May 2013 Issue
Of photographs and misogyny
Threat of the month
Threat of the month: pdf.exe.zip files
SC Magazine Facebook
SC Magazine Twitter
SC Magazine LinkedIn
SC Magazine Google Plus
NYPD detective charged with hiring hackers to spy on girlfriend
A special spotlight issue from SC Magazine: Mobile
eSymposium: Identity management June 4
The News Team Blog
The Data Breach Blog
The SC Awards Finalist Blog
SC Awards U.S.
SC Congress Toronto
SC Congress New York
SC Congress Chicago
Week of May 6
Do you think the U.S. government records and has the ability to access all telephone calls made in America?
Week of April 22
Do you support CISPA?
Week of April 8
A new law restricts U.S. gov't purchase of Chinese IT equipment out of security concerns. How comfortable are you buying technology that originates there?
Week of March 18
Which presents the biggest cyber threat to U.S. companies?
Week of March 4
What do you think about the term "cyber war?"
Week of January 21
Do you think the Computer Fraud and Abuse Act, the nation's anti-hacking law, is too broad and contains too severe of penalties?
Week of January 7
The Netherlands just released guidelines for how ethical hackers should report security vulnerabilities. Should the U.S. do the same?
Week of December 17
How do you expect your security budget to change in 2013?
Week of December 3
Should the 14 suspected Anonymous members accused of launching DDoS attacks against PayPal face felony charges and stiff prison sentences?
Week of November 12
Are supply-chain risks a concern for your organization?
Week of November 5
Do you think the FTC should have the regulatory power to penalize companies for poor data security and privacy practices?
Week of October 22
What do you think of terms like "Cyber Pearl Harbor" or "Cyber 9/11"?
Week of October 15
Do you believe we will see cyber legislation by the end of the Congressional session?
Week of October 1
Has your company website been the target of a DDoS attack recently?
Week of September 17
Are you opposed to the potential cybersecurity executive order?
Week of September 10
What do you think about Java?
Week of August 27
When do you think cars will be attacked by hackers?
Week of August 20
Should the market for selling exploits to government buyers be regulated?
Week of August 13
Would you like to see Congress act on major cyber security legislation?
Week of July 30
Do you think employee security awareness training is a worthwhile investment?
Week of July 23
Which big event will you be attending in Las Vegas this week?
Week of July 9
Which social media site do you most rely on to interact with or receive information about brands?
Week of June 25
What social media platform do you spend most of your time on?
Week of June 11
In light of LinkedIn's data breach, how will you change your password habits?
Week of May 28
What do you think of Flame, the new modular malware that's targeting computers in Iran?
Week of May 14
What do you think of hotel wireless connections?
Week of April 30
Do you support the proposed Cyber Intelligence Sharing and Protection Act (CISPA), which allows for the sharing of threat data b/w the private sector and gov't?
Week of April 16
Is Java, which had a security bug that helped spread the Mac Flashback trojan, uninstalled on your computer?
Week of April 2
If you keep doing business with a company following a breach, what is your likely reason?
Week of March 19
Is Windows Remote Desktop Protocol (RDP) exposed to the internet at your organization?
Week of March 5
If you attended RSA Conference 2012, how would you rate your experience?
Week of Feb. 20
Does Anonymous pose a threat to the U.S. power grid?
Week of Jan. 30
Do you see benefit in an "enterprise app store" in which mobile apps are pre-tested/pre-approved before they're deployed on employee devices?
Week of Jan. 16
Should U.S. citizens named in criminal cases be ordered by police to decrypt their computers?
Week of Dec. 26
Do you support the Stop Online Privacy Act (SOPA)?
Week of Dec. 5
Are you/would you consider using an alternative to Adobe Reader within your organization?
Week of Nov. 21
Do you believe security vendors "overhype" the mobile threat?
Week of Nov. 7
Do you think DARPA's new plan to recruit hackers to help it secure U.S. networks will be well received?
Week of Oct. 24
Is Duqu, the so-called son of Stuxnet, something to care about?
Week of Oct. 10
The Electronic Communications Privacy Act allows the gov't to obtain info from emails and cellphones without a search warrant. Do you agree with the law?
Week of Sept. 26
Would you ever consider closing your Facebook account due to privacy or security concerns?
Week of Sept. 12
Given breaches at Comodo and DigiNotar, does the existing SSL certificate authority (CA) system need to be replaced with something else?
Week of Aug. 29
Do security vendors need to do a better job of sharing intelligence data with one another?
Week of Aug. 15
What is most valued in a security professional?
Week of Aug. 1
Do you think Congress should pass a federal data breach notification law?
Week of July 4
Will the new FFIEC guidance help stem corporate bank account takeovers?
Week of June 20
What is your take on LulzSec?
Week of June 6
If you use a Mac, do you have anti-virus protection on it?
Week of May 23
Should SCADA (control) systems in places like power plants and oil refineries be connected to the public internet?
Week of May 9
Would you ever consider shopping online with a virtual, single-use credit card number to combat fraud and identity theft?
Week of April 25
Are you opposed to Apple and Google recording and storing anonymous location data of mobile devices?
Week of April 11
How many Epsilon-related data breach notification letters have you received?
Week of March 28
Do you think RSA properly has handled its SecurID breach from a PR standpoint?
Week of March 14
Does your organization have a mobile device usage policy in place?
Week of Feb. 28
Do reports that emails belonging to 150,000 Gmail users vanished make you hesistant to implement SaaS at your business?
Week of Feb. 14
What is your view of HBGary Federal?
Week of Jan. 31
Do you support running non-interoperable systems on your network?
Week of Jan. 17
Has your organization largely conquered the issue of spam?
Week of Dec. 20
How do you expect your organization's dedicated infosec staff to change in 2011?
Week of Dec. 6
Is the news around WikiLeaks prompting your organization to review its data security practices?
Week of Nov. 22
Should DHS have the regulatory and enforcement power over certain private companies for failing to comply with federally imposed security standards?
Week of Nov. 8
Do you feel comfortable using banking applications on your smartphone?
Week of Oct. 25
Do you agree with Apple's plan to no longer bundle third-party products, such as Flash and Java, as part of its Mac OS X?
Week of Oct. 11
Is your organization doing anything to commemorate October being National Cybersecurity Awareness Month?
Week of Sept. 27
Do you a think a group of governments, including possibly the U.S., conspired to create Stuxnet to specifically sabotage Iran's industrial control systems?
Week of Sept. 13
Was your organization affected by the "Here you have" worm?
Week of Aug. 30
Is your organization having difficulty recruiting and hiring skilled cybersecurity professionals?
Week of Aug. 16
Have you specifically addressed social networking threats (i.e. malware, data leakage) with your employees?
Week of Aug. 2
From a security perspective, are Apple's iPhone and iPad ready for your organization?
Week of July 19
Will you be attending Black Hat, DEFCON or Security B-Sides this week in Las Vegas?
Week of July 12
What do you make of the government's plan to detect cyberthreats happening to private critical infrastructure operators, such as power companies?
Week of June 27
Should social networking sites, like banks, be compelled to implement multifactor authentication for their users?
Week of June 13
Did Goatse Security do anything illegal when it used an automated script to retrieve iPad owners' email addresses from AT&T's website?
Week of May 31
Would you consider phasing out the use of Windows in your organization due to security concerns?
Week of May 24
One group has declared May 31 as "Quit Facebook Day," prompted by growing privacy concerns. Do you have any plans to block Facebook at your company?
Week of May 17
How likely are you to move mission critical applications to the cloud over the next year?
Week of May 10
Should banks be required to fully reimburse businesses if their bank accounts are hijacked by hackers and used to illegally wire money (ACH fraud)?
Week of May 3
Convicted Palin email hacker David Kernell faces up to 21 years in prison. How much time should he get?
Week of April 26
How long should a researcher give a vendor to fix a vulnerability before going public with the details?
Week of April 19
Assuming it is the latest version, which is the most secure browser?
Week of April 12
Does your organization permit P2P use?
SC Magazine Articles
Espionage hacking campaign "Operation Hangover" originates in India
Operators again revive Pushdo botnet, use a popular tactic to stay hidden
Idaho State University to pay HHS $400K after investigation reveals shoddy security
Twitter begins rollout of two-factor authentication to limit account takeovers
Google hackers wanted to know which Chinese intel operatives were being watched
Mac spyware discovered on Angolan dissident's computer at Oslo Freedom Forum
Malicious Firefox, Chrome browser extensions targeting Facebook users
Websites gradually shedding vulnerabilities, though most still contain a serious one
Controversial government program gives ISPs immunity from wiretapping laws
Scammers on the hunt for Memorial Day deal watchers
Scammers on the hunt for Memorial Day deal watchers
Proxy research firm settles charges with SEC over client breach
Happy Hour Hot Links: Week of 5/20
Event ticketing company hacked, at least tens of thousands affected
Video: Simplifying security