Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

 Data Leakage Prevention

Lawsuits in Sutter Health breach to be rolled into one

March 08, 2012

Following the theft of a computer at Sutter Health in October that put the personal information of more than 4.2 million patients at risk, 11 class-action lawsuits were filed against the Sacramento, Calif.-based nonprofit.
 

Defining a DLP strategy

Jeffrey Brown, global information security program manager, GE Capital • March 01, 2012

DLP solutions remain fairly immature, but the need to protect and monitor sensitive information is greater than ever.
 

Patient data at U of M hospital breached

February 06, 2012

A thief broke into a doctor's car and stole a briefcase containing a flash drive that held personal data on patients of University of Miami Miller School of Medicine.
 

'Tis the season for consumerization of IT

Nathan McNeill, co-founder and chief strategy officer, Bomgar December 19, 2011

With the holidays right around the corner, expect many workers to soon be returning from their breaks with shiny new personal devices, like an iPad, in hand -- and wanting to connect them to the corporate network. IT departments must have a response plan in place.
 

Sutter Health faces lawsuit after lost computer

November 23, 2011

The unencrypted data of 4.2 million Sutter Health patients went missing last month, and now the health care providers faces legal action.
 

Security spending to increase in 2012, survey shows

November 22, 2011

While the nation's economy remains in the tank, the information security market appears to be avoiding a major slowdown.
 

SC Congress New York: Security is about the basics, with a personal touch

November 16, 2011

Organizations must accept that they have been compromised by attackers and apply some personal craft to limit the damage, two security experts said during a panel Wednesday at SC Congress New York.
 

Best Data Leakage Prevention & Best Database Security Solution

November 08, 2011

Throughout the day, SC Magazine will be announcing the finalists from each of its 32 award categories, covering the Reader Trust, Professional and Excellence sections.
 

HTC confirms hole in its Android phones

October 04, 2011

HTC plans to release a patch after a "short" testing period, the company said Tuesday.
 

Can we stop hacktivism?

Matthew Pascucci, information security analyst, financial services firm October 04, 2011

The answer is "no," but that doesn't mean security professionals are hopeless in defending their networks against politically minded intruders. Not to mention, you have more in common with them than you might think.
 

It's all about the data

October 03, 2011

If we didn't care about who sees, damages or alters our data, we wouldn't need to waste millions of dollars on the tools of our trade, says Peter Stephenson, technology editor.
 

Sponsored video: Steve Livingston of Deloitte on risk

September 22, 2011

In a conversation with SC Magazine Executive Editor Dan Kaplan, Steve Livingston, principal of Deloitte Enterprise Risk Services, chronicles how people, processes and technology can combine to create a robust risk framework that achieves buy-in from senior management.
 

Virtualization guidelines issued to supplement PCI DSS 2.0

June 14, 2011

The PCI Security Standards Council on Tuesday released "PCI DSS Virtualization Guidelines" to update credit card payment security to the age of cloud computing.
 

Tax season: The IRS is the least of your concerns

Frank Kenney, vice president of global strategy at Ipswitch File Transfer March 21, 2011

With the April 18 tax deadline looming, security isn't top-of-mind for the employees in your finance, audit and operations departments.
 

Post-WikiLeaks: Back to basics

Maurice Hampton, information security and privacy services leader, Clark Schaefer Consulting March 01, 2011

Dust off your company's risk assessment process and make sure it is up to date because this is where your approach to defending against a WikiLeaks type of threat is going to start.
 

Before tech, process and policy

Michael Gabriel, director of the FLIGHT Data Protection Practice at Integralis March 01, 2011

Data leakage prevention (DLP) is garnering a lot of attention as a cure-all for risk management.
 

RSA Conference 2011: CISO panel expects innovation, offers advice

February 16, 2011

Tools that better classify data, provide deep-packet inspection and offer risk management for organizations migrating to the cloud are three solutions areas ready to make their mark in the security industry, predicted a panel of CISOs on Tuesday.
 

The WikiLeaks challenge: Remember the risks associated with third-party exposure

Kimberly Kiefer Peretti, director of the Forensic Services practice, PricewaterhouseCoopers February 13, 2011

When guarding against data breaches, organizations must consider the security postures of their closest partners, such as law firms and cloud providers.
 

WikiLeaks-prompted assessments due this month

January 06, 2011

Federal departments and agencies that handle classified data are required by Jan. 28 to complete an assessment of the safety measures they have in place to protect national security information, an effort prompted by the leak of confidential U.S. documents by whistleblower site WikiLeaks.
 

Learning from Assange

Will Warrick, security evangelist, Protegrity January 05, 2011

It is important for organizations to consider the basics if they want to avoid the leakage of sensitive information.
 

How the WikiLeaks crisis could have been prevented

Ken Ammon, chief strategy officer, Xceedium December 16, 2010

Trusting no one may soon become the new mantra in IT security, given the leak of sensitive U.S. diplomatic cables.
 

WikiLeaks prompts U.S. government to assess security

December 01, 2010

The federal government is moving quickly to deploy new security measures in light of the leak of hundreds of thousands of classified U.S. documents by whistleblower site WikiLeaks.
 

Data protection and controls: Does format really matter?

Andres Tabares, CISSP October 22, 2010

Organizations must consider the entire lifecycle of data, even when in hardcopy form, when implementing a security strategy.
 

Delaware retirees' personal information posted on state website

August 31, 2010

The personal information of Delaware state retirees was included in a request for proposal that made its way onto the state's website for five days before it was discovered and removed.
 

Security budgets stable or increasing at financial firms

June 18, 2010

Drivers such as compliance and insider threats are helping to keep information security budgets at financial institutions alive and well, according to a new study.
 

Walking the tightrope: social media and data protection in the enterprise

Mark Menke, chief technology officer, Code Green Networks June 03, 2010

Organizations may want to second-guess a more restrictive strategy on website access and settle on a more pragmatic approach.
 

Smartphone security policies: Interview with Eduard Goodman, CPO of Idenity Theft 911

May 14, 2010

SC Magazine reporter Angela Moscaritolo interviews Eduard Goodman, chief privacy officer of Identity Theft 911, who says businesses are slow to develop policies for mobile device use, and smartphones can be the cause of many breaches.
 

New SharePoint bug opens corporations to data loss risk

April 30, 2010

Microsoft has disclosed a zero-day vulnerability in SharePoint after a Swiss security firm released details about the threat, which can be leveraged to siphon sensitive data from business users.
 

How IT can win the security battle

Matthew Steele, director of strategic technology, Symantec March 12, 2010

 

Let's get back to reality

Lysa Myers, director of research, West Coast Labs March 10, 2010

Reality sets in not longer after taking an information security job, as step two of this author's "Five Stages of Employment" series continues.
 
Popular Topics
4G-war Advanced Persistent Threat Adware AMTSO Anonymous Botnets Cyber Attacks Cyber Crime Data Breach Data Breaches Encryption Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Phishing Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws