Tragedy strikes yet again as a major retailer cannot account for over a million cardholder data records. If that last sentence still got your attention, then you are probably one of few that still finds data breaches and the over-the-top media response interesting. It only seems like a few days pass, and then we hear […]
Latest data breach!! Read More »
ISSA-UK Dragon’s Den Testing Times: Managing Vulnerabilities in Complex Systems HMS President, River Thames, London, United Kingdom Thursday 11th July, 2013 (5 CPEs) Register Here This year’s Dragon’s Den event will be looking at ways to help bring the gap between emerging vulnerabilities/threats and the ever increasing complexity of systems, both of which are taking an
ISSA-UK Dragon’s Den Event, HMS President – Thursday July 11th 2013 Read More »
Shorts are on, sandals brushed down and summer is here! Unfortunately for us QSAs, someone had a bright idea of issuing a June deadline for both Level 1 and Level 2 Merchant PCI DSS Compliance and summer tends to be the busiest time of the year for us. We are also busy making suggestions and improvements
May 2013 Newsletter Read More »
We see in the news another example of cyber criminals successfully stealing a private certificate and using it to their nefarious advantage. In this instance, cyber criminals allegedly exploited perimeter defences and web application security to gain access to one of Bit9’s private certificates –Â https://blog.bit9.com/2013/02/08/bit9-and-our-customers-security/. A private certificate is used to sign an encryption key,
The Bit9 incident Read More »
Presented by ISSA International & Generously Hosted by Deloitte Theme: Secure Information for Europe The 2013 ISSA London Conference will focus on some key challenges we all face; Cyber Crime, Cyber Conflict & Cyber Espionage. At this conference attendees will hear from leading European & International speakers that will inform and set our future
ISSA European Conference – Feb 5 2013 Read More »
Since publication of 6.5 million LinkedIN password records by Russian hackers last week, reports have been flooding in of other accounts being subject to unauthorised access.  Where users have used the same email address and password for their LinkedIN account and  other accounts such as eBay, PayPal, Skype, Facebook, Amazon, Twitter and personal email accounts,
LinkedIn breach – the fallout Read More »
I expect readers have heard about the LinkedIn hack, either in the news, or via an email from LinkedIn with password reset instructions if your account appeared on the leaked list. LinkedIn have now also added salt to their hash, so along with using SHA-1, which is a mathematical algorithm that turns a string of
LinkedIn hack – the reality Read More »
Payment processor Euronet Worldwide Inc said a “small portion” of its European business was the target of a criminal security breach late last year, sending its shares down as much 6 percent… –Â http://www.reuters.com/article/2012/01/23/us-euronetworldwide-idUSTRE80M2ET20120123 What’s worrying here that when you’re dealing with a payment processor, even a “small portion” can add up to a huge number
Euronet reports breach at European business Read More »
Our next ISSA-UK event is on Tuesday 22nd November, 2011, at PWC in Leeds. Information Security / Computer Security changes and evolves constantly. What are the latest trends? ISSA brings you some thoughts on potential issues which we need to consider as a part of the corporate security strategy. Agenda: 16:00 Registration 16:30 Introduction, Les
ISSA-UK Event – Trends in Information Security, Leeds Read More »
