• Security researcher urges IT managers to keep up with SAP patches

  More than 95 percent of over 600 SAP systems tested by security firm Onapsis were vulnerable to espionage, sabotage and fraud, mainly because patches had not been applied, according to a researcher.

• Banking malware monitors victims by hijacking webcams and microphones, researchers say

  A new variant of SpyEye malware allows cybercriminals to monitor potential bank fraud victims by hijacking their webcams and microphones, according to security researchers from antivirus vendor Kaspersky Lab.

• Outsourcing Allows Utility to Refocus IT

  Consumers Energy has hired an outsourcer to take over some of its day-to-day IT operations, and it hopes the move will allow its own data center workers to focus on projects that directly impact its bottom line.

• UNC Charlotte: 350,000 SSNs exposed in decade-long data breach

  Two issues exposed financial data and Social Security numbers for 350,000 people, although it is thought the information has not been abused, the University of North Carolina at Charlotte said.

• Free tool to encrypt DNS requests released for Windows

  A security company specializing in the Domain Name System has released a Windows version of a tool that encrypts DNS requests, which could be spied on to reveal a user's browsing activity.

• Smartphone security: Keep your handset safe

  Once upon a time, a phone was just a phone: It simply made and received calls. The only security you worried about was if someone had picked up in the other room to listen in.

• Firesheep, Blacksheep, and protecting your Wi-Fi data

  Despite the convenience, free public Wi-Fi networks like those found in hotels, Starbucks, and McDonald's are also a serious risk when it comes to your data and personal information.

• How DRM could ensure cloud security

  Yet another survey is indicating that security is a big issue for those intending to take up cloud computing.

• Five ways to bulk up your network for telecommuters

  Whether they're in branch offices or home offices, workers are increasingly telecommuting instead of working in a traditional centralized office environment.

• Four security lessons from the World Bank breach

  According to a report from Fox News, several servers at the World Bank Group, an organization that offers economic assistance to developing countries around the globe, were repeatedly compromised and breached over the course of the last year.

• Can security's human side stop data breaches?

  Shira Rubinoff was a practicing psychologist in 2004. When it came to technology, her experience was simply as a tech user, certainly not a tech guru. Then one day she was phished.

• IT security: Can we be compliant and yet insecure?

  I have conducted more security program assessments than I can remember over the past 15 years. Quite some time ago I conducted some of the first certification and accreditation efforts ever at the CIA. Those were interesting times. We had very little to go on and we tried to assess security controls to the few regulations and controls that existed at that time. By the time I left the federal space and started working almost exclusively in the commercial sector a number of security best practice standards had sprung up. Most recently, in the past 10 years or so, a slew of legislation pertaining to data security and privacy has given us more requirements with which to adhere.

Whitepapers about data protection

• 

  Delivering Tomorrow's Backup and Recovery Infrastructure

  The data protection market has changed considerably over the past decade. During this time, the market witnessed a fundamental shift away from relying solely on tape for backup and recovery to using disk-based backup solutions to address challenges including backup performance, reliability, and recovery time objectives. This paper highlights that firms evaluating next-generation data protection solutions must expect a greater degree of integration between the technology components in today's data protection path.