It's no good having mandatory data breach disclosure laws if all they teach us is to admit we had a breach. We also need to convey information of obvious practical value to all affected parties.
Three words. Promptness. Clarity. Openness.
The internet is abuzz with news that beleaguered security company RSA is offering to replace its customers' security tokens in the light of recent security compromises.
Or is it?
US military contractor Northrop Grumman may have suffered a hacking attack on its networks, according to Fox News.
US military contractor L-3 Communications, whose customers include the US Department of Defense, has been named in a news report as having been targeted in attacks by external hackers.
And, once again, it is the RSA SecurID security breach that is being blamed.
Hackers have broken into the network of Lockheed Martin and several other US military contractors, according to media reports.
Don't just read the latest computer security news - watch it in 90 seconds!
This month: help get rid of IE6, avoid tsunami scams, check out Pwn2own, be surprised at RSA, and groan at Epsilon.
Tony Ross joins Chester Wisniewski this week to discuss the latest news on SSL Certificate Authorities ignoring signing guidelines. They also talk about the RSA breach, the Epsilon email leakage, Chrome adding malicious download filtering and more.
This week's Chet Chat discusses the recent breach of RSA Security, advice from RIM on securing your BlackBerries post Pwn2Own and Google's speedy security updates to their Chrome web browser. Settle in for 10 minutes and keep up on the latest security news,
Naked Security's own Paul Ducklin was a guest on this week's Risky Business podcast by Patrick Gray. Paul provides a well reasoned opinion on the accusations leveled at Skype by Privacy International as well as his thoughts on the recent breach of RSA Security.
Hackers have broken into the servers of RSA, the security division of EMC, and stolen information related to the company's SecurID two-factor authentication products.
Duck is now on his way back from the RSA conference in San Francisco - from where he can tell you that the WiFi Terms and Conditions at the airport are still as onerous as they were last year - with an amusing fifth anecdote to add to his Travellers Beware series.
Chester Wisniewski and Paul Ducklin are back on the air, having just finished up their stint at the RSA 2011 Conference.
Whilst there, they accepted a Most Educational Security Blog award on behalf of the whole Naked Security team.
I'm currently attending RSA 2010, one of the year's biggest security conferences, in San Francisco. I've just finished giving my presentation, Anti-Virus is Dead!. (It isn't dead, of course. It's just become rather different from what it was in the Read more…
Last night I totally failed to win the title of Most Popular Security Blog at the SC Awards gala dinner, held in San Francisco. Congratulations to Gary Warner, who writes the "Cybercrime & Doing Time" blog for his well-deserved win Read more…
Sophos will be out in force at the RSA Conference in San Francisco next week, giving you the opportunity to see our products in action and meet (amongst others) bloggers Paul Ducklin, Chet Wisniewski and err.. me. Topically enough, considering Read more…