January, 2008:

• Hot or not: Effective regulatory compliance and security management
• LogRhythm presents: Maximizing security information management ROI
• Internet outages overseas prompt business continuity awareness
• FTC asks judge to hold alleged MySpace phishers in contempt
• Spammers plead guilty to "419" scams that netted $1.2 million
• Hackers breach Davidson Companies client database
• Mozilla announces fix for Firefox protocol handler flaw
• Horizon 300,000 members unencrypted data on stolen laptop
• Mortgage spam spikes due to Federal Reserve rate cut
• Yahoo names VeriSign's Balogh CTO
• External hard drive stolen from Georgetown University
• Storm makes house calls: Messages lead to bogus med sites
• Hacker arrested in Greece for stealing, selling weapons data
• T. Rowe Price contractor loses hard drives with data
• Building security into your software-development lifecycle
• City IT chief's wish list: "Virtual" resources, more watchdogs, and a certificate management infrastructure
• Barracuda: Trend Micro complaint aims to stifle competition
• Do-it-yourself phishing kit targets email, social networks
• Viruses now posing on digital picture frames
• Western Union spam downloads keylogger
• A mixed review for cybercrime documentary
• ChoicePoint settles lawsuit over 2005 breach
• PayPal to acquire Fraud Sciences for $169 million
• Jan. 28, 2008: Super cybercrime
• Student fined 1,100 euro for DoS attack on key sites in Estonia
• Super Bowl blitz begins: Bogus sites with malware pop up
• DDoS hack attack targets Church of Scientology
• Analysts: French bank could have stopped $7 billion insider fraud
• Florida woman accused of deleting $2.5 million in data
• Cisco, Sun patch flaws, including 370 bugs in JavaSE
• Rogue trader conceals fraud costing French bank $7 billion
• Odds favor Super Bowl cyberattacks, security expert says
• New Firefox flaw deemed low-risk threat
• Microsoft: Vista safer in first year than other operating systems
• Mass attack on Apache servers can be stopped: SecureWorks
• Fortinet: Symbian OS worm spreading in mobile networks
• Drive-by pharming attacks seen in the wild
• U.S.-based site offers new encryption software for al Qaeda
• Visa: Most merchants in compliance with PCI security standard
• Get ahead of new web applications
• For-profit Mac attacks could increase this year: Sophos
• Plug-and-play interface can be used to modify router settings
• CIA analyst reports hacker attack on foreign power grid
• Jan. 22, 2008: Data tape lost with JC Penney customer info
• Data of 650,000 customers of JCPenney, retailers at risk
• Survey: majority of online shoppers highly concerned about security
• China has penetrated key U.S. databases: SANS director
• MySpace spam seeks botnets
• Malware up 800 percent in 2007, says Panda
• FERC approves cybersecurity standards for power grid
• Adobe patches prevent cross-site scripting attacks via Flash
• U.S. in middle of cyber war with China, Russia?
• DHS-funded project uncovers open-source flaws
• Fraud reported after food vendor breach at Cal State University, Stanislaus
• Weak wireless security on display at retail convention
• Storm's "Valentine's Day massacre" arrives early
• (ISC)² publishes IT security pro hiring-help guide
• Excel exploit targets vulnerability in the wild
• Oracle patch cycle includes first 11g database fix
• Apple unveils QuickTime 7.4, fixes four flaws
• Organization offers $20,000 for Windows flaws
• Rogue file-cleaning application targets Mac users
• Another major retail breach?
• SANS: Multiple-exploit attacks on trusted sites tops '08 threat list
• Attack injects malicious JavaScript into e-commerce sites
• Five years and counting: A SOX data security reality check
• MySpace page laced with fake Microsoft update
• House Oversight panel slams TSA for lax website security
• JavaScript toolkit hit 10,000 websites in December: Finjan
• Jan. 14, 2008: E-voting explored
• Silentbanker trojan dupes bank customers into sending money
• Data governance: How can you protect what you don't know exists?
• Moving the wall inside the gates: Preventing security breaches from inside your private network
• Colombian pleads guilty to internet-based ID theft scam
• SC Magazine IT Security Executive Forum
• RSA Conference 2008
• Secure Development World Conference
• 7th Annual Business Continuity Conference
• InfoSec World 2008
• 5th Worldwide Security Conference
• Black Hat DC
• DEMO 08
• Electronic voting results questioned in NH primary
• Former Cox employee who shut down 911 gets jail time
• Year's first QuickTime vulnerability discovered
• Oracle to patch 27 bugs in "hundreds" of its products
• Get ready for phishing scams that play on holiday purchases
• GAO: Lax IRS cybersecurity puts taxpayer data in danger
• Trojan 2.0 era about to begin: Finjan
• Will an illegal immigration crackdown boost cybercrime?
• Symantec restructures, names Enrique Salem COO
• University of Georgia server hacked
• Former New Jersey systems administrator gets 30 months in prison for 'logic bomb'
• New phishing wave claims payroll fraud to dupe victims
• Rootkit targeting Master Boot Record in the wild
• Survey: 80 percent of financial security chiefs rely on FTP transfers despite data breaches
• Zango fires back at Fortinet over adware accusations
• Business Software Alliance settles unlicensed software claims
• Microsoft releases two patches for three flaws
• Discount retail website Geeks.com hacked
• Awareness combats profit-driven attacks
• Storm botnet used to mount phishing attacks on banks
• Mass SQL injection attack compromises 70,000 websites
• Social Security numbers exposed after glitch on Maryland govt. tax site
• Computer hard drive goes missing from New Mexico State University arena
• PA state website attack traced to China
• Debate: Is the best way to protect data on the network by locking down the endpoint?
• FAA: Boeing must protect 787 flight system from hacking
• First iPhone trojan more prank than malware
• Jan. 7, 2008: What to expect this year
• Browser wars
• Survey 2008: Guarding against a data breach
• California breach disclosure law covers medical records
• News Briefs: MySpace celebs' pages hacked
• Threat of the Month: Bzub spyware
• 2 minutes on...The rise of cyberespionage
• Company news: Mazu Networks names Conklin VP of marketing
• Me and my job: William Schneider
• Opinion: Can we plan security strategically?
• Know what is the board's responsibility
• Protecting customers = teamwork
• Letters: Got something to say?
• Last word: Make the FISMA grade meaningful
• Customer connect: Using security as a market differentiator
• SC Awards 2008: Becoming a contender
• Product section: Managing access - first line of enterprise defense
• Editorial: Critical data protection grows up
• Analyst: Threat of virus attacks on Wi-Fi networks "overstated"
• Is Zango getting a bum rap?
• Update: Network Solutions claims ownership of disclosed administration webpage
• Researcher: Firefox authentication box can be spoofed
• Ralsky indicted for running pump-and-dump stock scams
• California merges key departments to combat ID theft
• Researcher: Facebook widget leads to adware install
• Microsoft readies two patches, one "critical"
• LogLogic Presents: Best Practices in Starting Your PCI DSS Compliance Initiatives
• Widespread Flash file flaws allows cross-site scripting attacks
• Storm Worm New Year's greetings proliferating
• Singin' a sad tune: Personal data on every Nashville, Tenn. voter lost
• Google Blogspots redirecting to fake Bhutto videos
• Researchers say Sears site uses ComScore to track browsing
• Hot or not: Client-side vulnerabilities and web application attacks
• Fake 'Tom from MySpace' pages offer ringtones, games
• US-CERT warns of RealPlayer exploit