Around The Web

PC WORLD
University Of Tampa Data Breach: Student Info Exposed For 8 Months
Poor decisions on the part of University of Tampa IT officials lead to an exposure of nearly 7,000 student names, social security numbers, and dates of birth for nearly eight months. The mistake was discovered only after a student project involving advanced search techniques discovered the available information

CNET
Why 'Data Breach' Isn't A Dirty Word Anymore
Just a few years ago, no one could predict how a company suffering a large breach, like Heartland Payment Systems, might eventually fair. The common consensus is, pretty well, so long as the breach is treated candidly and the company communicates effectively

THE WALL STREET JOURNAL
Cost of Data Breaches Continues To Rise
A recent Ponemon Institute study of 36 British companies found that the company's cost per breach rose significantly over the last year. The increase is credited to a greater consumer awareness of the dangers of a data breach, spurring the companies to spend more to protect data

PC WORLD
IBM: Internet Security Better, Exploits Worse
IBM 2011 Trends and Risk Report had a mixture of good and bad news. On the upside, the rate of spam was down, exploits are fewer and SQL injection attacks were down. On the downside, shell command injection vulnerabilities doubled or possibly tripled over the last year

INFOSECURITY MAGAZINE
China Arrests Suspect In Data Breach Affecting Six Million CSDN Subscribers
Five hackers have been arrested by the Chinese government for breaching the security of the China Software Developers Network. User IDs, passwords, and email addresses of six million customers were posted online, with wide repercussions for customers. CSDN itself was given administrative punishment for its lax security

TECHNEWSWORLD
Lulzsec Rears Its Smirking Head In Military Dating Site Attack
While many security professionals breathed a sigh of relief last year after claims that LulzSec had been neutered, it seems as if the celebration might have been premature. The hacker collective claimed responsibility for breaching Militarysingles.com and posting personal information of hundreds of users on Pastebin

PCWORLD
Hacktivism Was The Leading Cause For Compromised Data In 2011, Says Verizon
Verizon analyzed over 800 security breaches from 2011 and found that, while the plurality of cases involved the hope of financial gain, over half of incidents in which data was lost were hacktivist-oriented. Analysts postulate that criminals tend to target the SMB market with focused attacks, while hactivist attacks target large companies and grab whatever they can get their hands on

COMPUTERWORLD
RockYou Settles FTC Charges Related To 2009 Breach
Social gaming company RockYou has settled with the FTC after over two years of investigation. The company was accused of negligently allowing a breach of 30 million passwords and user IDs. Charges also included the allegation that it had violated the Children's Online Privacy Protection Act by collecting the email addresses of over 180,000 minors without parental consent

MORE >>>

Related Content

Sponsored by:

Establishing a Strategy for Database Security is No Longer Optional
As databases continue to grow in size, complexity and importance, enterprises struggle to identify the most appropriate controls regarding their use and misuse. The report identifies best practices, including: Implementing database activity monitoring to mitigate the high levels of risk from database vulnerabilities, and address audit findings in areas such as database segregation of duties and change management; using data security measures, such as data masking and data encryption; and monitoring privileged-user access and access to critical data.

Database Activity Monitoring Is Evolving Into Database Audit and Protection
In this report, Gartner writes that "Database audit and protection (DAP) represents an evolutionary advance in database activity monitoring tools." DAP suites provide comprehensive, cross-platform support in heterogeneous database environments to protect sensitive data from inappropriate use. Organizations are increasingly concerned with optimizing database security and mitigating risks associated with database vulnerabilities.

Protecting Against Database Attacks and Insider Threats: Top 5 Scenarios
Data security presents a multi-dimensional challenge in today's complex IT environment. Multiple access paths and permission levels have resulted in a broad array of security threats and vulnerabilities. We invite you to read this new eBook: "Protecting against database attacks and insider threats" to learn the top five scenarios and essential best practices for preventing database attacks and insider threats.

Demo: Distributed Database Security with Real-time Monitoring and Audit Protection
Organizations across the globe continue to experience compromised data caused by malicious attacks, web application vulnerabilities or unauthorized changes. View this demo and learn how IBM InfoSphere Guardium? database activity monitoring can help protect your sensitive data in distributed DBMS environments with a holistic approach to data security and compliance.

Look Beyond Native Database Auditing To Improve Security, Audit Visibility, And Real-Time Protection
Today's attacks on enterprise databases are more sophisticated than ever, and they occur so fast that it's often difficult to stop them in real time. Despite significant efforts to protect enterprise databases, the number of records breached has grown each year - due to all types of internal and external attacks and violations of corporate policy.