News
Voluntary Breach Disclosure Rare But Valuable


 
Botnets Serving Project Aurora Likely Built By "Amateurs," Researcher Says


 
Ford Motor Rolls Out New Security Features To Prevent Car-Hacking


 
Product Watch: Gemalto Rolls Out Secure Online Banking On A Stick


 
New Massachusetts Data Privacy Law Adds Incentive For Strong Database Security


 
Smartphone Weather App Builds A Mobile Botnet


 
At RSA, Some Security Pros Don't Practice What They Preach


 
Tool Automates Targeted Attacks On Social Network Users


 
New BlackEnergy Trojan Targeting Russian, Ukrainian Banks


 
Product Watch: New Microsoft Identity Technology Aims To Protect Online Privacy


 
Another Botnet Gets Dismantled, But This Time With Arrests


 
Cybersecurity Czar Outlines Priorities


 
Product Watch: Secunia To Offer Free Application Updater Service To Consumers


 
Securing The Link Between Web Applications And Databases


 
New Cisco Architecture Attempts To Redefine Access


 
Report Reveals Inaccuracies Of DHS' E-Verify System


 
Product Watch: Free Tool Cleans Up 'Rusty,' Unsafe Firewall Settings


 
Verizon Offers Up Its Data Breach Framework


 
State Of Application Security: Nearly 60 Percent Of Apps Fail First Security Test


 
Tech Insight: Preparing Your Enterprise For Cyberwar


 
Database Security Metrics Project Needs Community Input


 
Cryptome Back Online After Brief DMCA Battle


 
At RSA Conference, Analysts Will Focus On Security's 'Big Issues'


 
Comcast Goes DNSSEC, OpenDNS Adopts Alternative DNS Security


 
FBI Investigating Web Spycam


 
Attack Unmasks User Behind The Browser


 
Researchers: Rootkits Work Nicely On Smartphones, Thank You


 
Navy Planning Prototype Cyber-Network Security System


 
Criminals Hide Payment-Card Skimmers Inside Gas Station Pumps


 
Product Watch: HP, Fortify To Offer Hybrid Analysis Of Web App Pen Testing, Code Scanning


 
SQL Injections Top Attack Statistics


 
Spike In Power Grid Attacks Likely In Next 12 Months


 
How To Handle Patch Overload


 
DHS Three Years Behind On Smart Card Project


 
Thousands Of Organizations Worldwide Hit By Widespread Malware Attack


 
Czech Researchers Say 'Chuck Norris' Kicks Bots


 
Product Watch: New Service Shuts Down Counterfeit-Brand Websites


 
U.S. Fails Test In Simulated Cyberattack


 
The Top 10 Enterprise Botnets


 
Google Acknowledges Privacy Issues With Buzz


 
New Report Examines Malware's Origins, Motivations


 
Proposal Would Hold Software Developers Accountable For Security Bugs


 
DoD To Issue Stronger Security Guidelines To Defense Vendors


 
Tech Insight: Securing The Virtualized Server Environment


 
New Technology Offers Secure Electronic Payment Via Mobile Phones


 
Iran Shutters Google's Gmail Service


 
Consumers Fighting Back Against Identity Fraud, Study Says


 
'Aurora' Attacks Still Under Way, Investigators Closing In On Malware Creators


 
Workarounds Abound While Oracle Scrambles To Patch Zero-Day Flaw


 
Healthcare Data Exposed In California Security Breach


 
 

 
 
 


Upcoming Events

Managing Cyber Security Risk: Applying the New NIST Risk Management Framework Dr. Ron Ross, Sr. Computer Scientist, NIST
Tuesday, March 30, 2010 11:30 a.m. – 12:30 p.m EDT
Join this national broadcast via WebEx and gain fresh insights into how your organization can benefit from the advances made by NIST in information risk management. This event features two experts in Information Risk Management and will be of interest to both public and private sector organizations.
>> MORE INFORMATION

 

Previous Events

The Pragmatic CSO Forum – Part II and III
November 11th and December 3rd – Online Collaboration Event
Steps two and three in a three-part series featuring a coaching and collaboration opportunity. Industry expert Mike Rothman will deliver
the content & coaching via WebEx while a member only P-CSO Collaboration Space will connect you with peers who are applying the Pragmatic program.
>> MORE INFORMATION

INFOSEC Workshop: Introduction to Information Assurance
Wednesday, November 4th – Herndon, VA
The intent of this course is to prepare personnel who are considering or have been newly assigned to their job roles as identified in Federal Information Processing Standard (FIPS 200), which is acceptable as best practice in commerce as well.
>> MORE INFORMATION

The Pragmatic CSO “LIVE”
Complimentary Web Event
Tuesday, October 13, 2009 8:30 am PDT/11:30 am EDT
Are you looking for a management training program for a CSO? Or do you desire a security program roadmap that is simple, focused and achievable? You are in the right place! Join author and analyst Mike Rothman as he outlines a pragmatic, 12-step process you can employ to increase your effectiveness and value to the organization.
>> DOWNLOAD