August, 2009:

• Microsoft IIS 0-day
• Can the president shut down the internet?
• Purported malicious CD-ROMs actually part of pen test
• AV makers fault Apple on Snow Leopard malware scanner
• Wildfire malware
• August 24, 2009: A decline in phishing
• Facebook to modify privacy practices after investigation
• Skype snooping trojan detected
• Effectively Eliminate Admin Rights across the Enterprise
• Mass SQL injection attacks still scaling up
• Credit union agency warns of fake CD-ROMs
• Phishing declines as attackers shift strategy
• Reduce Risk & Save Money with Tokenless Two-Factor Authentication
• Sun deal not OK'd yet
• Hacker pleads guilty in massive bank fraud case
• Twitter XSS vulnerability not yet fixed
• Snow Leopard to contain anti-malware component
• Chrome updated
• Social (in)security
• How a pragmatic approach to access governance can help energy companies with FERC/NERC compliance
• NAC firm ConSentry closes
• Hackers rest over summer, pounce during Christmas
• UMass breach affects 20 years of alumni
• Merchants encouraged to crack down on skimming
• Wireless flaw could let hackers breach wired network
• Wi-Fi + NAC = BFF
• More Mac DNS changing malware uncovered
• New mass SQL injection attack infects 56,000 websites
• Identity fraud ring busted in New York
• Mass. data law revised
• New challenges for access control
• From blocking bad to enabling good
• File transfer program exposes ROTC members' information
• Health care breach notification mandated
• Researcher details Facebook CSRF flaw
• Robert Duran, information security and privacy officer and VP of information risk management, Time, a division of Time Warner
• Data stewardship, accountability: Expanding roles of the security professional
• Formalized development of information assurance
• "Dirtiest" websites host average 18,000 threats
• Malware designed to steal IDs increased 600 percent
• Free health care framework
• Phishing apps found on Facebook
• Radisson Hotels breached
• Do you know where your user IDs and passwords are?
• Survey: Social networks increasingly blocked
• Dow Williamson, executive director, SCIPP International
• Spammers seeking "volunteers" to DDoS White House
• Virus spreading via Delphi programming language
• Facebook accused of violating privacy laws
• Survey: Data at risk in app testing and development
• Indictments out for Heartland, Hannaford breaches
• Adam Meyers, principal, Information Assurance Division SRA International
• Cybercriminals move up the stack -- but so does data protection
• Civilians cyberattacked Georgia in 2008 war
• Adobe ColdFusion, JRun updated for critical issues
• Social network attacks top website target list
• It's time to embrace (and prepare for) the shift to the cloud
• PCI: Prevention is the focus
• Paul Contino, VP, Information Technology, Mount Sinai Medical Center
• August 10, 2009: The DDoS Attacks
• Microsoft leads browsers in malware, phishing defense
• Twitter used as botnet command-and-control hub
• Cyber Wiki page planned
• Apple issues BIND patch
• China backs off on web filtering software mandate
• Fluke snares AirMagnet
• Guardium -- Best Practices for Database Security & Compliance
• What's old is new again
• Most malware dies within 24 hours
• Kris Herrin, CSO, Heartland Payment Systems
• Wolfgang Kandek, CTO, Qualys
• Jim Cupps, director, Data Architecture and Services, Liberty Mutual Investments
• WordPress issues new version, closes password flaw
• For fourth month in a row, Safari updated
• Small businesses largely not PCI compliant
• Why cloud security is only as strong as your weakest password (and what you can do about it)
• Microsoft pushes out ATL, ActiveX fixes
• eBay mandates developer password change
• Top websites using Flash cookies to track user behavior
• Another Twitter DDoS?
• The simple complexity of PCI
• Niels Henrik Rasmussen, founder and CEO, Secunia
• Report: Mass. bank customers getting replacement cards
• US-CERT director resigns, plans to work for RSA
• Federal court spurns anti-spammer
• Fortinet plans IPO
• We need a game changer, now
• Personal information of National Guard soldiers at risk
• A new approach to identity and access management governance: Governance with accountability
• Letters
• Threat of the month: Malicious notifications
• The key: Making encryption simple
• Protecting entryways: San Diego Unified Port District and AccelOps
• Political state security: Hearts and minds
• Social network security: Social anxiety
• Targeting browsers
• Is the U.S. lagging in the cyberworld?
• Group of ISPs issue tips for dealing with bots
• Cause of Twitter DDoS traced to Russia-Georgia conflict
• A new and improved cyber dialogue
• Your browser is surfing you
• Calling foul on cybercriminals
• Universal imperatives for protecting data
• Heartland posts Q2 loss
• ActiveX fix, eight other Microsoft patches to land Tuesday
• Vulnerabilites hidden in XML libraries
• Mac OS X 10.5.8 update fixes 18 flaws
• Twitter fights off massive DoS attack
• Secure call centers: Backbone of the health care industry
• Fed data protection guidelines released to some criticism
• Fake job emails
• 4,400 energy company employees at risk
• How to securely manage remote IT equipment
• Energy companies say NERC standards inadequate
• Better Business Bureau warns of phone phishing ploy
• From the jury room
• Cloud computing security: A requirement, not an afterthought
• WordPress patches
• Hacker charged with domain name theft
• 2010 budgets to fund app security and DLP, study shows
• U.S. Marines block social networking sites
• Implementing a self-funding security program
• Researchers laud Twitter alerts on bad links
• Hathaway to step down
• Firefox plugs SSL bugs
• DoD might reblock Facebook, Twitter
• Apple patches iPhone text message vulnerability
• Hacker infiltrates Canadian electric company’s e-billing system
• Laptop stolen from UCCS professor puts students at risk