Don't-Miss Business security Stories

Lawmakers push for federal data breach notification law

Lawmakers plan to resurrect national data breach notification legislation that has failed to pass in past sessions of Congress, but some advocates don't agree on what should be included in a bill.

malware

New vulnerability in Java 7 opens door to 10-year-old attack, researchers say

A new vulnerability in Java 7 could allow attackers to bypass the software's security sandbox and execute arbitrary code on the underlying system.

Most business networks riddled with vulnerable Java installations, report says

Despite the significant Java security improvements made by Oracle during the past six months, Java vulnerabilities continue to represent a major security risk for organizations because most of them have outdated versions of the software installed on their systems, according to a report by security firm Bit9.

How to keep terrorists, hackers and other bad guys from stealing your data

Here's what it takes to ensure security without breaking the bank.

Windows 8.1 steps up security with biometrics, encryption, and more

Windows 8.1 Preview promises a safer experience, from antivirus and malware protections baked into IE 11, to VPN and remote-wiping enhancements for business users.

Some data center operators take their chances with floods

Even most of those hit hardest by Hurricane Sandy are hardening their facilities instead of moving them entirely. In the storm-prone South, however, it's a different story.

Ransomware targets smaller businesses, security CEO warns

Trending cyber attacks such as ransomware may be typically overlooked by SMBs, but Lumension chairman and CEO, Pat Clawson, warns that they are actually in the line of fire.

Alert! Study finds Internet users heed browser warnings

Security warnings displayed by Web browsers are far more effective at deterring risky Internet behavior than was previously believed, according to a new study.

July's Patch Tuesday fixes 6 critical Microsoft flaws

Along with rolling out seven new security bulletins for Patch Tuesday, Microsoft also introduced a new policy giving developers 180 days to fix bugs.

Critical vulnerabilities found in single sign-on enterprise tool Atlassian Crowd

A critical vulnerability that could allow remote attackers to access sensitive enterprise log-in credentials and other data was fixed last week in Crowd, a single sign-on (SSO) and identity management tool used by large organizations to simplify access to their internal Web applications and services.

Passwords aren’t dying any time soon. Here's how to manage them effectively.

If you rely on passwords to protect your online identity, you should use a tool to help you remember and use them securely.

Small businesses are moving to cloud storage despite having significant reservations

Security concerns are on the rise as more businesses entrust sensitive data to the cloud. A cloud-security expert offers suggestions for small businesses seeking to minimize their exposure.

cisco_logo

Cisco fixes serious vulnerabilities in email, Web and content security appliances

Cisco Systems released security patches for its email, Web and content security appliances in order to address vulnerabilities that could allow attackers to execute commands on the underlying OS or disrupt critical processes.