Posted February 6, 2012
The United States is preparing a modified version of Google’s Android operating system to allow soldiers to use smartphones. Read the story on Naked Security.
Don’t get slammed by Super Bowl scams
Posted February 2, 2012
The countdown to first kickoff in Super Bowl XLVI on February 5 has begun, and scams for knock-off team jerseys, counterfeit memorabilia, and fake YouTube videos will be sure to hammer our defenses. Here’s the article.
Alleged Russian cybercriminal extradited to the US
Posted January 19, 2012
A suspected Russian cybercriminal arrived in Manhattan on Tuesday to face charges of security fraud, computer hacking and ID theft after being deported from Switzerland. Read all about it.
Trojan may have stolen data from Japanese space agency
Posted January 18, 2012
A data-stealing Trojan horse may have smuggled out login information to gain access to a cargo shuttle that carries food and equipment to the International Space Station (ISS). Read the full story here.
SpyEye bank Trojan hides its fraud footprint
Posted January 5, 2012
The latest variants of the information-stealing SpyEye Trojan are now specializing in hiding fraudulent transactions from your online banking statements. Should we rethink giving up on our paper statements? Here’s the full story.
Researchers: Google gamed browser report that dissed Firefox
Posted December 16, 2011
Surprise, surprise: It turns out that the Google-sponsored study that painted Firefox in a poor light might have been influenced by the sponsor. Check out the story at Naked Security.
In God We Trust, but Security Vendors Need to Sign the Papers
If Anonymous, LulzSec et al. can pwn security vendors, who can protect us? Here’s help on how to rate security vendors on the sitting-duck scale.
In this two-part look at how to vet security vendors, my first article—In God We Trust, but Security Vendors Need to Sign the Papers—focuses on assessing a vendor. This is done at arm’s length by simple online research as well as by holding security vendors accountable for not living up to various agreed-upon levels of service, similar to what’s being done increasingly by the industries Veracode notes.
The second article, In God We Trust, but It’s Nice to Do a Physical Walk-Through on Security Vendors, features input from Infosec professionals on what to watch for if you can conduct an on-site visit to a security vendor.