Uncategorized

Guest editorial by Eugene KasperskyThere seems to be quite a loud
response to what I thought was a rather simple idea. In this post, I am
going to go over the main points – somewhere when I have more time I’ll
share my ideas in detail so people could see exactly what I am
proposing.

Google Voice Mails have been discovered in Google’s search engine, providing audio files, names, and phone number as if you were logged in and checking your own voice mail. Some appear to be test messages, while others are clearly not.

Andy Weeks, manager of risk and compliance for enterprise information security, at Humana Inc., one of the larger companies in the world, knows a thing or two about large-scale security implementations. And in  a company whose customer data is one of its main assets,  security is a corporate imperative. Discover the strategies that Weeks and Humana employ to keep the company ahead of the curve.Listen to the podcast:

In the first installment of a new regular series, Dennis Fisher talks with Bob Maley, the CSO of the Commonwealth of Pennsylvania, about the challenges of running an information security program in a government agency, the effects of the economy on his efforts and the ways in which user education can affect security in any organization. Listen to the podcast:
Read the transcript

Like every other security executive in the health care industry, Larry Whiteside, CISO of the Visiting Nurse Service of New York, spends much of his time dealing with compliance-related issues. But the distributed nature of his user population means that he has sensitive patient data on thousands of mobile devices all over the state. Learn how Whiteside balances compliance demands with security realities to keep data secure while maximizing efficiency.

Just 4% of users of corporate systems abide by IT security policies, even when that system handles very sensitive private information according to an academic survey [pdf] that has revealed humans to be the main flaw in any security system.

Researchers at the University of Wisconsin-Madison and  IT University, Copenhagen found that just 4% of the people surveyed obey best practice rules for passwords. The rest use the same passwords for different systems or use words that appear in the dictionary or write their passwords down on post-it notes beside the computer.  Read the full story [out-law.com]

CNet’s Elinor Mills has the scoop on a Comcast trial of a new automated service that will warn broadband customers of possible virus infections, if the computers are behaving as if they have been compromised by malware.

For instance, a significant overnight spike in traffic being sent from a particular Internet Protocol address could signal that a computer is infected with a virus taking control of the system and using it to send spam as part of a botnet.  Read the full story [CNet]  Also see this call by a Google executive for ISPs to take the lead on botnet cleanup.