RSS Alerts

Related Stories

  • Searching for Security
    With more than 30 000 web pages being compromised every day, search engine results could increasingly lead to malware infection. Kari Larsen asks what the search engines are doing to mitigate security threats, and how users can protect themselves
  • US standards drive Canadian information security
    An absence of legislation and the presence of the laissez-faire attitude has resulted in Canada being rather lax when it comes to information security compliance. Robin Arnfield looks at how US standards are driving the Canadian information security marketplace
  • Nine Lives - Self-modifying Malware
    As the Conficker worm proved when it first appeared in October 2008, there’s more to a piece of malware code than meets the eye, especially when it is self-updating. But can self-updating also mean self-modifying? Steve Gold investigates whether an IT security manager’s nightmare has become a programming reality
  • Battle of the Internet Browsers
    Browsers are the hacker’s window into your PC – but how are they compromised, and what are vendors doing to harden them? Danny Bradbury examines the techniques vendors are employing, and looks at why user education is one of the primary solutions for increased security
  • 2010 Virtual Conference on Endpoint Security - Beyond the Perimeter - Full conference programme revealed
    Infosecurity US magazine is excited to announce the 2010 virtual conference on endpoint security, to be held on February 25, 2010. This one-day event brings a series of topical keynote sessions direct to your computer, giving you the flexibility to learn about the latest information security trends and challenges from wherever you are in the world.

News

Infosecurity - the week in brief

02 March 2009

Arrests A Chinese official has reportedly been arrested for taking backhanders to help one local anti-virus company disrupt the business of another. Yu Bing, director of the internet monitoring department of Beijing’s Public Security Bureau, allegedly took 4.5m Yuan ($657,000) to frame executives at antivirus company Micropoint and stop its products reaching the market. The money was said to have come from antivirus firm Rising, according to reports.

UK hacker Gary McKinnon came one step closer to extradition this week after the British Crown Prosecution Service (CPS) decided not to prosecute him. It has the evidence to prosecute him, but not for the severity of the crimes that the US wants. The US has repeatedly stated that it wants to throw the book at him after he hacked into defense systems in what he said was a search for evidence of extraterrestrial activity and UFOs.

Malware
Breach Security's Web Hacking Incidents Database (WHID) 2008 Annual Report says that half a milion web sites were hit by SQL injection attacks last year. 19% of these attacks were designed to steal personal information, while 16% of them planted malware on the sites to infect visitors' machines.

Facebook
Facebook was once agan in the spotlight this week after being hit by two rogue applications, and attempting to repair its relationship with distrustful users.
After last month's imbroglio over changes in terms and conditions, Facebook has decided to ask its users first next time. Last week, an application called 'Error Check System' appeared. A message is sent to a user warning them that there are multiple errors on their Facebook profile page, and inviting them to install the application to fix them. When users take the bait, it sends the same mail to their friends. Trend Micro then reported a similar application called 'f a c e b o o k - - closing down!!!' that warned users their accounts were being suspended and encouraged them to install the application and rectify the problem. It then replicated itself in the same way. Trend Micro called on Facebook to review its application hosting terms.
The company has published a set of guiding principles which include "a town hall process of notice and comment and a system of voting to encourage input and discourse on amendments to these Principles or to the Rights and Responsibilities".

Breaches
Officials at BC's Organized Crime Agency believe that a federal employee at the Canadian Revenue Agency may have leaked information to members of a local criminal gang.

A laptop taken from the Steamboat Springs School District office contained the social security numbers of 1300 employees.

 

This article is featured in:
Application Security Compliance and Policy Data Loss Identity and Access Management Internet and Network Security IT Forensics Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water