Security News Curated from across the world
ยท 86 percent of respondents indicate that cyber crime has become a concern.
To help stem the tide, the survey recommends that a national cyber crime center be established where law enforcement and other agencies can work together to combat the problem.
http://www.securityinfowatch.com/article/article.jsp?siteSection=364&id=15726
The survey of more than 2,000 individuals found that viruses and worms, cited by 54 percent of respondents, and spyware, selected by 51 percent, continue to be the top two information security threats organizations face today.
Nearly three-quarters of respondents surveyed (71 percent) said their organizations allow mobile and remote employees to access data and networks, yet relatively few have implemented security awareness training tailored specifically for the mobile and remote workforce.
Yet among organizations that have implemented such training for remote and mobile employees, 92 percent of respondents believe that the number of major security breaches has been reduced.
http://www.net-security.org/secworld.php?id=6148
The primary goal of the third version of Microsoft SCP, called SCPcert, is to provide customers with the best protection possible by making necessary information available for CERTs to respond to computer security incidents.
http://www.net-security.org/secworld.php?id=6151
“It stores the keys separately from the data items and encrypts the links between them,” says Oggy Vasic, senior vice president of software development for Eruces. The authentication and authorization part of the key process is aimed at protecting data from outside attacks as well as for preventing insider attacks, such as a malicious employee snooping into the database or siphoning information off of a storage device, he says.
Jon Oltsik, senior analyst for information security at the Enterprise Strategy Group, says the Tricryption technology approach could provide a more cohesive way to manage encrypted data replication. “The value I see is the potential for a single encryption service for multiple applications like encrypting storage, file systems, databases, and applications,” Oltsik says.
Technology alone won’t win this battle, it will take security standards, partnerships, and enterprise sales, and marketing,” he says.
Encryption expert Nate Lawson, principal with Root Labs, says Eruces’s approach in part is based on its central key server handling all keys. “They’re saying [they] only hand out a few keys at a time, so therefore it’s hard to get access to [their] keys,” he says.
Eruces, meanwhile, plans to expand its OEM strategy — Crossroads Systems, for example, OEMs Tricryption for its TapeSentry and SecureVTS storage products.
http://www.darkreading.com/document.asp?doc_id=154039&WT.svl=news2_1
“Having a SIM solution with no deployment headaches or infrastructure to manage gives organizations a valuable option that significantly improves security for their organization in an easy-to-use, efficient manner,” said Mike Cote, president & CEO at SecureWorks.
SIM On-Demand enables organizations to easily meet and exceed regulatory requirements for log monitoring and review. SIM On-Demand also simplifies demonstrating compliance to board members, management and examiners with powerful, user-friendly reporting.
http://www.secureworks.com/media/press_releases/20080513-simondemand
Due to the complexity in traditional backup solutions, and the long amount of time taken for backups, it is seldom convenient or easy to manage these backups; even traditional RAID options — which solve these problems, suffer from hard and complex setup processes.
http://www.net-security.org/secworld.php?id=6123