SecurityWeek

ICSA Labs this week launched a testing program designed to help determine whether smartphones and tables meet the latest security standards for connecting with Virtual Private Networks (VPNs).Generically named “Mobile Device VPN Security”, the new program is available immediately for wireless carriers and mobile device manufacturers. According to ICSA Labs, Verizon Wireless is the program's first customer—not surprising since ICSA Labs is a division of Verizon.

Last Chance to Register For: The Great Security Divide - How Security Can Work Better With Development

Revelations about a recent breach of confidential data in Utah highlights how configuration errors can end up being costly.A recent data breach that exposed personal information for nearly 800,000 people in Utah also exposed how lethal configuration mistakes and policy failures can be in the world of security.

For those purists within the auditing and network exploration community, there is good news this week – Nmap version 6.0 has been released to the public. Nmap is the standard for security audits and exploration, and the latest version has some useful improvements.Version 6 includes improvements to the Nmap Scripting Engine (NSE), which includes a bump in script count. Nmap 5 included a script count of 59, where version 6 has grown to 348, and each one has been documented and...

The popularity of the Android platform, combined with the openness that it represents, has created model that allows developers of all shapes and sizes to create unique works. Yet, this same openness has allowed criminals to create works with malicious intent. Thus, a North Carolina State University researcher has sat out to map the Android Malware Genome in an effort to spread information and combat the malicious side of Android development.

Building on their previous initiative to warn users who display symptoms of infections, Google said on Tuesday that they would start notifying users who are impacted by DNSChanger malware.

Startup Launches With Goal of Transforming Device Authentication Device authentication startup NetAuthority is pulling the covers off its technology today and unveiling a beta version of its authentication technology.

SAP Acquires Ariba for $4.3 BillionSAP AG (NYSE: SAP) today said it would acquire cloud-based business commerce solutions provider, Ariba, Inc. for approximately $4.3 billion.The German software giant said that its subsidiary, SAP America, Inc., has entered into an agreement to acquire Ariba for $45.00 per share.

A survey of IT pros and executives from Brazil, Germany, U.K., Hong Kong and the United States, respondents paints a bleak picture of security.

Although security and networking professionals aren’t officially fortune tellers, being able to predict issues -- and then alleviating them before they happen -- is a large part of the job. One particular issue is the ongoing confusion that users have in understanding the Internet’s Domain Name System (DNS) and its translation of Internet Protocol address numbers into easy-to-remember names. For example, IP address “173.203.107.14” is better known and more easily remembered as SecurityWeek.com.

UK-based IT solutions firm, NCC Group, today anounced a new service that lets organizations simulate the world’s most common form of cyber attack – DDoS attacks.The new “DDoS Assured” service helps companies understand how their IT security systems hold up to DDoS attacks, through an offering that emulates a DDoS attack in a secure, controlled environment.In addition to offering the simulation service, the NCC Group provides security recommendations to clients based on the attack simulation results.

Sophisticated, Multi-faceted Attack Uses an Man in the Browser Attack to Bypass Transaction Authorization Measures Researchers at Trusteer have recently observed a new strategy being deployed by the Tatanga Trojan, which uses multiple attack methods in a single scheme. The attack mixes traditional social engineering with browser hijacking in an attempt to fool the victim into legitimately approving wire transfers.