Fix For Internet Explorer Security Flaw – Zero-day Internet Explorer Vulnerability (CVE-2014-1776)

Posted by:

do not use ie

You Have 5 Options

As a follow up to our earlier post, Microsoft Internet Explorer Security Bug Could Impact Millions of Users, we wanted to share what we’ve found out so far with respect to a fix for the latest IE flaw.

As of April 28, 2014, Microsoft has not provided a ...

Read More →
0

Microsoft Internet Explorer Security Bug Could Impact Millions of Users

Posted by:

internet explorer security flaw

It’s A Good Time To Change Browsers

Just when you thought things were starting to cool down a little after the Heartbleed Bug, Microsoft issued a security advisory on Saturday warning users of a vulnerability in its Internet Explorer web browser that could allow malicious “remote code execution.”

The vulnerability affects all versions of the browser and, as of this writing, there ...

Read More →
0

OCR Fines Two Organizations Nearly $2M Over Health Data Breaches

Posted by:

HIPAA Fines

Encryption Is Your Best Defense

Concentra Health Services and QCA Health Plan have agreed to pay HHS’ Office of Civil Rights settlements over separate data breaches, Health IT Security reports (Ouellette, Health IT Security, 4/22).
In November 2009, Concentra — a subsidiary of Humana — reported a data breach in Fort Worth, Texas, after an unencrypted laptop was stolen. Medical records of more ...

Read More →
0

2014 Data Breach Investigations Report Shows Some Alarming Trends

Posted by:

data breach reports 2014

This morning, Verizon issued its 2014 Data Breach Investigations Report (DBIR) that covers over 63,000 security incidents in 2013 from 50 global participating organizations spanning 95 countries. The top-line finding is that 92% of all security incidents in the past ten years fit into nine categories:  POS Intrusion, Web App Attack, Insider Misuse, Theft/Loss, Misc. Error, Crimeware, Payment Card Skimmer, Denial of Service, Cyber Espionage and Everything Else.

The 2013 DBiR featured breaches affecting organizations in ...

Read More →
0

9 Things You Need to Know Before You Store Data in the Cloud

Posted by:

Cloud Security SolutionsHave You Done Your Homework?

As the amount of data organizations are storing continues to mushroom, the costs of expanding your data center to keep up with the growth becomes cost prohibitive at some point.  That’s why cloud storage — which often comes at a fraction of the cost of storing the information on-premises — has become increasingly popular.

But before ...

Read More →
0

Kentucky Enacts a Data Breach Notification Law and Protects Student Data in the Cloud

Posted by:

Data Breach Protection Plan47 Down 3 To Go…….

While not nearly as significant as prescriptive the Massachusetts Privacy Protection regulation,  201 CMR 17.00, it is a step in the right direction for Kentucky as the Senate struggles to approve legislation that would cover the nation.

Kentucky Gov. Steve Beshear signed H.R. 232 on April 10, 2014, making the Commonwealth the 47th state to enact a ...

Read More →
0

SEC to Launch Cybersecurity Exams

Posted by:

Sec cybersecurity auditWill Assess More than 50 Broker-Dealers, Investment Advisers

If you’re an investment advisor or broker dealer, the time is rapidly approaching when you’ll be subjected to an SEC cybersecurity readiness audit.  Are you prepared?

The Securities and Exchange Commission is planning to conduct more than 50 examinations to assess cybersecurity preparedness in the securities industry and to obtain information about the industry’s recent experiences with certain types of cyberthreats.

Organizations to be examined ...

Read More →
0

Heartbleed: Researchers Claim That 95% Of Detection Tools Are Flawed

Posted by:

heartbleed bug tools flawed

You’re Not Out Of The Woods Yet….

If you’ve used one of the free Heartbleed checker tools on the Internet and your site came up “clean” for Heartbleed, you might think again before you breath a sigh of relief.  There’s a good chance you haven’t really checked everything and there’s an even better chance your sites not free from exposure.

Some tools designed to detect the Heartbleed vulnerability are flawed and ...

Read More →
0

New Red Herring Honeypot Fights Heartbleed

Posted by:

red herring honeypotWASHINGTON: US cybersecurity researchers have developed a technique that fights the ‘Heartbleed’ virus, and detects and entraps hackers who might be using it to steal sensitive data.

The Heartbleed bug, which became public last week, has set alarm bells ringing across the globe, including in India, for fear of exposing millions of passwords, credit card numbers and other sensitive information to hackers.

Researchers at The University of Texas at Dallas ...

Read More →
0

Akamai Heartbleed Patch – Not So Much!

Posted by:

Heartbleed Patch - Akami

Since Akami handles almost 1/3 of the Internet’s traffic so their patch that didn’t patch so much is a big deal.

Akami’s patch was supposed to have handled the problem. Turns out it protects only three of six critical encryption values.

Writing on his company’s blog Sunday night, Akamai chief security officer Andy Ellis said that while he had believed the Akamai Heartbleed patch fully fixed the issue, a security researcher ...

Read More →
0
Page 1 of 2 12
})
SEC Cybersecurity Exams