Archive for May, 2011
The State of Data Security a report by Sophos
Posted by brianfpennington in brian pennington on 31/05/2011
Sophos has published its first report focused on data security, “The State of Data Security”. The report is excellent read with 25 pages packed full of information and advice. The report provides advice and guidance to businesses interested in protecting their data, including “Today’s IT and business managers must take a hard look at the […]
Serious Disconnect Between Businesses and Mobile Users
Posted by brianfpennington in brian pennington on 26/05/2011
McAfee have released their report “Mobility and Security: Dazzling Opportunities, Profound Challenges”. “Devices are no longer just consumer devices or business devices. They are both,” said Richard Power, a CyLab Distinguished Fellow at Carnegie Mellon University, the primary author of the report. “Devices are more than extensions of the computing structure, they are extensions of […]
25% of Mobile Network Operators are not PCI DSS Compliant
Posted by brianfpennington in PCI DSS Compliance on 25/05/2011
Vesta Corporation conducted a survey of Mobile Network Operators (MNOs) in the USA and Europe and discovered that over a quarter of them were non-compliant to the Payment Card Industry Data Security Standards (PCI DSS). Of equal concern are the 35% who did not know of the potential financial penalties they could face in the event of an […]
Fraudsters steal $1.4 Billion from Airlines
Posted by brianfpennington in brian pennington on 24/05/2011
CyberSource Corporation’s survey found that while airlines are gaining in their war against fraud, much work remains to be done. Airlines reported a loss of about $1.4 billion USD to online payment fraud in 2010. Dr. Akif Khan, CyberSource’s Director, Products and Services said: “The good news is that in terms of fraud loss rates, 2010 results […]
PCI Standards Council Announces New Board of Advisors
Posted by brianfpennington in PCI DSS Compliance on 23/05/2011
On the 20th May 2011, the PCI Council announced its new Board of Advisors. More than 600 Participating Organisations elected the Board of Advisors. Participating organisations include merchants, financial institutions and processors from around the world. The 2011-2013 PCI Board of Advisors will provide strategic and technical guidance to the PCI Security Standards Council that […]
Mobile Device Vulnerabilities at an all time high
Posted by brianfpennington in brian pennington on 19/05/2011
In study commissioned by Juniper Networks the study found that enterprise and consumer mobile devices are being exposed to a record number of security threats. The study’s key findings Include: App Store Anxiety: The single greatest distribution point for mobile malware is application download, yet the vast majority of Smartphone users are not employing an antivirus […]
A short history of Android security issues
Posted by brianfpennington in brian pennington on 18/05/2011
In its recent study, Juniper Networks uncovered some very interesting facts on the growing risk to Android base mobile devices. The time line for the development of the threats is as follows Android Attacks: 2010 January 2010: First bank phishing application for Android March 2010: First Android “botnet” July 2010: GPS monitoring embedded in Tap […]
Global Threat Report Quarter 1 2011
Posted by brianfpennington in brian pennington on 17/05/2011
The Cisco Quarter 1 2011 Global Threat Report has been released. The Cisco Global Threat Report is a compilation of data collected across the four segments of Cisco Security: ScanSafe, IPS, RMS and IronPort. The highlights for Quarter 1 2011 include:-. 105,536 unique Web malware were encountered in March 2011, a 46% increase from January 2011 […]
eCrime Trends Report Q1 2011 – Phishing Up – Rustock Down
Posted by brianfpennington in brian pennington on 13/05/2011
Internet Identity (IID) has released their eCrime Trends Report: First Quarter 2011. The report is a summary of statistics and news items from this year’s first quarter and serves as a useful reminder of how regularly breaches occur and how easy it is to forget about the last big breach. Every month seems to have […]
PCI Compliance Risks for Small Merchants and where they are failing
Posted by brianfpennington in PCI DSS Compliance on 12/05/2011
Trustwave have released a supplement to their 2011 Global Security Report on Payment Card Trends and Risks for Small Merchants report. According to the report, Merchants fail to achieve PCI DSS compliance in several areas with the Top 6 being: 99.2% Track / Monitor Network Access 98.4% Regularly Test Security 97.5% Maintain […]