Dennis Fisher

NEW YORK—The phishing epidemic that has overwhelmed the financial services industry is getting worse by the day, and security teams at banks and other financial institutions are in a daily battle to keep their customers data safe from an increasingly sophisticated enemy that is constantly changing tactics and honing its craft, security experts say. Security […]

A vulnerability in Microsoft Corp.s Windows first identified in May—but only now receiving widespread attention—has reopened the contentious debate between security researchers and software vendors over the proper method and time frame for disclosing security flaws. Few topics cause as much hand-wringing and heartburn as full disclosure. Simply mentioning the subject in some circles can […]

In the year since Microsoft Corp. made its controversial decision to begin releasing patches on a monthly basis, the policy has had a profound effect on enterprise security—changing forever the way companies deploy updates and helping to hasten the end of the manual patching process. Administrators say the predictable patch cycle afforded to them by […]

The landmark contract that the U.S. Air Force signed with Microsoft Corp. and Dell Inc. recently not only will make that organizations systems more secure but also will make it easier for other federal agencies to lock down their own networks. Under the terms of the multiyear deal, the two companies will deliver thousands of […]

Numerous and prolific, phishing scammers continue to claim victims, recently damaging the reputation of the most promising technology deployed to thwart them. In a week that saw analysts declare a 500 percent increase in global phishing activity over the previous quarter, experts are warning of new attacks that not only circumvent the fledgling DomainKeys system […]

Citrix Systems Inc. on Tuesday announced that it is acquiring a small SSL (Secure Sockets Layer) VPN provider, a move that company officials hope will position Citrix as a major player in the remote-access market. The purchase of Net6 Inc. for $50 million puts Citrix smack in the middle of a rapidly expanding and fiercely […]

As IT moves deeper into network security, AT&T Corp. is preparing managed offerings that company officials hope will change the way enterprises think about and purchase security products and services. The centerpiece of the strategy is Project Gemini, an initiative through which the company intends to augment, or entirely replace, customers edge defenses with security […]

Most security vendors have moved away from signature-based detection of attacks to behavior or anomaly-based solutions, but a small group of companies has eschewed this approach altogether and is using advanced memory protection technology to prevent malicious code from executing on protected machines. Most IPSes (intrusion prevention systems) work by observing the behavior of a […]

A new version of the Sober worm appeared on the Internet early Friday morning and already it is having quite a bit of success infecting users in Europe through the use of social engineering. Sober.J arrives in an e-mail message that appears to be a returned-mail error message, telling the user that an e-mail sent […]

With the uncertainty of the election past and normalcy returning to Washington, officials at the Department of Homeland Security are focused on finding a permanent head for the National Cyber Security Division within the next 60 days, insiders say. The top federal cyber-security job has been vacant since Amit Yoran resigned the post in September. […]