Security now accounts for 20 percent of IT technology and training budgets.

Recent Security Analysis

• Cellphone Security Seen as Profit Frontier, June 2008, "Having saturated PCs and networks with data-stealing programs and financial scams, cybercriminals are following people as they e-mail, text message and surf the Internet from their mobile devices."
• Redspin Security Report: Top 10 Network Security Threats of 2008 - Q2 Update, May 2008, "In short, controls have been deployed, but are not configured adequately, and just the mere existence of a control does not imply that the control is functioning adequately."
  
• Do Hackers Pose a Threat to Smart Phones?, May 2008, "Like computers, smart phones are vulnerable to viruses and other types of malicious software."
  
• Microsoft Sees Big Jump in Trojan Downloaders, April 2008, "Of the malicious software attacks, there was a 300 percent increase in the number and proportion of Trojan downloaders and droppers that were detected and removed, according to the report."
• Even Seemingly Reliable E-mail Vulnerable to Hackers, March 2008, "You can no longer trust Office or QuickTime files that arrive in e-mail, even from organizations and people you deal with regularly. For that matter, any file from a popular software application, sent by e-mail or accessible at a website, is no longer trustworthy."
• Two-Factor Authentication: Ask the Right Questions, February 2008, "Financial institutions have to do more. FFIEC guidance fails to protect users, but it may have been a success from a public relations standpoint of making users feel that they were better protected by banks."
• Google: DNS Flaw Makes Phishing Scams Invisible, February 2008, "Users are at risk from a loophole in the the domain name system (DNS) that could make financial scams undetectable, according to a study by researchers from Georgia Tech and Google."
• Cyberthieves Go Phishing to Rob Banks, February 2008, "Of the top 20 companies targeted by phishing in 2007, the report says, 19 are in the banking industry."
• Mobile Banking, May 2007, a number of banks have begun deploying mobile banking applications; "One of the main obstacles in the United States is security."
• New Trojan Intercepts Online Banking Information, January 2008, "The scale and sophistication of this emerging banking Trojan is worrying, even for someone who sees bank Trojans on a daily basis."
• FAA Worries On-board Net Opens Jets to Cyberattack, January 2008, "The government is enacting rules to stop a new kind of cyberthreat: a computer attack that could compromise the safety of the much-anticipated Boeing 787 Dreamliner."
• If You're Concerned About Security, Look Beyond the Browser, December 2007, "Over the years I've come to the conclusion that counting bugs is a pointless exercise and that it's far better to limit the attack surface you present to hackers."
• Security Spending on the Rise, CompTIA Says, October 2007, "Security now accounts for 20 percent of IT technology and training budget, according to new survey."
• New Attacks Leave Online Transactions Vulnerable Even After Sign-on Authentication, August 2007, "Even site keys aren't good enough if clever hackers take over a transaction via emerging techniques such as 'man-in-the-browser' attacks."
• The Security Solution Revolution, June 2007, "Truly stopping malicious hackers and malware requires ubiquitous authentication for all users and devices."