July 04, 2009
Internet Security for your Business in Asia | Search Security Asia
Updated: 2 hours 44 min ago
PayPal launches eBay seller protection
SINGAPORE – PayPal, an eBay company, announced that it is launching new protection for its eBay sellers featuring security against unauthorized payments and claims for items not received for eligible items sold on eBay websites.
Web application vulnerabilities continue to increase, says nCircle
Web application security scanners are finding increasing numbers of coding errors, according to the latest statistics from compliance auditing vendor, nCircle.
Social networking sites muddle security pros
The explosive growth in social networking has positioned many security teams solidly between a rock and a hard place. On the one hand, conscientious security executives cannot ignore the data loss and regulatory compliance risks to the corporation; on the other hand, security cannot politically survive by categorically objecting to other organizations innovative use of new business tools.
Month of Twitter Bugs focuses on Bit.ly flaws
A security researcher highlighting vulnerabilities in third-party Twitter applications this month focused on several serious cross-site scripting (XSS) flaws in the popular Bit.ly link-shortening service.
Juniper postpones ATM hacking presentation
A Juniper Networks Inc. security researcher who planned to demonstrate a way to hack the software of an ATM at the Black Hat Briefings in Las Vegas had his presentation pulled at the request of the ATM vendor.
Open Text adds to Open Text ECM Suite
SINGAPORE – Open Text, a provider of Enterprise Content Management (ECM), announced a portion of its Enterprise 2.0 strategy with Open Text Social Media.
MasterCard adjusts PCI compliance requirements
A recent change in MasterCard Inc's PCI compliance requirements means merchants processing between one million and six million transactions annually will likely have to spend more time and money on PCI compliance.
New Trojan assaults FTP websites
Security researchers have discovered a new Trojan that has harvested as many as 80,000 unique FTP server logins and is now beginning to target domains, injecting malicious scripts into compromised FTP sites.
Mobile Money Venture launches mobile banking service in the Philippines
HONG KONG - SK Telecom announced that Mobile Money Ventures LLC (MMV), its joint venture company with Citi, launched a browser-based mobile banking service in the Philippines that will allow customers of Citi to efficiently manage their banking needs from any location via their mobile phones.
MessageLabs publishes June 2009 Intelligence Report
SINGAPORE – MessageLabs, now part of Symantec Corp., announced the June 2009 publication of MessageLabs Intelligence Report which highlights constant spam levels since May at 90.4% largely due to the several hours of downtime experienced by Cutwail, one of the largest and most active botnets, fo
RSA, Cisco partnership provides new email security solution
SINGAPORE – RSA, the security division of EMC, announced its partnership with Cisco to embed data classification technology and policies from the RSA Data Loss Prevention (DLP) Suite into
Michael Jackson, Farrah Fawcett deaths used to spread malware
As expected, online criminals were quick to exploit the deaths of pop icon Michael Jackson and actress Farrah Fawcett, security researchers said.
Adobe patches Shockwave Player flaw
Adobe Systems Inc. is warning customers about a critical flaw in Shockwave Player that could be used by an attacker to take complete control of a victim's machine.
Social engineering training helps prevent attacks
Social engineering has become such an integrated part of our lives that it is accepted without question. Its over usage has made it an easy tool for attackers. It has led to the creation of botnets, which feed on controlling social behavior to spread more malware and steal sensitive information.
Kaminsky interview: DNSSEC implementation
Network security researcher Dan Kaminsky has had a year to reflect on the impact of the cache poisoning vulnerability he discovered in the Domain Name System (DNS). Kaminsky revealed during last year's Black Hat Briefings a technique that made it relatively easy to exploit the bug and enable an attacker to redirect website requests to malicious sites.
TJX fined for $9.75M for data breaches
TJX Companies, Inc., which has undergone a barrage of lawsuits as a result of a massive data breach of its systems, agreed to pay $9.75 million, settling a lawsuit brought on by Attorneys Generals from 41 states.
Simple Facebook flaw put members at risk of identity theft
IT security and control firm Sophos is again reminding Internet users that their personal information may be being placed at risk - and is perhaps best kept off the internet - following news that popular social networking website Facebook contained a flaw that could have allowed hackers to access sensitive profile information about any of the site's 200-million-plus users.
Cost of fraud, corruption could hit US$500 billion as govts try to plug ailing economy
The combined sum of US$5 trillion that major governments have poured into their economies worldwide has unintentionally introduced new opportunities for fraud and corruption worldwide, according to the latest edition of the Kroll Global Fraud Report.
Content analysis underlines DLP's strategic scope
Data loss prevention or DLP as we know it today is poised to embrace a broader, more strategic scope as organizations tap content analysis capabilities to address not only security concerns but also knowledge management (KM) and information governance needs.
ICSA Labs offers closer alignment with PCI Data Security Standard
ICSA Labs, an independent division of Verizon Business, has announced on Tuesday (June 23) the availability of new reports that can help businesses that store, process or handle credit card transactions comply with industry requirements for the secure handling of this data.
