece of software could halt all unknown attacks. Of course, that doesn't prevent the vendors from making empty promises or the malware authors from proving them wrong.

The Internet is a scary place. Criminal malware lurks on legitimate and illegitimate Web sites alike, looking to steal your money one way or the other. Vendors have been scratching their collective heads attempting to make more consumers safer, more often. One of the results has been a class of anti-malware software that I call sandbox protection products. These items encapsulate Internet browsers (and e-mail programs and sometimes any other program you can run) within a virtual, emulated cocoon designed to keep malware from reaching and modifying the underlying host computer.

Fans of all-in-one security suites should take a serious look at the just-released Kaspersky Internet Security 2009, which includes modules for antivirus, antispyware, firewall and more, yet uses little enough system resources and RAM that it won't slow down or clog up your system.