Mobile apps on course to repeat past mistakes December 2011 | Derek Parkinson | Leave a comment Mobile devices bring avoidable risks to the workplace because developers of mobile applications are repeating some basic security mistakes previously made with web and enterprise apps, Veracode has warned. For the first time, the company’s State of Software Security Report, … Continue reading → Tweet
ENISA: crypto and clouds won’t save us from “life-logging” dangers November 2011 | Derek Parkinson | Leave a comment Excessive reliance on data encryption and cloud services will increase the risk of security breaches as rapidly growing quantities of our personal data are stored online in the next few years, ENISA has warned. The EU agency assembled a panel … Continue reading → Tweet
Microsoft, Google, Mozilla move to allay fears of BEAST September 2011 | Derek Parkinson | Leave a comment Browser developers Microsoft, Google, and Mozilla have moved to reassure users that they are working on a fix for BEAST, which exploits a flaw in a widely used form of encryption, with the potential to expose confidential web data to … Continue reading → Tweet
Half of UK cloud customers hit by “data security lapse or issue” June 2011 | Derek Parkinson | Leave a comment Security remains a key concern about cloud-based services, with an average of 43% of customers suffering a “data security lapse or issue” within the last 12 months, according to a global survey by Trend Micro. The UK is second only … Continue reading → Tweet
Russian researchers crack iPhone iOS4 encryption May 2011 | Redaction | Leave a comment Forensic experts at ElcomSoft are claiming a world first in cracking the encryption that Apple uses to protect file system data in iOS4 devices such as the iPhone. All Apple devices starting with iPhone 3GS and running iOS4 are affected, … Continue reading → Tweet
Rogue mobile networks – within the grasp of criminals February 2011 | Redaction | Leave a comment Fundamental flaws in the way mobile phones communicate with base stations and wider availability of base station hardware add up to serious concerns for the security of mobile telephony, delegates at RSA 2011 were told last week. “The phone authenticates … Continue reading → Tweet
RSA spotlight fixed on clouds of uncertainty February 2011 | Redaction | Leave a comment To become widely accepted, cloud computing must tackle uncertainty about who makes the final decision – vendors or customers – about what happens to data, Bill Duane of RSA told delegates at RSA 2011. Who is in control in the … Continue reading → Tweet
IPv6: addressing some security issues January 2011 | Redaction | Leave a comment As reserves of IPv4 addresses finally dry up efforts are underway to speed up migration to IPv6. This brings new issues for IT security professionals to deal with, particularly network administrators and engineers. For most there will be a phased … Continue reading → Tweet
End in sight for Gawker password problems? January 2011 | Redaction | Leave a comment Gawker Media has revealed plans to implement new user authentication technology for its network of sites in February, abandoning the password-based system that has given it so many security headaches in recent months. The Gawker Media network will migrate to … Continue reading → Tweet
Home Office faces RIPA review backlash July 2010 | Redaction | Leave a comment The Government’s review of key legislation governing police monitoring powers could have an adverse effect on crime-fighting abilities, according to the Local Government Association, which represents local councils across the UK. The LGA warned that the review by the Home … Continue reading → Tweet
