Latest Data management and data security News

Chinese hackers target Belgian computer systems
posted on 20/05/2008

Belgian ministers have complained that Chinese hackers are targeting their country's computer systems. According to media reports, Justice Minister Jo Vandeurzen has claimed that hacking attacks against the Belgian Federal Government have originated in China, and are likely to have been at the bequest of the Beijing Government. Separately, Belgian minister of foreign affairs Karel De Gucht has told parliament that his ministry was the subject of cyberespionage by Chinese agents several weeks ago. Belgium is not the only country said to have been the alleged focus of attention by Chinese hackers. In September 2007, the Chinese military were blamed for a cyberattack which targeted a Pentagon computer system serving the office of US defense secretary Robert Gates. Unnamed sources have alleged that the People's Liberation Army (PLA) were accused of perpetrating the attempted hack. According to other media reports, the British and German Governments have also been subject to similar prob... [more]

PCI deadline will not be met by most retailers
posted on 15/05/2008

According to Gartner, most of the analyst firm’s clients will not be ready to meet the PCI-DSS Section 6.6 deadline of 30th June. After this date all merchants that accept payment card transactions will have to use either a specialised firewall to protect web applications or to have completed a web application software code review to ensure that any vulnerability is discovered and fixed. Even though these measures have been encouraged as best practice over the past 18 months, Gartner’s comments seem to point to the fact that many are still not in a position to adhere to this new regulation. Indeed, many appear to be still struggling with the exact actions they need to undertake, let alone to start putting them in place. dns believes that even retailers that have started the process are in many cases looking for a quick fix solution, focusing on installing web application firewalls, instead of undertaking the full code review. This obviously will bring them in line with current regu... [more]

UK Government's MoD secures sensitive data across RAF, Army and Navy laptops with BeCrypt solutions disk encryption solutions
posted on 06/05/2008

BeCrypt has been selected by UK Government's Ministry of Defence to provide its DISK Baseline solution with authentication tokens for twenty thousand MOD laptops. DISK Protect will be used to securely protect data which is marked up to Restricted, and is to be deployed throughout the non-DII (Defence Information Infrastructure) laptops that are used by the British Army, Royal Navy and RAF. DII(F) is one of the largest information infrastructure programmes in Europe. It will provide a computing infrastructure and services that will enable sharing of information and collaborative working to a variety of groups and individuals including those that currently have limited or no connectivity. Ultimately it will provide around 300,000 user accounts on approximately 150,000 terminals across about 2,000 MoD sites worldwide. Not only does the delivery of DII capability represent a major output in its own right, it also plays a significant part in the delivery of, and as a catalyst for, the D... [more]

TradeShield protects trading systems from attack and data leakage
posted on 06/05/2008

Trading and investment collaboration services such as Bloomberg and Reuters offer real-time inter-company and intra-company information sharing, enabling trading divisions to make quick and informed decisions. Available 24 hours a day, 7 days a week, the endpoint terminal application and services, if not managed in line with IT and security policies, could leave a business at significant risk from system intrusions, malware, data leakage, data theft, and system misuse. SkyRecon Systems has announced the release of TradeShield™, which provides unified endpoint security specifically designed for trading laptops and desktops that utilise the Bloomberg Professional applications and services. Development is underway to provide support for Reuters applications and services, which are also hosted at the trading endpoint. As a natural complement to existing endpoint anti-virus products, the TradeShield solution offers the right balance of trading service enablement, risk management, and endpo... [more]

New Log Management Appliances for Mid-Market Companies from LogLogic
posted on 05/05/2008

Compliance mandates - including the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX) - now require companies to track, manage, and report on their log data in order to comply with regulations and promote internal security and availability. LogLogic have announced new straightforward appliances architected and priced specifically for the enterprise mid-market (annual revenues between $400 million and $1 billion). The new log management appliances provide comprehensive log data compliance mandate assurance while making it easy for mid-market systems administrators to install, configure, operate and maintain them. "Complying with regulations and audit requirements are the norm for medium to enterprise companies now-a-days," said Michael Coté, Software Industry Analyst for RedMonk. "Without getting too bogged down in creating custom built systems that require initial setup and then ongoing care-feed... [more]

Other Security news and resources