Computer Security Global Security Mag Online anti virus spywares job oofers telecom and network security

INTERNATIONAL
LOGICAL & PHYSICAL SECURITY

Next Issues
Subscriptions
Publicity

Google

 Flux RSS
 

Starting in September, this section will include information on IT security training courses (intrusion tests, standards, risk management etc.) as well as information on training courses devoted to storage, archiving etc.  [...more]

For start-ups or established companies about to launch a new product, our web-based Marcom strategy package provides 4 weeks of worldwide coverage for an exceptional price starting at €800 excl. VAT.
This service is tailor-made to each customer’s requirements and is based on a dedicated white paper available online in the PRIME TIME section of our website home page during the 4-week period.
- Week 1: your company profile or new-product presentation
- Week 2: an interview with a member of your company’s management team
- Week 3: an interview with a consultant or systems integrator to provide an in-depth review of your technology
- Week 4: an interview with one of your beta test clients or a potential customer to explain the advantages of your technology from a customer point of view  [...more]

Feature
The Payment Card Industry Data Security Standard (PCI DSS) has changed the way merchants around the world handle personal and account data. Stringent control mandates, audit reporting (...) [...more]
In such an uncertain economic climate organisations need to be far more competitive, one simple way to stay ahead of competitors is for businesses to make sure their products get to market first. (...) [...more]
Technology has evolved to address the challenges of the modern business market. Mobile working and round-the-clock communication have tested information security, as has the need to lock down (...) [...more]
In their simplest form, many social networking sites are not much more than online diaries. Whether you’re thinking of Bridget Jones or Adrian Mole, Alan Clark or Samuel Pepys, most of us realize (...) [...more]
The effective management of private, personal and confidential information is an ever increasing concern for international organisations large and small, as factors such as remote working, global (...) [...more]
Opinion     Tuesday 2 February
Keross: Mobile Security in the Cloud
The mobile web has provided virtual office space and location flexibility to both the tech-saavy and tech-newbs. From checking email and conference calls, to Twittering and document sharing, (...) [...more]
With data breaches on the rise, financial institutions must constantly develop new strategies and security architectures to safeguard their assets. Failure to stay in front of data threats will (...) [...more]
There’s good news and bad news today about a fix for the serious Internet Explorer vulnerability that was exploited to attack Google and several other companies in what McAfee calls Operation (...) [...more]

Latest News
  •   Security Vulnerability   Monday 8 February
      Vigil@nce: Linux kernel, incorrect permissions on devtmpfs
    SYNTHESIS OF THE VULNERABILITY On a 2.6.32.x kernel, a local attacker can access to devtmpfs. Severity: 2/4 Consequences: data reading, data creation/edition Provenance: user shell Means of attack: no proof of concept, no attack Ability of attacker: expert (4/4) Confidence: confirmed by the editor (5/5) Diffusion of the vulnerable configuration: high (3/3) Creation date: 01/02/2010 IMPACTED PRODUCTS Linux kernel Mandriva Linux OpenSUSE DESCRIPTION (...)   
  •   Product Reviews   Monday 8 February
      New IP Access Routers of Funkwerk Set standards in flexibility
    With its new bintec RS series, Funkwerk Enterprise Communications (FEC) presents flexible IP access routers with comprehensive equipment for professional network access. With the abundance of different connection technologies, the bintec RS series sets new standards in the flexibility of access routers. The bintec IP access routers, which will be available at the occasion of the CeBIT 2010, distinguish themselves via excellent performance increases and are predestinated for the (...)   
  •   Product Reviews   Monday 8 February
      Common Assurance Metric – Beyond the Cloud
    The Common Assurance Metric (CAM) launched is a global initiative that aims to produce objective quantifiable metrics, to assure Information Security maturity in cloud, third party service providers, as well as internally hosted systems. This collaborative initiative has received strong support from Public and Private sectors, industry associations, and global key industry stakeholders. There is currently an urgent need for customers of cloud computing and third party IT services to be (...)   
  •   Business News   Monday 8 February
      Ovum releases new Technology Audit of Neptuny Caplan 3.2, confirming Caplan as "the future of Capacity Planning"
    In updating its latest Technology Audit of recently released Neptuny Caplan™ 3.2, Ovum confirms its conclusion that Caplan™ is the “the future in capacity-planning solutions”[1] and is “impressed with its ease of use combined with its depth of capability.” Virtualization-ready Caplan™ simplifies and optimizes consolidation and virtualisation planning. Caplan™ 3.2 supports all major virtualization technologies from leading vendors such as VMware, AIX, HP, Sun, Citrix and Microsoft. Ovum is (...)   
  •   Product Reviews   Monday 8 February
      Thales Adds Multipoint Capability to its Datacryptor Ethernet Layer 2 Network Encryptors
    Thales announces that its Datacryptor 100 Mbps and 1 Gbps Ethernet Layer 2 network encryptors now have the capability to operate in multipoint, fully meshed environments, enabling organizations to reduce their information security cost. This newly added multipoint capability enables any one node in the network to securely connect simultaneously to any other node, thus reducing the total number of encryptors required to protect multiple connections. Government agencies and enterprise (...)   
  •   Security Vulnerability   Monday 8 February
      Vigil@nce: TYPO3, vulnerabilities of extensions
    SYNTHESIS OF THE VULNERABILITY An attacker can use several vulnerabilities of TYPO3 extensions in order to generate a Cross Site Scripting or to inject SQL code. Severity: 2/4 Consequences: user access/rights, client access/rights, data reading Provenance: internet client Means of attack: no proof of concept, no attack Ability of attacker: expert (4/4) Confidence: confirmed by the editor (5/5) Diffusion of the vulnerable configuration: high (...)   
  •   Business News   Monday 8 February
      MTI to Offer Axxana’s Zero Data Loss Disaster Recovery Phoenix System™ RP in Europe
    Axxana and MTI announced that they have signed a partnership agreement to market the Axxana Phoenix System™, which will also be showcased in the MTI Solutions Centre established last year in the UK in conjunction with EMC, VMware and Cisco. The Axxana Phoenix System is the first product on the market to enable zero data loss, i.e. where the Recovery Point Objective (or RPO – the point in time that the restore goes back to) equals zero, over any geographical distance, for significantly less (...)   
  •   Special Reports   Monday 8 February
      Common Assurance Metric – Beyond the Cloud
    The Common Assurance Metric (CAM) launched is a global initiative that aims to produce objective quantifiable metrics, to assure Information Security maturity in cloud, third party service providers, as well as internally hosted systems. This collaborative initiative has received strong support from Public and Private sectors, industry associations, and global key industry stakeholders. There is currently an urgent need for customers of cloud computing and third party IT services to be (...)   
  •   Special Reports   Monday 8 February
      Cloud computing creates a new legal ballgame: But who will solve the legal issues on this important new technology?
    Although there are a number of benefits that cloud computing brings to the better business table - including reduced servicing costs and increased flexibility on IT services - there are still a number of legal issues that need to be addressed, say the organisers of 360°IT - The IT Infrastructure Event. According to Natalie Booth, the show’s event director, Microsoft is quietly lobbying for new legislation in a number of key countries, with the software giant’s general counsel reportedly (...)   
  •   Market News   Monday 8 February
      Lancashire Constabulary Chooses 3ami MAS for Protective Monitoring of Force’s IT Systems
    Lancashire Constabulary is using 3ami Monitoring and Audit System (MAS) to comply with new data security regulations from the Association of Chief Police Officers (ACPO). Coming into effect March 2010, the ACPO Information Systems Community Security Policy lists “protective monitoring” as a control UK police forces must score against to comply with the policy matrix. With a few minor exceptions, such as passwords and confidential reporting, 3ami MAS will monitor all data input on Lancashire (...)   
  •   Special Reports   Monday 8 February
      Call centres risk losing customers as complaints go unrecognised, says survey
    A recent survey from speech search specialist Aurix has highlighted that 70 per cent of complaints made to call centres are ‘not being heard.’ In addition over 96 per cent of respondents said that they would consider switching to a competitor as a result. In a series of questions, answered by more than 100 consumers, the Aurix survey asked respondents whether they had ever made a complaint to a call centre, and if so, whether that complaint was taken seriously by the agent. Peter Rogers, (...)   
  •   Special Reports   Monday 8 February
      ENISA: 17 golden rules to combat online risks and for safer surfing mobile social networks
    The EU ‘cyber security’ Agency - ENISA (the European Network and Information Security Agency) today presents a new report on accessing social networks over mobile phones, ‘Online as soon as it happens“. The report points out the risks and threats of mobile social networking services, e.g. identity theft, corporate data leakage and reputation risks of mobile social networks. The report also gives 17 ‘golden rules’ on how to combat these threats. Online Social Networking Sites (SNSs) have had an (...)   
  •   Opinion   Sunday 7 February
      Keross: ISO 27001 Compliance Checklist – Best Practices
    ISO 27001’s comprehensive scope and broad adoption base have made it the de facto international information security standard. As the backbone of a well-executed information security program, the standard can significantly increase managerial confidence in information assets. In addition, the ISO 27001 certification option gives companies a rare and powerful tool for reaping market benefits from internal security initiatives. ISO 27001’s strength as a robust standard can also be its greatest (...)   
  •   Security Vulnerability   Friday 5 February
      Vigil@nce: Ingres, buffer overflow of iidbms
    An attacker can send a malicious query to the iidbms process of Ingres, in order to generate a denial of service or to execute code. Severity: 2/4 Consequences: privileged access/rights, denial of service of service Provenance: intranet client Means of attack: no proof of concept, no attack Ability of attacker: expert (4/4) Confidence: unique source (2/5) Diffusion of the vulnerable configuration: high (3/3) Creation date: 29/01/2010 IMPACTED (...)   
  •   Security Vulnerability   Friday 5 February
      Vigil@nce: Samba, privilege elevation via mount.cifs
    SYNTHESIS OF THE VULNERABILITY When the mount.cifs tool is installed suid root, a local attacker can use a symbolic link, in order to elevate his privileges or to obtain information. Severity: 2/4 Consequences: administrator access/rights, privileged access/rights, user access/rights, data reading Provenance: user shell Means of attack: 1 attack Ability of attacker: technician (2/4) Confidence: confirmed by the editor (5/5) (...)   

    • News D-1 |  News D-2 |  News D-3 |  News D-4 |  News D-5 |  News D-6 |  News D-7
    The lectors of our magazine are IS security managers, IS directors and other security professionals.
    Thank’s to all our sponsors
    - GOLD SPONSOR
     [...more]









    ProWebSerenity

    home mail ?
    Home Contact About Prowebserenity

     
    Stay informed with Global Security Mag newsletters
    copyright® 2007 S.I.M. Publicité