Latest Security threats and vulnerabilities News

Street survey Infosecurity Europe : working from home reaches a new dimension as 35% admit working in bed
posted on 10/04/2012

Results of Infosecurity Europe's latest street survey uncovered the vast amount of time people spend working in bed. 70% of those admit working in bed for more than half an hour a day 20% say their partners work in bed for more than an hour a day With 35% of people saying that they or their partners work from bed, it is unsurprising that people complain they don’t feel work ever stops. In fact, 5% of people who say they do work from bed, admit to averaging two hours a day! Of those admitting that they worked in bed, nearly three quarters (73%) were men The survey was commissioned by Infosecurity Europe in the run up to the 2012 event taking place from the 24th – 26th April 2012, in Earls Court, London www.infosec.co.uk. Claire Sellick, Event Director for Infosecurity Europe said, “Mobile devices and laptops have delivered great freedom by enabling people to work when they are out of the office or on the move – but surely the fact that so many people are now working from bed is j... [more]

ForeScout Proves NAC Superiority Over Other Leading Vendors in Independent Test
posted on 28/03/2012

ForeScout CounterACT Overall Bests Cisco, Juniper and Bradford Networks in Tests Conducted by The Tolly Group Akin to Proof-of-Concept Evaluation Across 34 Criteria ForeScout Technologies, Inc., a leading provider of automated security control solutions for Fortune 1000 enterprises and government organisations, today announced the results from an in-depth competitive analysis of leading network access control (NAC) vendors. Sponsored by ForeScout, the in-depth comparative analysis conducted by The Tolly Group presents comparative details in a method comparable to the evaluation processes that are undertaken by prospective NAC customers. The overall results illustrate ForeScout’s best-in-class NAC approach and lower total cost of ownership compared to Cisco, Juniper and Bradford Networks. According to Frost & Sullivan’s recent NAC market report, the four best selling NAC solutions are respectively Cisco, ForeScout, Juniper and Bradford Networks, which represent over 71 percent of th... [more]

Comment from NetIQ on data breach reports
posted on 23/03/2012

In light of the number of reports released this week that highlight threats organisations face from data breaches, NetIQ comments on the importance of both strong identity management policies and SIEM solutions to securing an organisations data. "In the last week, Verizon, Symantec and IBM have all released reports revealing the threats that organisations face from data breaches. While Symantec claim the cost per stolen record is declining, the latest research from Verizon shows that data breaches are still continuing to rise. Since we now live in a data-driven world where information is the life-blood of organisations, IT administrators need to look for ways to successfully protect data from attack. It is imperative that organisations look to implement security solutions that mitigate threats to information assets, while complying with regulatory requirements. Security information and event management (SIEM) solutions are one way of continually monitoring for threats that IT systems... [more]

IT security lessons that Australia can teach us (1/2)
posted on 22/03/2012

Paul Kenyon, COO of Avecto, on how the Australian Defence Signals Directorate could teach IT security professionals a thing or two when it comes to operating system and application whitelisting plus privilege controls ... The Australian economy - under the respected guidance of its 27th Prime Minister Julia Gillard and her federal team - is carving out a name for itself in the IT security arena. Whilst this may sound surprising, it comes against the background of Australia's (as a country) relative youth and the fact that the country has around 22 million citizens: big enough to make its weight felt in international terms, but small enough to be flexible in the modern world of IT matters. A key example of this is the country's Defence Signals Directorate (DSD) - Australia's equivalent to the US Department of Homeland Security - which has analysed some of the attack techniques used by cybercriminals and come up with four main methods of blocking them. And the Australian governmen... [more]

IT security lessons that Australia can teach us (2/2)
posted on 22/03/2012

This fully-embedded firmware approach is fairly unique to SCADA-based operating systems, but helps one to understand that a highly controlled operating system and software environment – as mandated under the Australian DSD’s diktat - has a far lower risk of subversion than the free-for-all software approach see in the cost-cutting UK public sector. Here at Avecto, whilst we understand the impetus behind moving to open source software that a growing number of UK government departments and allied public sector agencies are moving towards as part of their cost-cutting strategy, this does not mean that the Australian ideas enshrined in the DSD report cannot also be applied here in the UK. This is because the principle on which our security offerings are built is Windows privilege management - namely the control over who has access to specific applications running on the corporate IT platform, as well as the underlying data. This means, for example, that if the admin team only run their... [more]

Other Security news and resources