While the cause of the Epsilon e-mail breach has not been publicly disclosed, the incident's aftermath has seen a growing list of organizations impacted by the breach. It also has ignited a new debate about the sensitivity of e-mail addresses.
For Will Pelgrin, the former New York State chief information security officer, mobile devices, insiders and old infrastructure represent the major challenges local and state governments face in in securing information technology.
The latest Verizon Data Breach Investigations Report is out, and the good news is: The number of compromised records is down. The troubling news is: The number of breaches is up. Bryan Sartin, one of the report authors, explains why.
Participants in a new pilot project claim they've demonstrated that using interoperable digital identities, digital signatures and cloud computing has the potential to accelerate the initiation of clinical trials of new drugs and treatments while lowering costs.
White House Cybersecurity Coordinator Howard Schmidt unveils a government/private-sector strategy that the administration says would eventually let users obtain a single credential as a one-time digital password to transact business over the Internet.
Marcus Ranum isn't just a well-regarded information security expert. He's also a customer of the RSA SecurID product, and he's got some strong feelings about the RSA breach and how the industry has responded to it.
Most furloughed federal employees would have had to turn in their BlackBerries and other mobile devices in a government shutdown. Just as well, using the technology could result in an employee landing in the slammer.
It's serious news that RSA's SecurID solution has been the target of an advanced persistent threat. But "It's not a game-changer," says Stephen Northcutt, CEO of SANS Institute. "Anybody who says it is [a game-changer] is an alarmist."