Archive | December, 2011

Would You Fire This Person?

In this case study, I present you with a problem employee. You are hereby invited to help his frazzled boss either a) deal with this employee or b) show the guy the nearest exit. I solicited input from a bunch of IT bosses and management experts regarding how they’d respond, and at the end I reveal the true fate […]

1 Comment Continue Reading →

In God We Trust, but Security Vendors Need to Sign the Papers

If Anonymous, LulzSec et al. can pwn security vendors, who can protect us? Here’s help on how to rate security vendors on the sitting-duck scale. In this two-part look at how to vet security vendors, my first article—In God We Trust, but Security Vendors Need to Sign the Papers—focuses on assessing a vendor. This is done […]

Leave a comment Continue Reading →

Windows Phone 7.5 susceptible to SMS hack

A researcher has discovered a flaw in Windows Phone 7.5 “Mango” that can crash the message center by simply receiving a malformed SMS, Tweet or Facebook message. Here’s the story.

Leave a comment Continue Reading →

Google-funded study finds Firefox least secure browser, Chrome the best

A new study has tossed the big browsers into the security mosh pit and decreed that Google’s Chrome comes in first, ahead of Internet Explorer and Firefox. But when it comes to the top three, is security more about your browser being up to date and properly configured than its brand? The full story is […]

Leave a comment Continue Reading →

Four Romanians charged with multimillion-dollar hack of Subway, others

The US Department of Justice has indicted and arrested four Romanians for credit card fraud perpetrated against Subway restaurants and other retailers concluding a three year investigation. Looks like default/easily cracked passwords enabled another needless theft. Here’s the full story.

Leave a comment Continue Reading →

Verizon blocks Google Wallet over security concerns

Verizon and Google are sparring over who will control mobile phone payment systems, but consumers seem to be left without choice in the United States. Read more here. 

Leave a comment Continue Reading →

Election-day cyber attack scandal rocks South Korea’s ruling party

Did governing politicians in South Korea approve an election-day cyber attack? Three of South Korea’s top seven leaders quit their posts over the DDoS scandal. Read more. 

Leave a comment Continue Reading →

XXX porn web domain names now up for grabs

Pornography domain names ending in .xxx are now up for general sale, with 100,000 having already been snatched up in a previous, restricted sale. All registered .xxx sites will be scanned for malware daily, but don’t trust that to replace up-to-date anti-virus software. Here’s the story. 

Leave a comment Continue Reading →

Condom ad poses as Facebook friend request from your fetus

A condom company is sending friend requests from unborn sons to male users on Facebook. Do you feel it’s harmless advertising or a step too far (and a breach of Facebook’s terms and conditions)? Read the story. 

Leave a comment Continue Reading →

New zero-day Yahoo Messenger exploit allows malware to spread via hijacked status updates

An unpatched zero-day flaw in Yahoo Messenger allows remote attackers to meddle with any user’s status message, opening an opportunity for malware to spread. Check out the full story.

Leave a comment Continue Reading →