Organizations are often not aware of the scope or the validity status of their X.509 certificate deployments until it is too late. Organizations need to establish formalized plans and, if necessary, leverage available tools to minimize impacts. Key Findings ■ Many high-profile, externally facing and internally facing system outages are traced to unplanned X.509 certificate expiry. ■ While several offerings exist to discover X.509 certificates, most organizations rely on spreadsheet-based tracking methods and manual processes to keep track of certificates, [...]

VeriSign Inc, the company in charge of delivering people safely to more than half the world’s websites, has been hacked repeatedly by outsiders who stole undisclosed information from the leading Internet infrastructure company. The previously unreported breaches occurred in 2010 at the Reston, Virginia-based company, which is ultimately responsible for the integrity of Web addresses ending in .com, .net and .gov. VeriSign said its executives “do not believe these attacks breached the servers that support our Domain Name System network,” [...]

From the “you asked for it, you got it” department: Previously available only on the Apple iOS (iPhone, iPad) platform, our Proofpoint Mobile Archive app is now available for Android devices. The Proofpoint Mobile Archive app lets users of Proofpoint Enterprise Archive (our cloud-based email archiving solution) access their archived email from anywhere, at any time. The app lets you search your entire email archive from your iPhone or Android device, allowing you to quickly find messages, view message details, [...]

Scotland Yard has admitted to inadvertently sharing the email addresses of a number of victims of crime with other victims. In total 1,136 emails were sent out on Monday, the Metropolitan Police said. No other personal details were revealed and police are contacting everyone affected to explain what happened and to apologise, Scotland Yard confirmed. The Met said the vast majority of the people who had been affected were victims of “lower end crime”. The maximum fine that can be [...]

A crackdown on “phishing” scams has been announced by 15 of the top technology companies. Email providers such as Google and Microsoft will work with companies like Paypal and the Bank of America to improve authentication. Phishing attacks typically involve scammers posing as familiar companies in an attempt to trick users into sharing personal information. This co-ordinated effort aims to make this more difficult. The Domain-based Message Authentication, Reporting and Conformance (DMarc) – as the coalition is known – has [...]

The Information Commissioner’s Office (ICO) has fined Midlothian council £140,000 for disclosing sensitive personal data about children and their carers to the wrong people on five separate occasions. The commissioner said that the five breaches, which took place between January and June 2011, were all serious. One of them happened when papers about the status of a foster carer were sent to seven healthcare professionals, none of whom had any reason to see the information. It took place in January [...]

A crackdown on “phishing” scams has been announced by 15 of the top technology companies. Email providers such as Google and Microsoft will work with companies like Paypal and the Bank of America to improve authentication. Phishing attacks typically involve scammers posing as familiar companies in an attempt to trick users into sharing personal information. This co-ordinated effort aims to make this more difficult. Read the full story…. http://www.bbc.co.uk/news/technology-16787503

Gradian Systems, a UK-based Proofpoint partner, are now offering Proofpoint Enterprise Governance as part of their enterprise information governance solutions. Proofpoint, a pioneering security-as-a-service provider, is extending its information archiving and governance capabilities with the introduction of Proofpoint Enterprise Governance, an enterprise information governance solution that allows organizations to easily track, classify, apply policies and monitor unstructured information across the enterprise. Proofpoint Enterprise Governance uses patented, Digital Thread® technology to fingerprint documents and track their versions and destinations across disparate [...]

The websites of Israel’s national airline, El Al, and the Tel Aviv stock exchange have been disrupted just hours after they were reportedly threatened by a Saudi computer hacker. Flights and trading on the stock exchange have not been affected. There has been a series of hacking attacks affecting Israeli businesses in the past two weeks. The most serious saw details of tens of thousands of Israeli credit cards posted online. A message was posted on the home page for [...]

Online shoe and apparel outlet Zappos.com has apologised over a massive data breach that exposed the personal details of millions. Up to 24 million customers of the Amazon subsidiary may have been affected by the breach, which exposed names, email addresses, addresses, phone numbers, and password hashes. Zappos stressed that credit card data was not exposed. Hackers may have been able to lift the last four digits of credit card numbers but nothing beyond this, according to the e-tailer. Accounts [...]