Former employees sue Sony, theaters drop 'The Interview'

Four former Sony workers have filed two class-action suits claiming the company failed to plug security holes and protect their personal data.

Apple wins class-action lawsuit over iPod copyright management

Apple won a class-action lawsuit that alleged they had used a software update to ensure iPod owners could only play songs sold in the iTunes Store or downloaded from CDs.

Phishing email contains Word doc, enabling macros leads to malware infection

An employee with PhishMe was targeted by a crafty phishing email, allowing researchers to analyze an innovative attack that results in a malware infection.

Landmark HIPAA settlement confirms push to firm up patching schedules

Anchorage Community Mental Health Services (ACMHS) must pay $150,000 and integrate an action plan to meet HIPAA compliance.

Focus: Vulnerabilities

Impact of Linux bug 'grinch' spans servers, workstations, Android devices and more

Alert Logic discovered the bug, which is susceptible to exploitation due to the default installation process used by Linux.

Industry Innovators

Virtualization and cloud security

The year's Innovators in this group focus on security management in a cloud or virtual environment.

Data protection

Data protection is a fuzzy, sometimes nebulous term. Certainly everything we do on the network is intended to protect the data on it. In an era of widely dispersed global enterprise the data often seems to be alone on the internet.

Security infrastructure

Security infrastructure is another one of those ever-changing categories. What looked like infrastructure a few years ago is, for the most part, long gone.

Analysis and testing

This is a group that has a very wide reach. We found that there is a lot of "business as usual" in this group and not a lot of really eye-popping innovation.

Access Control

Access control is a fairly broad category that includes identification, authentication and authorization.


Why compliance matters

Why compliance matters

Part of my role requires me to ask questions that an auditor might. This is especially true when it comes to compliance, why it matters, and how it makes a difference.

Sign up to our newsletters