IT Security
6.0K views | +0 today
Follow
IT Security
Windows IT Security News
Curated by IS Decisions
Your new post is loading...
Your new post is loading...
Scooped by IS Decisions
Scoop.it!

It's Time to Dump The "Insider Threat"

It's Time to Dump The "Insider Threat" | IT Security | Scoop.it

 

I've never been a fan of the term "insider threat" because I think it actually distracts us from properly characterizing and focusing on the problem. For many years, it meant a rogue internal user, and that's still how many people use it.

 

But the problem is that for every Bradley Manning (Wikileaks), there might be hundreds of Albert Gonzaleses trying to crack your perimeter.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

BitLocker's improvements leave gaps to be aware of

BitLocker's improvements leave gaps to be aware of | IT Security | Scoop.it

Microsoft's built-in encryption tool, BitLocker, has hidden costs that might outweigh Microsoft BitLocker Administration and Monitoring improvements.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Hacker breaks Windows 8 Secure Boot

Hacker breaks Windows 8 Secure Boot | IT Security | Scoop.it

 

Peter Kleissner, an Austrian hacker, claims to have written a bootkit that circumvents a key security feature in Windows 8.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft opens up new beta program for Microsoft Security Essentials

Microsoft opens up new beta program for Microsoft Security Essentials | IT Security | Scoop.it

 

Microsoft has started to send invites to existing Security Essentials 2 beta testers, inviting them to a future test program on Microsoft Connect. 

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft: We won't update others' Windows apps

Microsoft: We won't update others' Windows apps | IT Security | Scoop.it

 

Microsoft on Tuesday slammed the door on updating third-party software via Windows Update in the upcoming Windows 8.

One security expert said the company was missing a big opportunity to improve the overall security of Windows PCs.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft fixes gaping hole in Windows TCP/IP stack

Microsoft fixes gaping hole in Windows TCP/IP stack | IT Security | Scoop.it

An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. Microsoft urges Windows users to treat this update with the utmost priority.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft Security Bulletin Summary for November 2011

Microsoft Security Bulletin Summary for November 2011 | IT Security | Scoop.it

- Vulnerability in TCP/IP Could Allow Remote Code Execution (2588516)
- Vulnerability in Windows Mail and Windows Meeting Space Could Allow Remote Code Execution (2620704)
- Vulnerability in Active Directory Could Allow Elevation of Privilege (2630837)
- Vulnerability in Windows Kernel-Mode Drivers Could Allow Denial of Service (2617657)

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

IT administrators give thanks for light Patch Tuesday

IT administrators give thanks for light Patch Tuesday | IT Security | Scoop.it

Microsoft is giving IT administrators a break for Thanksgiving, with only four security bulletins for this month’s Patch Tuesday.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft Releases Workaround For Kernel Flaw Used By Duqu

Microsoft Releases Workaround For Kernel Flaw Used By Duqu | IT Security | Scoop.it

Microsoft has released a workaround for the Windows kernel flaw used by the Duqu malware.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Patch Tuesday: Fix for 'Duqu' zero-day not likely this month

Patch Tuesday: Fix for 'Duqu' zero-day not likely this month | IT Security | Scoop.it

Three of the bulletins carry “remote code execution” risk while the fourth exposes Windows users to denial-of-service attacks.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Duqu installer contains Microsoft Windows zero-day vulnerability

Duqu installer contains Microsoft Windows zero-day vulnerability | IT Security | Scoop.it

Security researchers have discovered the Duqu installer, yielding new clues into how the Duqu Trojan infects systems.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft working to patch 0-day Windows vulnerability discovered in Duqu malware

Microsoft working to patch 0-day Windows vulnerability discovered in Duqu malware | IT Security | Scoop.it

Microsoft confirmed on Tuesday that it is working to patch a flaw found in the Duqu malware.
Security researchers discovered a previously unknown Windows kernel vulnerability inside the infamous Duqu malware.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Even the IT folks aren't always password proficient

Even the IT folks aren't always password proficient | IT Security | Scoop.it

A fundamental lack of IT security awareness – particularly in the area of password control and privileged logins – is potentially paving the way for more waves of data breaches, new research reveals.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Windows XP will be the biggest security threat in 2012

Windows XP will be the biggest security threat in 2012 | IT Security | Scoop.it

According to F-Secure, machines running Microsoft's older operating system will be the biggest security threat in 2012.

Windows 7 may have become the most popular PC operating system in the world, StatCounter figures for October revealed Windows 7 runs 40.5 percent of PCs across the world, while XP can be found on 38.5 percent.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Fighting off Microsoft Hyper-V security hacks

Fighting off Microsoft Hyper-V security hacks | IT Security | Scoop.it

Learn how inherent security configurations in Microsoft Hyper-V can help reduce your virtual attack surface, starting with the initial Hyper-V setup and deployment.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

2012 Security Spending To Hold Strong

2012 Security Spending To Hold Strong | IT Security | Scoop.it

For 2012, 37% of information security professionals say their business plans to increase its security spending, while only 16% expect their security spending to decrease.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

IT Security Salaries Expected to Grow 4.5% in 2012

IT Security Salaries Expected to Grow 4.5% in 2012 | IT Security | Scoop.it

Salaries for IT security professionals are projected to increase by 4.5 percent in 2012, according to a new salary survey.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Windows XP Has 10-Times The Infection Rate Of Windows 7

Windows XP Has 10-Times The Infection Rate Of Windows 7 | IT Security | Scoop.it

The Security Intelligence Report is a biannual report by Microsoft that analyzes past and present security trends. It focuses on “software vulnerabilities, software vulnerability exploits, malicious and potentially unwanted software, and security breaches”.

The latest report published yesterday focuses on the first and second quarter of 2011 and compares the findings with data from previous years.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Duqu Workaround Causing Graphics Driver Error

Duqu Workaround Causing Graphics Driver Error | IT Security | Scoop.it

A workaround released by Microsoft to block a vulnerability that could lead to the Duqu worm installing itself is causing issues with graphics driver managing font displays.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Hackers: The Good, the Bad and the Ugly

Hackers: The Good, the Bad and the Ugly | IT Security | Scoop.it

When someone mentions hacker, what is the first thought that comes to mind? Admit it, you picture a shady criminal hacker attempting to access your private data for nefarious reasons.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

RSA to Integrate SecurID with Microsoft, Citrix

RSA to Integrate SecurID with Microsoft, Citrix | IT Security | Scoop.it

RSA SecurID token authentication system will now be integrated with two important identity services: the Microsoft Windows Active Directory Federation Services 2.0 as well as Citrix Receiver VDI client.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft Security Advisory (2639658): Vulnerability in TrueType Font Parsing Could Allow Elevation of Privilege

Microsoft is investigating a vulnerability in a Microsoft Windows component, the Win32k TrueType font parsing engine. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Microsoft Security Bulletin Advance Notification for November 2011

Microsoft Security Bulletin Advance Notification for November 2011 | IT Security | Scoop.it

This is an advance notification of security bulletins that Microsoft is intending to release on November 8, 2011.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Hackers Press 'Schmooze' Button

Hackers Press  'Schmooze' Button | IT Security | Scoop.it

Despite banks and other large companies spending large amounts of money on firewalls and complex technology, it is often their own employees who are letting identity thieves in the door.

more...
No comment yet.
Scooped by IS Decisions
Scoop.it!

Preparing for Windows workstation security breaches

Preparing for Windows workstation security breaches | IT Security | Scoop.it

Your users’ Windows workstations are vulnerable to numerous security breaches. Consider these aspects when assembling your security incident response plan.

more...
No comment yet.