Get up-to-the-minute news and opinions, plus access to a wide assortment of IT security resources that will keep you current and informed.

Keep me logged in Forgot your password?

Please wait...

Please wait...

Bredolab botnet mastermind sentenced to four years

An Armenian man charged in 2010 with running the Bredolab botnet was sentenced this week in his home country to four years in prison.
 

Anonymous hacks DoJ and dumps data online

The infamous hacktivist collective Anonymous released a 1.7-GB archive of sensitive information after infiltrating the U.S. Department of Justice.
 

Hacktivists take down Chicago Police Department website

A hacktivist group affiliated with Anonymous took down the websites of the city of Chicago and its police department on Sunday.
 

MySpace settles with FTC after misleading users

After being charged by the Federal Trade Commission (FTC) with sharing its users' personal information, including browsing habits, with advertisers, social networking service MySpace has agreed to settle.
 

More Mac security updates to extinguish Flashback trojan

To further stop the spread of the Flashback trojan, Apple on Monday released two security updates for Mac OS X 10.5 (Leopard).
 

Apple releases Safari, OS X fixes

Apple and Adobe this week released patches for vulnerabilities that could enable attackers to execute malicious code.
 

Twenty-three Microsoft fixes set for Patch Tuesday

Microsoft on Tuesday plans to dispense seven patches to correct 23 security vulnerabilities.
 

Wrigley Field fans targeted by skimming scam

A group of six has been charged in the latest scam to defraud bank customers through the use of skimming devices, a trend that has seen a noticeable uptick in arrests and prosecutions over the past year.
 

News briefs: The latest news from Apple, Verizon and more

News briefs: The latest news from Apple, Verizon, CrowdStrike, FTC and more
 

VMware source code leaked onto internet

Virtualization software vendor, VMware, confirmed this week that source code from its ESX hypervisor technology was leaked onto the internet.
 

Google to offer up to 20K prize for bug finds

Google has significantly increased its finder's fee for vulnerability researchers.
 

WordPress gets updated for security issues

WordPress installations received a security upgrade on Friday to patch a number of vulnerabilities.
 

Alleged CabinCr3w member denies hacking police sites

A 21-year-old Ohio man has pleaded innocent to charges he hacked into the websites of the Utah Chiefs of Police Association and the Salt Lake City Police Department to release sensitive data, which included crime tips and personal information about officers.
 

Palo Alto Networks to go public

Palo Alto Networks, maker of hardware firewalls that offer controls over applications, has announced plans to file for an initial public offering (IPO) to raise up to $175 million in stock.
 

Visa warns of phone phishing after Global Payments breach

Visa is advising its customers to be wary of phone scams in which fraudsters request their credit card information under the guise that they need it for "security reasons" in light of the major data breach that affected Global Payments, according to a Tuesday alert from Visa.
 

LulzSec hacker reverses guilty plea for Sony Pictures attack

An accused member of the hacktivist group LulzSec pleaded guilty Thursday in federal court in Los Angeles to charges of hacking into the systems of Sony Pictures Entertainment, according to reports.
 

Anonymous turns attention to Chinese web oppression

Anonymous has found a new target. The hacktivist group has defaced some 500 Chinese business and government websites over the last week, a protest against the government's censorship practices.
 

Report: Top-ranking websites serve malware, too

Visiting a well-trafficked, seemingly trusted website won't necessarily save web surfers from getting malware installed on their computers, according to security firm Barracuda Networks.
 

Adobe researcher creates open-source malware analyzer tool

An Adobe security researcher has released an open-source analyzer tool that can determine whether a Win32 binary file contains malware.
 

News briefs: LulzSec head worked with FBI, Sony breached, and more

News briefs: LulzSec head Sabu worked with FBI, Extension in DNSChanger servers, Sony breached again, and more
 

Adobe patches Flash, includes automatic update option

Adobe on Wednesday released an update for its Flash Player, which includes a capability for users to receive future updates automatically.
 

Hacker who stole racy photos of celebrities pleads guilty

Following a plea deal that more than halved the prison time he faces, a 35-year-old Florida man admitted Monday to hacking into the email accounts of Scarlett Johansson, Mila Kunis, and dozens of other celebrities to steal photos, emails and other documents.
 

Maryland man receives 66 months for credit card skimming

A 33-year-old Maryland man on Friday was sentenced to 5 1/2 years in prison for participating in an identity theft and credit card skimming scheme, according to the U.S. attorney's office in Alexandria, Va.
 

Facebook advises users: Don't share passwords

Facebook issued an advisory on Friday to make certain its users do not reveal their passwords to prospective employers.
 

TRICARE breach victims report financial fraud

Victims of the TRICARE breach have experience financial fraud, leading to an amended complaint filed against the Defense Department.
 

Mozilla greenlights encrypted Google search by default

Mozilla, which controls roughly a quarter of the browser market, plans to turn on encrypted Google search by default for Firefox users, according to release notes.
 

Symantec buys Nukona, second mobile acquisition this month

Security giant Symantec on Tuesday acquired Nukona, a privately held provider of mobile application management solutions, for an undisclosed amount.
 

Mozilla releases patches for "critical" vulnerabilities in Firefox 11

Mozilla released patches for 12 vulnerabilities in Firefox 11, the newest version of its web browser.
 

Security functions added to Internet Explorer 10

Microsoft's Internet Explorer 10 features two new security functions that prevent exploits that target memory.
 

Safari update plugs scores of holes

Apple late Monday released a new version of its Safari browser to patch a record number of vulnerabilities, many of which could lead to code execution if a user visits a malicious website.
 

Apple pushes security update for iPhone, iPad

Apple on Wednesday updated its iOS mobile operating system to rectify more than 80 vulnerabilities.
 

Facebook users experience two-hour blackout

Facebook users in Europe experienced a two-hour blackout that the company describes as "technical difficulties."
 

Adobe Reader attacks continue two years after patch

JavaScript-based attacks taking advantage of an Adobe Reader and Acrobat vulnerability patched in 2010 are continuing in waves, Symantec researchers said this week.
 

Oracle patches highly exploited Java for 14 flaws

Oracle on Wednesday pushed updates for its Java Standard Edition (SE) to address 14 vulnerabilities
 

Adobe patches Shockwave Player, RoboHelp

Adobe on Tuesday released security updates for its multimedia platform Shockwave Player and RoboHelp for Word, a tool used to author content for online help systems.
 

New Chrome version contains malware download security

Google has issued an official update to its Chrome browser to fill 20 security holes, one of which is deemed "critical" and eight of which are considered "high" in severity.
 

Two suspects skim cards at the ATM door

Two men have been charged with applying a new take on ATM skimming fraud -- placing the data-stealing device on the card reader at the door, not on the actual cash machine.
 

Adobe announces Flash sandbox for Firefox

Adobe has added a beta sandbox feature to its Flash Player running in the Mozilla Firefox browser, the company announced Monday
 

Apple ships Mac OS X, Safari updates

Apple on Wednesday released a new version of Mac OS X, 10.7.3 (Lion), to address nearly 50 security vulnerabilities.
 

SEC accuses Latvian man of hacking brokerage accounts

The federal Securities and Exchange Commission has charged a Latvian man with participating in a scheme that manipulated the value of more than 100 New York Stock Exchange and Nasdaq stocks.
 

Just-patched critical Microsoft bug under attack

Researchers warned Thursday that a recently patched vulnerability in Windows Media is being used by remote attackers to launch malware.
 

Android app claims to be Madden 12 video game

With the Super Bowl less than two weeks away, Symantec researchers said Tuesday that have spotted a malicious application in unofficial Android markets claiming to offer a version of the popular video game Madden NFL 12.
 

Symantec extends cloud offerings

Symantec has acquired LiveOffice, a privately held cloud-based archiving provider, for approximately $115 million.
 

Anonymous, Reddit to protest SOPA with blackout

Hacktivist group Anonymous and the popular news-sharing site Reddit both have pledged to go offline on Wednesday in protest of the proposed Stop Online Piracy Act (SOPA), an anti-piracy measure that critics believe amounts to an internet censorship bill.
 

Oracle to ship 79 patches next week

As part of its quarterly security update, Oracle on Tuesday is planning to release 79 patches to address vulnerabilities across its product line.
 

US-CERT warns about spoofed US-CERT phishes

Phishers are spoofing email addresses belonging to US-CERT, an arm of the Department of Homeland Security that coordinates information sharing related to cyber threats, to trick users into installing malware.
 

Chrome adds malware download warning functionality

A new beta version of the Google Chrome browser contains malware download protection.
 

Anonymous attacks Sony again, this time over SOPA

Anonymous said Friday that it is responsible for temporarily defacing the website and Facebook account belonging to Sony Pictures.
 

Adobe to release quarterly updates to address critical bugs

Adobe announced Friday that it intends to release its quarterly updates next week.
 

HP "fire" bug patched on dozens of printers

HP has quietly delivered a fix for a vulnerability in some of its printers that could be leveraged to steal sensitive documents, gain control of corporate networks, or even set the affected devices on fire.
 

WordPress releases update following security issue

WordPress has made available version 3.3.1 of its popular blogging software, which closes 15 vulnerabilities, including a cross-site scripting hole that was revealed Monday by two Indian security researchers.
 

Security firm releases tool to brute force routers

A Maryland security firm has released an open-source tool that can be used to exploit a vulnerability that permits the brute force hacking of wireless routers, connected using the WiFi Protected Setup (WPS) standard, to retrieve passwords.
 

Counterfeit card maker pleads in ATM skimming bust

A 21-year-old Connecticut woman on Tuesday pleaded guilty to participating in an ATM skimming operation between February and July, the U.S. attorney's office in Connecticut said.
 

Twitter makes available some code from Whisper Systems buy

Twitter, which recently acquired year-old Android security start-up Whisper Systems, announced Tuesday that it is making some of the company's open-source code publicly available.
 

Yahoo deploys two-factor authentication for email

The feature, which is currently available for users in the U.S. Canada, India, and the Philippines, requires a second form of verification beyond a password for any "suspicious" login attempt.
 

FTC to pay millions to consumers duped by scareware

The Federal Trade Commission (FTC) will partially recoup some 300,000 people who fell victim to a scam in which they purchased rogue anti-virus products to fix problems that didn't exist.
 

Out-of-band fix for Adobe Reader security issue coming Friday

An out-of-cycle patch is coming to fix a flaw in Adobe Reader and Acrobat 9 for Windows.
 

Chrome 16 includes 15 vulnerability fixes

Google on Tuesday released Chrome 16, which includes fixes for 15 security vulnerabilities.
 

Android users share their "rage" for free Windows Phone

Android users have taken to Twitter to air their grievances about their phones, prompted by an unusual offer from a Microsoft employee
 

China behind majority of cyber attacks, NSA says

The National Security Agency claims a dozen groups connected to China's People's Liberation Army and six nonmilitary groups connected to universities are largely behind cyber spying campaigns.
 

Yahoo Messenger exploit enables status message hijacking

A newly discovered zero-day exploit against Yahoo Messenger can allow an attacker to hijack users' status updates, according to researchers at anti-virus firm BitDefender.
 

Former UBS banker sentenced for fraud

A former bank executive has been sentenced to 33 months in prison for committing 84 fraudulent wire transfers that deposited $673,000 of UBS Securities funds into his personal accounts.
 

Cyber Monday scam emails hit inboxes

Spammers have begun trying to capitalize on the Cyber Monday buying frenzy.
 

Fake FBI scam email making the rounds

A message purportedly sent from the FBI Anti-Terrorist and Monetary Crimes Division is making its way to inboxes, threatening recipients that they will be arrested if they do not reply back.
 

Security spending to increase in 2012, survey shows

While the nation's economy remains in the tank, the information security market appears to be avoiding a major slowdown.
 

Anonymous calls for protests of piracy bill

The Anonymous hacking collective on Sunday called for a "worldwide internet and physical protest" against a controversial bill making its way through Capitol Hill called the Stop Online Piracy Act.
 

Most spam subject lines contain fake order, ticket numbers

Most spam messages sent in recent days have been delivered with subject lines containing fake order or ticket numbers, delivery invoices, payment notices or tax information, according to researchers from security firm Websense.
 

Google releases Chrome update to fix high-risk security bug

Google on Wednesday released Chrome 15.0.874.121 to address a high-severity vulnerability affecting the V8 JavaScript engine that could allow for the execution of arbitrary code.
 

Microsoft to make updates less disruptive, more predicatable

In an effort to smooth the patching process for users, Microsoft plans to improve its updating mechanism in Windows 8, due out next year.
 

Apple issues iTunes update to close man-in-the-middle hole

Apple on Monday released an updated version of its iTunes program to close a vulnerability that could lead to a man-in-the-middle attack.
 

Imperva IPO opens high

The debut of Imperva onto the stock exchange led to strong trading gains for the maker of software protection against hackers and data theft.
 

ACH debit transfer emails leading to malware

Attackers have been circulating a trojan via email messages with subjects such as "ACH payroll payment was not accepted by Central Trust and Savings Bank."
 

Adobe bids adieu to Flash for mobile

With the exception of issuing critical security fixes for existing installations, Adobe will no longer develop new versions of Flash for mobile.
 

Adobe releases critical Shockwave Player security update

The flaws corrected by an Adobe Shockwave Player update could allow an attacker to run malicious code on an affected system.
 

SC Magazine wins Best Photo Spread award

SC Magazine took home the Min Editorial & Design Award for best photography spread among business-to-business magazines.
 

Report: Anonymous calls off Operation Cartel

Anonymous' plan to expose the information belonging to members of the dangerous Zetas drug cartel in Mexico is back off, after a kidnapped member of the hacktivist group has been released by the gang.
 

Accused Scarlett Johansson hacker claims innocence

A Florida man pleaded innocent Tuesday to hacking into the email accounts of Scarlett Johansson, Mila Kunis, Christina Aguilera and dozens of other celebrities to steal photos, emails and other documents.
 

U.S, Asian nations dominate spam-sender list

The United States has maintained the dubious distinction of being the world's No. 1 relayer of spam, but Asian countries are catching up quickly.
 

Facebook to extend bug bounty program

At some point in the future, Facebook plans to begin asking researchers to review code that has not yet been released, according to Joe Sullivan, CSO at Facebook.
 

Phishers aiming for Apple IDs, passwords

Spam that seemingly emanates from Apple is making the rounds with the aim of tricking users into handing over their IDs and passwords, researchers at anti-virus firm Trend Micro said in a blog post Monday.
 

Check Point adds Dyanasec for governance, risk, compliance

Check Point Software Technologies bolstered its portfolio Monday with the acquisition of privately held Dynasec, a 7-year-old, Israel-based provider of governance, risk management and compliance solutions.
 

Facebook rolls out application-specific passwords

Facebook on Thursday introduced two new security features to help users better protect their accounts. The first is the ability to create unique passwords for each application a user accesses. (Normally they only need to enter in their standard Facebook credentials). The new capability allows members to create a password, which they won't have to remember each time they login to the app, by visiting Account Settings>Security>App Passwords. Meanwhile, the "Trusted Friends" feature allows a user to select three to five trusted individuals to serve as custodians of codes that can be used to access one's account if he or she is ever locked out.
 

Apple pushes QuickTime update

Apple has released an update for its QuickTime software to close 12 vulnerabilities. Version 7.7.1 includes 10 fixes for flaws that, if exploited, could lead to arbitrary code execution. Most of the bugs involve memory or buffer overflow issues, whereby viewing a malicious movie file could result in an exploit. The update is available for Windows 7, Vista, XP and later versions.
 

Disgraced bike champ accused of cybercrime

Cyclist Floyd Landis, who was stripped of his Tour de France medal in 2006 following positive doping results, now faces arrest in France for his alleged involvement in planting a trojan on the computer network of the French national anti-doping laboratory (LNDD), which conducted the test. According to reports, French prosecutors said Landis and Arnie Baker, his coach at the time, employed a hacker at Kargus Consultants to plant the trojan in an attempt to steal documents from the lab for an appeals process they were pursuing. Kargus has also been suspected of breaking into Greenpeace and French utility company EDF. Prosecutors said Landis should serve an 18-month suspended prison sentence for his part in the alleged scheme.
 

Google closes 18 Chrome holes

Google on Tuesday pushed out a new version of its Chrome web browser to rectify 18 vulnerablities, including 11 that are deemed "high" in severity. Version 15, part of the "stable" channel of Chrome, also includes protection against Browser Exploit Against SSL/TLS (BEAST), a JavaScript hacking tool disclosed last month at a security conference in Argentina that can decrypt HTTPS requests and encrypted cookies. Microsoft has since issued an advisory that acknowledges the issue, along with a Fix-It solution. Meanwhile, researchers who disclosed the flaws in Chrome received more than $26,000 combined for their finds as part of Google's bug bounty program.
 

Microsoft YouTube channel hacked

Hackers over the weekend accessed Microsoft's YouTube channel to swap out videos with their own. It is unclear what the intruders' motive was, but they may have been able to access the account by stealing its login credentials from a Microsoft employee, Graham Cluley, senior technology consultant at anti-virus firm Sophos, said in a blog post Sunday. One of the unauthorized videos posted was titled "Bingo" and featured an animated video game character shooting another character. By Monday morning, the channel was operating normally. The incident followed hackers last week taking over the Sesame Street YouTube channel to display pornographic videos.
 

NERC CSO departs for newly created DHS role

Mark Weatherford, former CSO of the North American Electric Reliability Corp. (NERC), has been appointed to a newly created position at the U.S. Department of Homeland Security. Serving as deputy under secretary for cybersecurity within the National Protection and Programs Directorate (NPPD), the DHS component charged with reducing risk, Weatherford will focus on ensuring strong cybersecurity operations and communications for the department. He is expected to start in mid-November. Prior to his role at NERC, Weatherford was CISO of the state of California. A former naval cryptologic officer, Weatherford also previously led the Navy's computer network defense operations.
 

Google enables search encryption by default

Google has turned on encrypted search by default. The tech giant announced in a blog post Tuesday that users, over the next few weeks, will be automatically directed to https://www.google.com when they sign into their accounts. The secure channel will help protect search terms and results pages from being intercepted by a third party. As a result, websites won't have access to each individual search query that drives traffic to their site, but they still will be able to view a list of the top 1,000 queries via Google Webmaster Tools. Users wanting to send their individual search entry to advertisers, so they can improve their campaigns, can opt to still do so by clicking on an ad appearing on the search results page.
 

Accused LulzSec hacker pleads innocent to Sony attack

A purported member of the hacktivist group LulzSec pleaded innocent Monday in federal court in Los Angeles to charges of hacking into the systems of Sony Pictures Entertainment. Cody Kretsinger, a.k.a. "recursion," 23, of Arizona is facing one count each of conspiracy and unauthorized impairment of a protected computer. He faces a maximum sentence of 15 years in prison. He is accused of participating in a weeklong SQL injection attack, ending in early June, on the Sony Pictures site. The compromise resulted in the theft of data belonging to roughly one million users, some of which was publicly posted.
 

Celebrity email hacker arrested

A Florida man has been charged with hacking into the email accounts of Mila Kunis, Christina Aguilera, Scarlett Johansson and dozens of other celebrities to steal photos, emails and other documents. Christopher Chaney, 35, of Jacksonville was nabbed following an 11-month police investigation dubbed "Operation Hackerazzi," according to an FBI statement this week. Once he had access to a victim's email account, which he obtained by using publicly available information, he allegedly changed the settings so that all of their emails would be automatically forwarded to him. He also stole private photos, which he offered to celebrity blogs. Chaney was charged with accessing and damaging protected computers without authorization, wiretapping and aggravated identity theft. He faces up to 121 years in prison.
 

FTC, file-sharing app developer settle charges

The Federal Trade Commission has settled a case with the maker of a mobile peer-to-peer application over allegations that the program automatically shared files with the public by default. The agency's complaint against FrostWire LLC said this caused consumers who downloaded the app to "unwittingly disclose personal files, like pictures and videos, stored on their smartphones and tablet computers," according to an FTC news release on Tuesday. Under the deal, FrostWire is barred from using default settings that allow these files to be shared and is required to freely update users to a new version that corrects the problem.
 

New exploit toolkit not so nice

At least 10,000 websites have been compromised to redirect users to a new exploit toolkit, called "Nice Pack," according to researchers at Dell SecureWorks. Nice Pack, discovered Wednesday, attempts to take advantage of flaws in users' third-party apps, such as Java and Adobe, to install the "Zero Access Trojan," a rootkit that allows attackers to take control of a victim's machine. Though researchers are still looking into the threat, they have discovered that the JavaScript on compromised sites is nearly identical to the malicious code recently found on MySQL.com, which was infected to redirect users to the Black Hole exploit toolkit.
 

Apple releases mammoth iTunes update

Apple on Tuesday released an update to its iTunes software to repair a whopping 79 vulnerabilities. Most of the flaws are memory corruption issues found in WebKit, an open source web browser engine that helps render the iTunes Store. In the case of those bugs, adversaries could launch a man-in-middle attack while a user browses the store, which may lead to malicious code execution. The other holes patched by upgrading to iTunes 10.5 lie in CoreFoundation, ColorSync, CoreAudio, CoreMedia and ImageIO.
 

Couple files suit against Citigroup over breach

A couple from New York state is seeking class-action status for a lawsuit against Citigroup, alleging that the third-largest U.S. bank has "taken no steps" to protect victims in the wake of a massive data breach, according to reports. Citi admitted in June that 360,083 accounts - about 1.5 percent of its card customer base - were compromised in the attack, in which hackers infiltrated the online banking platform, Citi Account Online, and viewed customer account numbers and contact information.The plaintiffs, Kristina and Steven Orman of Northport, N.Y., filed the suit on Friday in response to fraudsters allegedly charging their credit cards and stealing money from their bank accounts.
 

IT services jobs see growth

Following the release of the Sept. 2011 employment numbers by the Department of Labor Bureau of Labor Statistics, Foote Partners, a Vero Beach, Fla.-based IT research and advisory firm, observed a net gain of 11,500 jobs in two IT services job sectors - management and technical consulting services as well as computer systems design and related services. This would be the 16th consecutive month of positive job growth in these job segments, David Foote, the company's CEO, said in a statement. "There's no question that consulting firms and systems integrators are benefiting from current corporate staffing strategies for acquiring needed pure technology skills - which is to rent them, not to buy them," Foote said.
 

NIST releases continuous monitoring guidance

The National Institute of Standards and Technology late last week published new guidance to help organizations develop and implement an information security continuous monitoring (ISCM) program. This initiative can help companies better provide ongoing awareness of threats and vulnerabilities, assess the effectiveness of deployed security controls and support risk management decisions, according to the 80-page guidance document. A mature ISCM program, which requires the use of both automated and manual processes, will enable companies to move from compliance-driven to data-driven risk management.
 

Anonymous: We won't hack Wall Street

The online collective Anonymous is disputing a YouTube video posted over the weekend that promises distributed denial-of-service attacks on Monday against the New York Stock Exchange. In a tweet from the AnonOps Twitter account, considered one of the most trusted sources of information from the group, there are no plans to hack Wall Street properties. Because Anonymous is technically a leaderless organization, it is sometimes difficult to tell if information is accurate. The FBI declined comment on the matter, when reached by SCMagazineUS.com. Anonymous has been instrumental in recent weeks in facilitating the Occupy Wall Street ground protests, which have now spread beyond New York to a number of other cities.
 

Google patches Chrome holes, pays $10,000

Google this week fixed seven vulnerabilities in the Chrome web browser, and paid $10,000 to researchers who reported them. Researcher Sergey Glazunov scored $8,000 for reporting five Chrome bugs, including $4,500 for three use after free bugs in v8 bindings. Glazunov has dominated Google's Chromium security hall of fame, which pays researchers for reporting bugs in the Chrome browser.
 

DigiNotar collapse could cost parent nearly $5 million

Authentication solutions provider Vasco expects the bankruptcy of its Dutch-based certificate authority (CA), DigiNotar, to cost it between $3.3 and $4.8 million, according to a statement Tuesday. The estimate does not include losses that may arise through possible lawsuits filed against the company. On Sept. 20, DigiNotar was "declared bankrupt" by a District Court judge in The Netherlands after it emerged that the CA issued hundreds of counterfeit SSL credentials after hackers breached its systems. At least one phony certificate, for Google.com, appeared in the wild, presumably so Iranian users could be spied on the government. Vasco is based in Oakbrook Terrace, Ill.
 

IBM announces purchase of Q1 Labs

IBM on Tuesday announced it is buying privately held Q1 Labs, a Waltham, Mass.-based vendor of security event and log management software. The company will be integrated into the newly formed IBM Security Systems division, expected to be led by Q1 Labs CEO Brendan Hannigan. Q1 Labs provides analytics and correlation technology that, it says, can help prevent breaches, such as an employee accessing unauthorized information. Financial terms of the deal, the second SIEM-related acquisition announced Tuesday, were not disclosed.
 
Popular Topics
4G-war Advanced Persistent Threat Adware AMTSO Anonymous Botnets Cyber Attacks Cyber Crime Data Breach Data Breaches Encryption Hackers Hacktivism Health Care IT Security Java Malware Mobile Devices Phishing Risk Management Social Security Numbers Stolen Information Survey Trojans Vulnerabilities & Flaws