Best Western says data breach even smaller than first thought
The Best Western hotel chain now says that a system intrusion exposed the data of just 10 guests -- a far cry from the 8 million stolen records reported by a Scottish newspaper. Read more...

Call out a phisher, get attacked by malware

Best Western refutes story claiming 8 million customer records were breached

Brazilian charged in botnet scheme, will be extradited to U.S.

China blocks iTunes, users claim

Changes to PCI standard not expected to up ante on protecting payment card data

Gag order against MIT students dissolved by judge

Security gag order against MIT students gets another day in court

Wells Fargo Codes Used To Access Personal Information

Judge refuses to lift gag order on MIT students in Boston subway-hack case

More Cybercrime and Hacking Stories

Majority of Web users share personal data online
AOL research shows 89% of Internet users have at some point willingly given away personal details online.

10 quick fixes for the worst security nightmares
Try these simple solutions for some of the most common security vulnerabilities.

Flying to Defcon with no ID -- yes you can!
You're on your way to Defcon. You're flying. What better way to begin your trip than by attempting to game the TSA's latest security-screening procedures?

Wi-Fi Warfare
Find unauthorized Wi-Fi access points on your network and secure them ASAP, warns Frank Hayes.

Business hacks reap money from e-commerce sites
Want to fleece e-commerce Web sites for millions, but don't have the time to develop "133t" tech skills or go around war driving for open Wi-Fi access? No worries -- crime's still an opportunity, as detailed in a Black Hat seminar.

Black Hat conference bios show funny side of security
Vegas in August is nobody's reasonable idea of a good time, but Ellen Messmer spotted some fun in the official biographies of various Black Hat speakers. Now, about that Spaghetti Monster ...

FAQ: The DNS bug and you
Are you at risk from the big DNS cache-poisoning vulnerability? If so, what do you do about it? We tackle those questions and a few others in our FAQ.

Georgia president's Web site falls under DDOS attack
Network experts said the Web site for the president of Georgia was hit by a distributed denial-of-service attack executed by a botnet.

How CAPTCHA got trashed
CAPTCHA -- the wiggly words meant to keep honest those seeking a new e-mail account or access to an online discussion thread -- is now more useful to malware authors than as a security measure. Steven J. Vaughan-Nichols is the bearer of bad news.

Where the truth is: Logs and breach-disclosure laws
A data breach and the ensuing public relations nightmare is something no company wants to deal with. Contributor Anton Chuvakin suggests that keeping good log data could ease the pain if that comes to pass.

Here are 15 devices and add-ons that make the back-to-school computing experience extraordinary. As Facebook-like apps infiltrate the enterprise, they're integrating the workforce in unforeseen ways. If you want to expand the visual capabilities of your laptop, you can add two monitors without spending a lot of time or money. The latest iteration of Asus' groundbreaking mini-notebook adds a faster CPU, a larger display and a better keyboard.

Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS.

Four years from now, the IT field will be a vastly different place. Will you be ready?

Spam Spikes: A Real Risk to Your Business (Source: Messagelabs) This white paper will help you understand the ever changing email threats to your business, and how MessageLabs provides a unique solution. Qualified Security Assessors are not created equal Improving Correspondence Management for Financial Services Firms with Adobe LiveCycle ES Archiving Compliance with Sunbelt Exchange Archiver The Impact of Messaging and Web Threats Solution Brief: Reduce Energy Costs Intercept Spam & Viruses Ninja: Total Email Security Deploying Virtualized NetWare on Linux Whitepaper Toward More Flexible, Next-Generation Collaboration Solutions Discover How You Can Easily Manage the Mac in Your Enterprise Best Practices for integrating the Mac into Your Enterprise How the Mac is Becoming an IT Standard in the Enterprise HP StorageWorks Virtualization Surviving and Thriving in Tough Times Server Consolidation and Containment with Virtual Infrastructure Achieve PCI Compliance with Novell? Sentinel" Identity and Security Management and Strong Information Technology Governance: Novell's Soultion Suite Automates the Approach to the Perfect Union Five Ugly Truths about WAFS and Caching Forrester Consulting Optimizing Users and Applications in a Mobile World Case Studies Real Customers, Real Results More White Papers

Enabling Identity and Security Management with Open Source Novell's Dale Olds discusses enabling identity and security management with open source. Securing and Managing Your Enterprise: An Integrated Approach How you can you integrate and automate fragmented management tasks while addressing a full range of governance, risk and compliance (GRC) issues? You can choose the security and system management solution from Novell®. It's a solution that helps you secure and manage your enterprise from the desktop to the data center—and you benefit almost immediately as you lower costs, reduce complexity and mitigate risk. Success Story: New York City Transit One of the top priorities of New York City Transit is to ensure that its employees have secure and timely access to information. With a Novell® solution, the agency has automated identity management for 85,000 users, giving 49,000 employees secure, single sign-on to applications and providing 36,000 retirees with online access to benefit information. Visit the Identity & Security Management Zone

E-mail Address: (Required)  Security  Networking Security  Virus and Vulnerability Roundup  Security: Issues and Trends  Infrastructure & Control

"Yes, NASA has confirmed that some laptops taken to the International Space Station were infected with an online-gaming password stealing..." Read more "Linux is more secure than most operating systems, but Not if you don't practice basic security measures..." Read more "Andrew Chapman went on eBay looking for a good bargain, and if he was a data thief, he would have..." Read more "A few days back, Red Hat's Red Hat Enterprise Linux and Fedora servers were broken into. We still don't know..." Read more More Security Blogs See all Computerworld Blogs

Free MessageLabs Trial The business risks from email and web use are widespread. But what's the reality of the situation for your business? Complete the short form to find out with a FREE MessageLabs Trial. During the trial, we will monitor all your inbound and outbound email and web traffic and provide you with a complete picture of the risks facing your business every day. Register for this trial now.

In Security Stripping away the trappings of applications, systems and networks, information is the core asset of most organizations. Our columnist describes how asserting the importance of information governance is crucial to making that asset tangible, addressable and protected. Click here to read the latest column by Jon Espenschied

From Laggard to Leader: Transforming the Data Center From Laggard to Leader: Transforming the Data Center Register for this complimentary live webcast today! Go to the webcast

Computerworld Executive Bulletin: Building a Robust Antivirus Defense Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs. (Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more. Download this executive briefing

White Papers Read up on the latest ideas and technologies from companies that sell hardware, software and services. Qualified Security Assessors are not created equal Improving Correspondence Management for Financial Services Firms with Adobe LiveCycle ES Archiving Compliance with Sunbelt Exchange Archiver View more whitepapers

Qualified Security Assessors are not created equal Download this whitepaper, free for a limited time, compliments of VeriSign! (Source: VeriSign) Learn how a Qualified Security Assessor (QSA) can help you acheive full compliance and security in this white paper, presented by VeriSign and Computerworld. Download this white paper

The Spy Files For Congress to do anything that helps protect consumers and the critical Internet infrastructure as a whole, it must pass laws that require proactive processes to protect computers, not that tell people how to deal with the resulting mess, says Ira Winkler. Click here to read the latest column by Ira Winkler