Business expected tougher environmental, financial, and labor regulations from the Obama Administration, but it looks like the feds may be getting ready to move into a new area: the information security practices of some private businesses. As first reported by The Washington Post, Senate Commerce Committee Chairman John D. Rockefeller IV (D-WV) ...

The clock is ticking down towards Conficker.C's reported April 1 launch date, but an 11th-hour discovery by Team White Hat may substantially improve an IT shop's chance of catching the bug early and stomping on it. The full technical details on the Conficker scanner are being witheld for roughly 24 hours (we'll link the ...

IT news might be bad in almost every corner of the industry, but one industry segment seems better fit to ride out the recession than most. Sales of security appliances to various business sectors in Western Europe grew revenue a total of 14.4 percent in 2008 as compared to 2007, but that growth slacked off a bit in the ...

iPhone forensics expert Jonathan Zdziarski, who recently released the AMBER Alert for iPhone app, has a new app designed to help keep deleted data from being recovered from your iPhone. Called iErase, the app ''zeros'' all the free space on your iPhone and makes sure trashed files stay, well, trashed. The iPhone, like most ...

White hats nationwide have ramped up their efforts to create a defense against Conficker.C as the worm's April 1 activation date approaches. This is not an easy task—as we've previously described, Conficker.C sacrifices some of .B's infection vectors but replaces them with code designed to make the worm harder to ...

A pair of Argentinean researchers has demonstrated a BIOS-level exploit that allowed the duo to potentially run a great deal of invisible code—which could remain installed even if the hard drive was wiped. Much has been made of this last bit, but malware attacks against the Basic Input Output System are anything ...

AV-Comparatives is known for the thorough tests it does on security software. Following its November 2008 retrospective report, the company has released its February 2009 on-demand comparative roundup. Seventeen products were updated on February 9 and tested against 1.3 million malware samples received between May 2008 and ...

Browser vendors often make strong claims about their responsiveness to vulnerability reports and their ability to preemptively prevent exploits. Security is becoming one of the most significant fronts in the new round of browser wars, but it's also arguably one of the hardest aspects of software to measure or quantify. A ...

ICANN has been soliciting a lot of comments on its governance and future of late, including one petition to form a CyberSafety Constituency (CSC) within the Non-Commercial Stakeholders Group. (NCSG). The petition (PDF) as filed with ICANN is fairly innocuous and harmless-sounding, but the woman doing the ...

The SANS Internet Storm Center has reported spotting a new version of the Flush.M Trojan nosing around online. The original malware program was isolated and, erm, canned back in December; March's updated model sports a fresh coat of paint and a few new tricks. Both forms of Flush.M are DNS hijackers capable of redirecting ...