SecurityWeek

Symantec today announced Symantec Certificate Intelligence Center, a cloud-based service for enterprises with large numbers of certificates used for business authentication and data encryption on servers.The solution, powered by VeriSign, discovers, centralizes, and provides reports to help enable organizations to proactively manage certificates from any Certificate Authority (CA). For the first time, enterprises have total visibility and control over their certificates, enabling them to reduce risk, costs and operational inefficiencies.

If Patch Tuesday is a party, this would be the IT security version of pre-gaming.On Aug. 9, Microsoft accidentally released information on the five security updates it is planning to release tomorrow as part of this month’s Patch Tuesday. The information, which has since been taken down, represents a rare procedural slip-up in the company’s Patch process. Normally, Microsoft publishes an advanced notification the Thursday before Patch Tuesday – the second Tuesday of every month – and then posts no...

Oculis Labs, a developer of data privacy software that protects mobile and desktop computers from visual eavesdroppers, today announced a partnership agreement with In-Q-Tel (IQT), the not-for-profit, venture capital arm of the CIA. The company said In-Q-Tel’s relationship and investment would help it accelerate Oculis Labs’ success in both government and commercial markets.

GlobalSign Acknowledges Breach of Web Server - Investigation ContinuesGlobalSign, one of the longest established Certification Authorities (CA), acknowledged late Friday that it found evidence of a breach to a web server hosting its Web site.

Apple has released an update to address compromised certificates from DigiNotar, more than a week after news of the attack first broke.

Security Researchers Stole 120,000 e-mails and 20 GB of Corporate Data From Fortune 500 Companies via Typosquatting.

Watching Anonymous in action is far better than most of the programming on television. Anonymous seems to be in a never-ending battle against the “evils” that surround mere mortals. Recent past battles have been waged against PayPal, Master Card, Visa and the Church of Scientology. Now Facebook appears to be squarely in Anonymous’ sights.

Verisign CFO Brian Robins Leaving Company to Pursue New Opportunities

Microsoft has a relatively light Patch Tuesday planned for next week with no critical patches.According to the company’s pre-patch advisory, Microsoft plans to release five security updates rated ‘Important.’ The bulletins cover issues in Windows, Microsoft Office and Microsoft Server Software such as SharePoint Server and Office Groove Data Bridge Server.

Statistics show an increase in Android devices infected with crimeware that is actively communicating with multiple criminal C&C servers Google Android devices are being caught in a Web of botnet activity at an unprecedented rate, according to new research by security firm Damballa.

On Wednesday, GlobalSign said that it has tapped Fox-IT, the Dutch cybersecurity team hired to investigate the recent compromise of Dutch Certificate Authority (CA) DigiNotar, to assist with investigations of a claimed breach by an individual that seems to be a serial CA hacker.

IronKey Introduces Trusted Access Platform and Downloadable Secure Browser to Reduce Online Banking RiskIronKey this week introduced a new platform along with a secure browser application, that when used in combination, can protect online banking users from being victimized—even when their systems are infected with some of the nastiest financial malware in existence.

Trusteer today unveiled four product updates designed to anchor its Cybercrime Prevention Architecture.The product updates cover a lot of ground, from technology aimed at blocking browser exploits to fingerprinting machines used by cyber-criminals that attempt to access protected Web applications. The company is also making a play for mobile device security with capabilities aimed at protecting the latest Apple iOS and Google Android devices from financial malware.

In my previous column I presented five commonly used weapons in arsenals of security researchers. This week, we complete the list with a mix of tools and tool types ranging from the old to the new, including tools unveiled for the first time at the recent Black Hat conference. So once again, without further ado, here are some of the tools researchers keep in their security toolbox: