W3C fires first shot in war against scripting and injection attacks December 2011 | Derek Parkinson | Leave a comment Work is underway at W3C to strengthen the security of web browsers with the release this week of the first draft of its Content Security Policy (CSP). In simple terms, CSP is an extension to HTTP that enables whitelist policies … Continue reading → Tweet
Four in ten companies “unsure” what data old PCs contain November 2011 | Derek Parkinson | Leave a comment Many large UK companies are failing to ensure that confidential data is destroyed when their IT equipment reaches the end of its working life, putting their own staff, customers or partners at risk of fraud, or further serious security breaches. … Continue reading → Tweet
Security and privacy: top concerns for converts to cloud November 2011 | Derek Parkinson | Leave a comment Security and privacy top the list of concerns for UK organisations that currently use cloud services, or plan to do so in future, according to a cross-sector survey commissioned by the Cloud Industry Forum (CIF). Security is a concern for … Continue reading → Tweet
Security as a service market could reach $50bn in 2015 November 2011 | Derek Parkinson | Comment (1) Pressure to cut operational costs, coupled with the need to draw on greater expertise and resources will help to boost the global market for managed security services from $35.1bn in 2011 to $49.1bn in 2015, according to Gartner. Organisations of … Continue reading → Tweet
WikiLeaks insider: workload was “simply insane” for one organisation October 2011 | Derek Parkinson | Leave a comment The funding woes that may shut down WikiLeaks entirely mark the end of an era for the online support available to whistleblowers, to be replaced by a broader, more collaborative approach, says Herbert Snorasson, former WikiLeaks member and a founder … Continue reading → Tweet
Social media at work – risks outpace security September 2011 | Derek Parkinson | Leave a comment Organisations face growing pressure from social media in the workplace as they try to exploit its benefits while managing the risks. Some 63% think that social media introduces security risks, while just 29% say they have the controls in place … Continue reading → Tweet
Dutch court begins DigiNotar shut down September 2011 | Derek Parkinson | Leave a comment Stricken Certificate Authority DigiNotar has today filed for bankruptcy in a Dutch court, giving a Judge the task of closing down the company, bringing an end a chaotic ten weeks which saw trust in DigiNotar evaporate and its reputation ruined. … Continue reading → Tweet
Google urges EU to adopt cloud-friendly privacy regime September 2011 | Derek Parkinson | Comments (3) EU adoption of cloud services is being held back by inconsistent approaches to security in the laws of member states, Google has told the European Commission. The company’s submission is part of a public consultation that will help to shape … Continue reading → Tweet
ENISA offers five points towards smartphone app security September 2011 | Derek Parkinson | Leave a comment Protecting smartphone users against rogue apps will become the central battleground in the fight against cyber crime, says a new discussion paper from ENISA. It aims to explore five types of defence that together will minimise risks to the end … Continue reading → Tweet
Symantec research – “Well-meaning insiders” are wider threat than “hacktivists” and “targeted attacks” August 2011 | Derek Parkinson | Leave a comment When probed about which actors pose the significant threats, some 46% of security professionals in 3,300 companies worldwide identify “well-meaning” insiders, according to the latest research from Symantec. It isn’t clear from the results what contribution IT or security staff … Continue reading → Tweet
