Get your contingency plan in place before you suffer a DDoS attack, says Gary Newe, suggesting that you prioritise revenue generators and work through the plan calmly and systematically.
Businesses too complacent with software security education - Bola Rotibi, ISC(2) board member
A stellar panel of infosec experts told a packed audience at SC Congress London on Thursday that security awareness can play an integral role in educating C-suite on threats coming from inside and outside the company.
Some may say that the lack of a recognised entry qualification for the information security industry is a good thing, for while professionalising ensures a baseline of competence, it can also be a barrier to talent from unexpected quarters.
The UK Government is stepping up plans for developing the cyber-security sector, with support for students and teachers.
IT consultancy Capgemini has teamed with Aston University to offer two work-based BSc degrees in software engineering and information systems.
The Obama administration has launched the Cybersecurity Framework, which aims to educate organisations on the risks facing critical infrastructure systems.
The ignorance of most UK office workers about phishing, one of the most lethal forms of cyber threat, has been revealed in a new study.
Careless employees are the biggest security concern for IT professionals, research shows, prompting calls for CISOs to step up staff education and the use of technology.
In a special one-off case study linking our themes of PCI compliance and security spend, Random Storm technical director and co-founder Andrew Mason describes to SC a case study that tackles both issues with the aid of league tables.
Businesses can accept employee device promiscuity without causing difficulties for IT management, says Centrify's Darren Gross.
A New Year means new jobs for IT security experts.
IT departments are short on time and security tools, and are under more threat than ever before.
Threats are becoming more sophisticated, and cybercriminals are getting smarter at evading new authentication controls, according to an RSA Conference panel of security practitioners representing three major financial institutions.
The security services company is to try to help enterprises protect their web-based apps from attacks like SQL injection, buffer overflow and cross-site scripting
How to prepare a disaster recovery plan and DR policy plus how to assess risks are among the topics taught at a residential training course aimed at security professionals
A security researcher on Saturday is set to unveil the first website-scanning script, a tool which allows attackers to gain control of infected users' web browsers and drastically reduce the time it takes to search the web for vulnerabilities.
Educating consumers about internet risks is a dicey proposition, one security expert said during a panel at RSA Conference 2007 in San Francisco.
Smile, relax, listen and exude confidence — but keep that ego in check. Oh, and don't forget that morning pep talk with yourself.
Security professionals from around the globe gathered in San Francisco today to kick off RSA Conference 2007.
International cooperation among law enforcement agencies is key to taking the allure from cybercrime, a panel of experts said today at a Kaspersky Lab-sponsored breakfast in New York.
A handful of data security companies announced they're forming a new alliance to advocate for firms who must comply with the payment card industry data security standards (PCI DSS).
Windows Vista may be hailed as Microsoft's most secure operating system to date, but the platform contains weaknesses in its default anti-malware capabilities, one security vendor has concluded.
Experts from the University of California, Davis warned this week that the reliability of fingerprint biometrics has declined considerably due to technological concerns and a growing world population.
While the percentage of infected emails declined significantly last year, web-related threats rose significantly, reported researchers at Sophos this week.
The use of image spam continues to grow, now accounting for as much as two-thirds of all spam, security researchers said this week.
Newsletter creators aren't the only ones hoping their products don't get caught in spam filters now that hackers have begun using newsletters to launch spam.
A U.S. District Court in California has ordered a movie download service to stop barraging users with pop-up advertisements.
Two vulnerabilities were reported today in a CA backup and recovery solution that, if exploited, could allow an attacker to execute remote code and gain unauthorized administrative privileges.