Businesses and other organisations were paying dearly because they did not bother with basic security to protect their on-line dealings, a conference was told today.
The AusCERT Asia-Pacific IT Security Conference on the Gold Coast was told most breaches of computer systems occurred because security was practically non-existent.
Around 856 websites are understood to have been affected after a group going by the name of 'BloodBR' compromised a virtual server belonging to NetWeaver limited, who “provide premium quality independent hosting solutions to small businesses and professional home users” for UK residents.
Sites briefly displayed the message “Blood BR Got Root?”
Source: ZDNet UK
While DSL gives businesses a performance boost, it also opens up a nasty can of worms, viruses and hackers - something many firms are still ignorant of
Analysts have calculated that a business running a broadband Internet connection is five times more vulnerable to a security breach than one that uses dial-up.
Company board members will only treat IT security seriously if they understand the dangers to their business.
Risk assessment is fundamental to convincing directors that sufficient funds should be attributed to security, according to IT security executives at last week's Infosecurity show in London.
"Directors all support security, but need to be convinced about how much money they should spend," said David Lacey, head of information security and governance at the Royal Mail Group.
Source: CNet News
A serious security flaw in Microsoft's Passport service put customers' accounts, including their personal information and credit card numbers, at risk of being hijacked.
The flaw, in Passport's password recovery mechanism, could have allowed an attacker to change the password on any account to which the username is known. The flaw was disclosed late Wednesday night on the security mailing list Full Disclosure.