Slamming the door on malware; TJX offers settlement in wake of massive data breach

Latest security news.

Secure Web gateways: slamming the door on malware, 09/25/07: The Web has become the new security battle front, surpassing even e-mail as the leading source of malware infections. In a recent study, Google found that one in 10 Web sites that it crawled contained a malicious payload. And Gartner Group estimates that 75% of enterprises will be infected this year with targeted malware that evades their traditional defenses.

TJX offers settlement in wake of massive data breach, 09/24/07: The TJX Companies is offering three years of credit-monitoring services along with identity theft insurance coverage to all consumers whose driver's license or other personal data may have been compromised by the massive data breach disclosed earlier this year by the retail company.

'Fraudster' posts confidential eBay member data on forum, 09/25/07: Someone used an eBay discussion forum on Tuesday to post confidential information about eBay users along with what may be their credit card numbers.

Security holes expose data stored in Tivoli system, 09/24/07: IBM has issued a warning to customers that security fixes should be installed for two vulnerabilities in the IBM Tivoli Storage Manager (TSM) backup software client. The security holes could allow a buffer overrun attack or enable unauthorized access to stored data, IBM said.

ArcSight launches PCI compliance suite, 09/25/07: ArcSight on Monday announced a suite of software designed to make sure companies are in compliance with the Payment Card Industry’s (PCI) latest data-security standards.

Video: NAC standards: Where are we now?: Steve Hanna, a Juniper distinguished engineer and co-chair of NAC standards groups at the IETF and the Trusted Computing Group, discusses the progress of the NAC standards effort and Cisco's lack of involvement.

Critical vulnerability found in Ask.com toolbar, 09/25/07: A vulnerability in Ask.com's toolbar for Internet Explorer could allow an attacker to take control of a person's computer, according to security advisories.

Google says Street View will comply with privacy laws, 09/24/07: Google's Street View application, which has raised privacy concerns because of the street-level views of locations it provides, will respect the local laws of the countries wherever it is available, the company's privacy counsel said today in a company blog.

Chat with Amazon.com’s CTO live: If ever there were a man that knew how to eek out capacity and secure a data center, it would be Werner Vogels, vice president & CTO of Amazon.com. Join him for a live chat on Monday Oct. 1 from 2 p.m. - 3 p.m. EDT. No registration is required, but those who RSVP “yes” to community editor Julie Bort in advance will be eligible for a Network World T-shirt.

Related:

Copyright © 2007 IDG Communications, Inc.

The 10 most powerful companies in enterprise networking 2022