Shell Oil has revealed that the personal information of a small number of its employees has been obtained by an IT contractor who was working on-site at the company, and has been used to file fraudulent unemployment claims.
The details of the so-called clickjacking attacks have been released, and it turns out the class of problems affect a wide range of software, including Adobe Flash, Internet Explorer 8 and Firefox. The attacks, which were first were disclosed late last month, enable attackers to employ a number of methods to trick users into clicking on malicious links, including overlaying entire pages, using malicious iFrames and even turning off the security protections in Flash entirely.
The whole story: http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1333899,00.html
New research has revealed that whilst 25% of all businesses have experienced security issues as a result of employees using their laptops or mobile devices outside of work, in clear contravention of company policies, as many as one in three workers are blindly unaware that such policies even existed.
PRIVATE COUNCIL information is cheaper than you might think - in fact you can pick some up for under £1. Security firm Random Storm’s Andrew Mason logged onto Ebay this August and bought some network hardware for just 99p – what followed was the unexpected. The whole story: http://www.theinquirer.net/gb/inquirer/news/2008/09/29/council-vpn-accidentally
See how you can secure you entire netowrk easily with Solsoft ChangeManager: http://www.exaprotect.com/products/changemanager/
A new report has confirmed that website hacking attempts around the globe continue to grow. In particular, the use of SQL injection attacks is increasing significantly, with hundreds of thousands of websites infected in recent months.
The results of a new global security study have revealed that corporate data is being put increasingly at risk by employees altering security settings on work devices in order to bypass IT policy so they can access unauthorized websites.
Read the rest of this entry »
A new report from the US Treasury Inspector General for Tax Administration has delivered a damning verdict on the security of internal web servers on the Internal Revenue Service (IRS) network.
Growing concerns about identity theft and fraud have led to increasing interest in speaker verification solutions. One of the reasons is that speaker verification is often seen as a more attractive option than fingerprint or iris scan-based solutions. Many companies already use speech technology in their customer contact centers, whilst from a customer perspective the only device they need to use to access a speaker verification system is their voice.
A new study finds organizations may let employees use Web 2.0 technology, but they don’t have the proper security tools in place to protect them from the new threats these applications pose.
To read the whole story: http://www.csoonline.com/article/450964/Despite_Threats_Companies_Lag_on_Web_._Security
The Internet Crime Compliant Center (IC3) has received thousands of reports concerning the hit man e-mail scam. This scam, which originally surfaced in 2006, contained a message claiming that the sender has been hired to kill the recipient.
Read the rest of this entry »
© Exaprotect. All Rights Reserved | Disclaimer | Privacy | Terms of Use
