Cybercrime Features

Misuse of language is turning 'ordinary, decent computer criminals' into 'cyberterrorists' who menace world peace. While it is unlikely we will ever abolish cybercrime, I do believe that we can make the internet a safer place. As the malware threat landscape continues to evolve, hackers are constantly changing techniques to counteract detection technologies vendors develop. The Payment Card Industry Data Security Standard presents serious legal challenges and risk for retailers. Some emails are important written records you might one day have to rely on in court, says Tamzin Matthew. IT security consultant Jim Reavis may have recently offered a big-time scoop to readers of his blog. Citing unnamed sources, he reported that Symantec is in talks with some of its investors, an indication that the security giant may be considering a return to private status. There has been a steady increase in corporate litigation over the past decade, and those legal proceedings are having an unforeseen impact on IT managers. This trend has been accelerated by the recent changes in the Federal Rules of Civil Procedure (FRCP). To properly discuss security issues related to multi-function peripheral (MFPs) - devices that copy, print, scan and fax - it's helpful to first have some background on the underlying technology in the machines that have raised so much concern as a possible data security risk. In a world of ever-increasing information, security requirements and regulations, companies must manage a complex compliance environment that has resulted in a multitude of linked processes. The web is not as free as you might think. In some countries, posting critical views online can cost you your freedom. Don't sit around waiting for the next piece of legislation. It's better to be adaptable and make general compliance your aim. Rob Buckley reports. IT security teams need to know about confidentiality clauses in contracts. Electronic discovery (e-discovery) is a topic generally limited to legal circles. Although recent case law and the revised Federal Rules of Civil Procedure (FRCP) are aimed squarely at judges and lawyers, both have profound implications for IT and security organisations, given the significant amount of electronically stored information (ESI) that is relevant for court cases. It all started with PCs in the workplace, then client-server architectures, then broad adoption of the internet with its openness and broad file-transfer capabilities and instant messaging and more. As 90 per cent of a company's data is located near- or online, long-term data integrity and protection requirements are becoming increasingly important, especially when facing compliance audits. Compliance should be triggered by good security rather than an auditors' visit, says Jen Mack. Today's industry regulations are complex and difficult to understand. CIOs today have an opportunity and a challenge: helping their organisations implement critical processes, policies and procedures that not only yield immediate, short-term results but also long-term business gains. Life would be easier if we didn’t have to patch our operating systems and apps. Patrick Gray explores the real reasons why updating is important. If you're part of a financial institution, chances are you've memorised the Federal Financial Institutions Examination Council (FFIEC) guidance chapter and verse, and, with risk assessment in hand, are in the midst of rolling out some form of consumer authentication.