Organizations/Events

Discover Organizations/Events News

Infosec 2010: Prepare for the information security revolution, says PwC

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Trends including the increase in web data and the number of people accessing the internet will have implications for information security in the future, says a report by PricewaterhouseCoopers (PwC), commissioned by government body the Technology Strategy Board.

Anthony Pell
Apr 28, 2010

Cybersecurity, Privacy Hot Topics at InfoSec World 2010

Each spring, the MIS Training Institute hosts InfoSec World, an educational event that brings information security practitioners together to learn from each other. This year, volcanic fallout prevented a few participants from making the trek. But those who attended were treated to detail-rich sessions about today's biggest security threats.

Anthony Pell
Apr 27, 2010

How Young Upstarts Can Get Their Big Security Break

Companies crave experience in their security staffers, dimming prospects for entry-level applicants. Bill Brenner on how a young upstart can break through. If you're young, breaking into the security industry can be hell.

Alex
Apr 26, 2010

Google is paranoid about security

Web search leader Google is paranoid about security, but only its own. Not the security of the data that it readily admits it controls.

Alex
Apr 14, 2010

Chrome Browser, Unhacked

Late last month, another kind of games was held in Vancouver: the Pwn2Own contest, where computer-security researchers were invited to hack computers using unknown, or

Anthony Pell
Apr 12, 2010

The Mighty Fall at Pwn2Own

Owners of Apple products have a tendency to be complacent about security, but the results of this year's Pwn2Own contest suggest a little more wariness may be in order. "It's the fourth year they've run the contest, and every year someone's broken into Safari," noted Charlie Miller, the security analyst who won $10,000 and a MacBook Pro for hacking the browser in this year's event.

Alex
Mar 26, 2010

iPhone, Safari, IE8, Firefox all fall on day one of Pwn2Own

Hackers took down Apple 's iPhone and Safari browser, Microsoft 's Internet Explore 8 (IE8) and Mozilla's Firefox within minutes at today's Pwn2Own contest, as expected. The two-man team of Vincenzo Iozzo and Ralf-Philipp Weinmann exploited the iPhone in under five minutes, said a spokeswoman for 3Com TippingPoint, the security company that sponsored the contest. The pair also walked away with $15,000 in cash, a record prize for the challenge, which is in its fourth year.

Anthony Pell
Mar 25, 2010

Privacy is not dead, says SXSWi keynoter Boyd

Privacy is not dead in the era of online social networking. It just needs careful curation. That was the message Saturday from Danah Boyd, a social-media expert who works for Microsoft Research and who was Saturday's keynote speaker at the South by Southwest Interactive (SXSWi) festival here.

Alex
Mar 22, 2010

RSA: DHS Chief Launches Cybersecurity Competition

Speaking at the RSA Conference in San Francisco on Wednesday, Secretary of the Department of Homeland Security (DHS) Janet Napolitano announced the National Cybersecurity Awareness Campaign Challenge Competition, a contest to solicit ideas from individuals and industry about how to best engage the American public in a discussion about cybersecurity.

Alex
Mar 04, 2010

Pwn2Own 2010: interview with Charlie Miller

Pwn2Own is a famous contest held in CansecWest Conference. Every year there is a big reward for researchers who finds exploitable bugs in popular browser and OS and also in mobile devices like iPhone. For the past two years the Pwn2Own contest champion was Charlie Miller (0xcharlie on Twitter), one of the most famous bug hunter and security expert in the world.

Alex
Mar 02, 2010

RSA Conference debuts new security gear

As RSA Conference 2010 opens this week in San Francisco, vendors are using this major security show to launch products ranging from hardware to software to virtual appliances in an effort to address specific network security needs. Here are some of those offerings.

Anthony Pell
Mar 02, 2010

Cloud Security Alliance releases top cloud computing security threats

The Cloud Security Alliance and Hewlett-Packard will release research today at RSA Conference that identifies the top threats to cloud computing. The document is a companion to the CSA's "Security Guidance for Critical Areas in Cloud Computing," which was updated in December.

Anthony Pell
Mar 01, 2010

RSA Conference 2010: 4 Survival Tips

The first time I attended the RSA Conference in 2005, I was overwhelmed. The show floor is massive and once you go in it can be hard to find the right door out. Vendor salespeople swamp you. The Tuesday-morning keynotes can be an assault on the eyes, with speakers standing in front of massive uber-resolution screens.

Anthony Pell
Feb 25, 2010

In black and white: how to use anti-spam lists

The Internet Research Task Force's (IRTF) Anti-Spam Research Group (ASRG) has produced a summary of how DNS blacklists and whitelists (DNSBLs and DNSWLs, designated in the RFC as DNSxLs) should be used and of the security issues which need to be considered when doing so. The summary is in the form of a 'Request for Comments' (RFC 5782).

Anthony Pell
Feb 19, 2010

Hackers At Pwn2Own to Compete for $100K in Prizes

A hacking contest next month will award cash prizes of $15,000 to anyone who can break into an iPhone, BlackBerry Bold, Droid or Nokia smartphone. The prizes are 50% more than the top awards given last year at Pwn2Own, which will kick off March 24 at the CanSecWest security conference in Vancouver, British Columbia. Altogether, $100,000 could be handed out by 3Com TippingPoint, the contest sponsor.

Anthony Pell
Feb 16, 2010

Open Source conference in Copenhagen

Open Source Days is the largest open source conference in the Nordic area. It's your opportunity to meet, share, and learn from professional open source experts.

Anthony Pell
Feb 11, 2010

Why CSOs Should Care About ShmooCon

Many CSOs view ShmooCon as an event of small importance. You don't see the suits and ties that are on display at RSA. In fact, to those who haven't attended, this conference is just a place where twenty-something hackers come to get drunk and throw TVs out hotel windows. Another crazy Black Hat/Defcon-caliber conference, more than one high-level security exec has told me in the past.

Alex
Feb 10, 2010

Black Hat DC: Researchers To Release Web Development Platform Hacking Tool

A technique used in Web application development platforms that provides a constant look-and-feel across multiple Web pages can potentially expose sensitive user data, such as credit-card numbers, according to researchers, who at next week's Black Hat DC will demonstrate a new class of vulnerabilities in Apache MyFaces, Sun Mojarra, and Microsoft ASP.NET. They will also release a tool that tests for the flaws.

Benjamin D. Thomas
Jan 29, 2010

Why There is no Kernel Hacker Sell-Out

As you may have noticed, posting to this blog was light last week, as in non-existent (OK, so you didn't notice.) This was because I was engaged in some serious geeking-out at the LCA2010 conference. One of the talks that I saw came from Jon Corbet, who gave a run-down on recent changes to the Linux kernel. A statistic that he mentioned along the way has garnered much comment: the fact that "75% of the code comes from people paid to do it.

Anthony Pell
Jan 25, 2010

Nmap: Network Tool turned Movie Star

Very rarely do movies put a real computer application to do a real thing, even rarely do they actually use it correctly. But, Nmap here, seems to be the hot favourite; be it CIA or NSA or a hot good-guy

Alex
Jan 13, 2010

McGrail Foundation Celebrates 20 Years of Fighting Email Threats with Its KAM Ruleset

CISA's Leads Promising New 'Secure By Design' Initiative

Linus Torvalds Addresses Malicious Developers, Hardware Errors and More at Open Source Summit