Articles

  • Windows 10: No More Monthly Patches

    Microsoft Outlines New Features, Including 24/7 Updates Mathew J. Schwartz - May 6, 2015
    Windows 10: No More Monthly Patches

    With the upcoming release of Windows 10, Microsoft plans to inaugurate 24/7, cloud-based patching, among other new security features. Businesses can tap the anytime patches or define their own patch-release schedules.

  • eBay Breach-Related Lawsuit Dismissed

    Judge Rules Injury Was Not Proven Mathew J. Schwartz - May 5, 2015
    eBay Breach-Related Lawsuit Dismissed

    A federal judge has dismissed a class action lawsuit filed against eBay in the wake of a 2014 data breach that exposed encrypted passwords and personal information for 145 million users.

  • New Sally Beauty Breach: Old Intrusion?

    Fresh Fraud Reports Follow 2014 Breach Tracy Kitten and Mathew J. Schwartz - May 5, 2015
    New Sally Beauty Breach: Old Intrusion?

    One year after Sally Beauty Supply revealed that a network breach compromised payment card data and exposed 25,000 records, the company says it is investigating new breach reports. Did it fail to eradicate the original intrusion?

  • Holding Websites Liable for False Data

    Supreme Court to Take Up Case Involving Search-Engine Firm Eric Chabrow - May 4, 2015
    Holding Websites Liable for False Data

    The high court will decide if websites, search engines and others that amass personal information from public sources could be sued for publishing inaccurate information, even if the errors do not cause actual harm.

  • 6 Questions About the Partners Breach

    Breach Notification Comes Five Months After Phishing Attack Mathew J. Schwartz - May 1, 2015
    6 Questions About the Partners Breach

    Partners HealthCare System is the latest healthcare organizations to suffer a data breach following a phishing attack. But why did Partners wait five months to issue a breach notification, when HIPAA requires notifications within 60 days?

  • Banking Malware Taps Macros

    Attackers Use Cloud Services, Trickery to Evade Defenses Mathew J. Schwartz - May 1, 2015
    Banking Malware Taps Macros

    Security firms report a sharp rise in the quantity of attacks that use macro code - designed to automate tasks - to trigger malware downloads, often for the purpose of stealing people's online banking credentials.

  • Partners HealthCare Reports Breach

    Latest Phishing Attack One of Many in Healthcare Sector Marianne Kolbasuk McGee - April 30, 2015
    Partners HealthCare Reports Breach

    Partners HealthCare System announced that it is the latest healthcare organization hit by a data breach attributed to a phishing attack. The records of an estimated 3,300 individuals may have been compromised in the incident.

  • Another Breach Notification Bill Introduced

    Tougher State Requirements Wouldn't Be Usurped in New Bill Eric Chabrow - April 30, 2015
    Another Breach Notification Bill Introduced

    Privacy advocates in the Senate have introduced a national data breach notification bill that would allow states to keep their own laws if they provide more stringent reporting and privacy protections than offered by the federal government.

  • Panel Votes to End Bulk Collection

    USA Freedom Act Heads to House Floor Eric Chabrow - April 30, 2015
    Panel Votes to End Bulk Collection

    The House Judiciary Committee, in passing a tailored bill to end the NSA's bulk collection program of phone records, rejected amendments to expand privacy reforms to other government surveillance initiatives.

  • POS Malware Victim: Compass Group

    NEXTEP Breach Affects Foodservice Management Company Mathew J. Schwartz - April 30, 2015
    POS Malware Victim: Compass Group

    The latest victim of malware attacks against point-of-sale system vendor NEXTEL is foodservice management company Compass Group, which says payment card data for up to 70,000 users of self-service kiosks was exposed.

ARTICLE RSA Conference: Closing Thoughts

This year's event was bigger than ever, overwhelming to take in, and no single challenge, strategy...

Latest Tweets and Mentions

ARTICLE RSA Conference: Closing Thoughts

This year's event was bigger than ever, overwhelming to take in, and no single challenge, strategy...

The ISMG Network