Microsoft wants to get its suite of hosted messaging and collaboration products certified to the ISO 27001 international information security standard, part of an effort to try and assure customers about the security of its cloud computing services. It comes amid broad and continuing doubts about the ability of cloud vendors in general to properly secure their services.
Microsoft's massive security update marked the completion of the sixth year of the company's move to a monthly patch release schedule.
A former research scientist at DuPont USA who is <a href="http://www.computerworld.com/s/article/9137780/DuPont_sues_Chinese_scientist_for_trade_secret_theft">already facing civil charges</a> for allegedly attempting to steal corporate secrets from the company, has been hit with a federal criminal complaint on the same charges.
The U.S. Department of Homeland Security's effort to hire some 1,000 new cybersecurity experts could hit a wall because such skills are increasingly hard to find, according to security experts.
New scam offers to hack into any Facebook account for $100, but users who sign up could end up being the victims
More than three months after <a href="http://www.computerworld.com/s/article/9133653/Obama_outlines_cybersecurity_plans_cites_grave_threat_to_cyberspace">establishing a new White House office for cybersecurity</a> , President Barack Obama may finally be close to appointing someone to head the office.
This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web application security vulnerabilities, just as the breach at TJX focused attention on wireless issues.
A 267-page document listing all U.S. civilian nuclear sites along with descriptions of their assets and activities became available on whistleblower Web site Wikileaks.org days after a government Web site publicly posted the data by accident.
The Obama administration is considering a new military cyber command for protecting US Department of Defense networks and developing offensive cyber war capabilities, according to a report in the Wall Street Journal.
A wide-ranging cybersecurity bill introduced in the U.S. Senate this week would give the president unprecedented new powers to disconnect government and private-sector networks from the Internet in the event of security emergencies. But that provision is expected to be a hard sell in Congress.
A Gartner Inc. analyst is urging companies that do business with Heartland Payment Systems Inc. and RBS WorldPay Inc. not to switch to other payment processors just because of Visa Inc.'s decision this month to remove Heartland and RBS WorldPay from its list of service providers that are compliant with the PCI data security rules.
Acknowledging the need for controls that go beyond those offered by the Payment Card Industry (PCI) Data Security Standard, a senior Visa executive Thursday described two new initiatives to reduce payment card fraud being tested by the company.
Visa's top risk management executive Thursday dismissed what she described as "recent rumblings" about the possible demise of the PCI data security rules as "premature" and "dangerous" to long-term efforts to ensure that credit and debit card data is secure.
The Los Alamos National Laboratories has launched a month-long project aimed at ensuring that offsite computer systems fully comply the institution's information security policies. Los Alamos officials are also conducting a full review of its policies and its procedures governing the use of official computers at home by employees of the laboratory.
The US Federal Aviation Administration disclosed Monday that the personal data of more than 45,000 employees and retirees was stolen after hackers broke into a computer server at the agency.