to help enterprise security across Europe
The resource centre for busy senior executives seeking the latest insights into IT Compliance & Privacy issues for major organizations
 
sarbaines oxley ofcom communications regulator
Latest Resources      data protection register
compliance resources privacy resource center

Breaking Global News
Global Compliance and Privacy News
- Breaking News, updated every 30 minutes
•   Compliance, Privacy and Security
•  Money Laundering
•  Phishing
•  Regulatory Issues
•  SOX, Basel 2, MiFID


You Tell Us:
S
S
L

T
E
C
H
N
O
L
O
G
Y
We use SSL Technology for web data entry points:

Always
Sometimes
Never
What is SSL?

News
Are Smartphones Endangering Security? - Wick Hill
Dealing with Internet Security Threats - Ian Kilpatrick
How the New EU Rules on Data Export Affect Companies in and Outside the EU - Thomas Helbing
Farmers' Data Leak Highlights Old Technology Use - Wick Hill
Saving Money with SFTP - Wick Hill
UK Information Commissioner targets firm selling vetting data - Eversheds e80
12 Key Steps to Internet Security - Wick Hill
Telephone Monitoring Legality in the UK - Dechert
Firewall or UTM - Wick Hill
UK Information Commissioner demands mobile device encryption - Eversheds e80
Data loss - liability, reputation and mitigation of risk - Eversheds e80
Phorm, Webwise and OIX - BCS Security Forum
The challenges of PCI DSS compliance - Thales, Russell Fewing
"Quality" Data Vendor Spams us! Editor astounded!
National Gateway Security Survey 2008 - Wick Hill
Unified Threat Management - Watchguard Technologies

news archives
:
0 | 1 | 2 | 3 | 4 | 5 |
6 | 7 | 8 | 9 | 10 | 11 |
12 | 13
[What is this?]

Industry Blogs
Tim Berners Lee's Blog
Tim Callan's SSL Blog
Davis Wright Tremaine's Privacy & Security Law Blog
Emergent Chaos Blog
Michael Farnum's Blog
Phillip Hallam-Baker's Blog - The dotFuture Manifesto: Internet Crime, Web Services, Philosophy
Stuart King's Security and Risk Management Blog
David Lacey's IT Security Blog
Metasploit Official Blog
Jeff Pettorino's Security Convergence Blog
Jeff Richards's Demand Insights Blog
David Rowe's Risk ManagementBlog
Bruce Schneier's Security Blog
Larry Seltzer's Security Weblog
Mike Spinney's Private Communications Blog
Richard Steinnon's Threat Chaos Blog
The TechWeb Blog
Tim Trent's Marketing by Permission Blog
Rebecca Wong 's DP Thinker Blog

Newsletters
23 February Newsletter
Newsletter Archives are located in "News"

Industry Update
Internet Security Intelligence Briefing - November 2005
Find out the latest trends in e-commerce, web usage & the latest threats from adware/Spyware

Reports
Phorm, Webwise and OIX
- BCS Security Forum

'The Any Era has Arrived, and Everyione has Noticed' - Stratton Sclavos - VeriSign
Identity Security - Time to Share
Malicious code threats - iDefense
Public Alerts - updated as they happen from Stopbadware.org
Public Alerts - updated as they happen from Websense
Public Advisories - updated as they happen, from iDefense
Phoraging - Privacy invasion through the Semantic web: a special report by Mike Davies of VeriSign

Legislation
Privacy Laws & Business International E-news, Issue 57
Privacy Laws & Business UNited Kingdom E-news, Issue 60

Security Reviews
February 2007 - VeriSign Security Review
The security review archive is here

Case Studies
Finance Industry
Case Study Example

A case study on a Finance industry company.

White Papers
VeriSign® Intelligent Infrastructure for Security
VeriSign® Intelligent Infrastructure: An Overview
Identity Protection Fraud Detection Service - description of the service
Life of a Threat - Video on Threat Management Lifecycle
Optimizing Enterprise Information Security Compliance - Dealing with all the audits
For a full list of all whitepapers, visit our Whitepaper library

Legal Notices
Privacy Policy
Terms of use

basel 2 sarbanes oxley
    legislation
data controller notification binding corporate rules BCR data transfer third countries third part data transfer basel 2 regualtor regulation regulate FSA banking network security RSA encryptin algorithm Bits sacked bank staff
Blogs compliance Reports compliancy Legislation Data Protection Case Studies data privacy White Papers data protection act News information commissioner Events security standards Links information security iDefense
Retail Solutions

VeirSign Security Reviews

compliance and privacy

Current News Updates

VeriSign Security Reviews

By kind permisson of our orginal Sponsor, VeriSign, whose sponsorship ended on 28 February 2007, we are starting, from the May 2006 edition, to gather VeriSign Security Reviews for Compliance and Privacy readers.


VeriSign Security Review - February 2007

While at RSA, stop by the VeriSign booth #1409 for more on our layered, systematic approach to mitigating threats to user confidence, network security, and growth of the digital economy. The exhibit features our new VeriSign Secure Site Pro with EV SSL Certificates and the VeriSign Identity Protection (VIP) suite of services.  Experts in managed security, PKI, security consulting, and enterprise mobility will also be on hand to demonstrate VeriSign services.

In This Issue:

Hot Topics

  • Sclavos Makes Security Simple in RSA Keynote . Sclavos' Keynote address focuses on challenges and strategies in the “Any Era.”
  • HSBC to Implement VeriSign® Fraud Detection Service . VeriSign will help HSBC USA protect customers from identity theft and fraud.
  • Get the Green Light for Your Online Business . Now you can assure users that your site is secure.

Monthly Threat Summary

  • Though Microsoft's latest security bulletin included only three critical vulnerabilities, all of them are in widely used products, and hackers will doubtless launch concerted attempts to exploit them. All VeriSign customers are urged to read Microsoft's bulletins and download patches as appropriate.

News from VeriSign

  • VeriSign Powers NBX Video for Sports Fans
  • Adobe and VeriSign to Transform Distribution of Rich Media Online
  • Open Media Network Selects VeriSign to Bring Full Screen, DVD-Quality Television Programs from the Internet—Right to TV Screens

Security Events

  • February 5 - 9 RSA Conference, San Francisco, CA
  • February 12 – 15 3GSM World Conference, Barcelona, Spain
  • March 19 – 22 TelecomNext, Las Vegas, NV

Read this issue


December 2006

In this edition, learn about the 5 public blogs that VeriSign employees are using to facilitate communication and technology intelligence among customers, partners, and developers.VeriSign is responding to customer and industry needs every day and in November, VeriSign hosted several of their most influential customers at a Technical Advisory Council to discuss the state of security and the direction of future product offerings. On the international front, VeriSign participated in a keynote presentation at RSA Conference Europe on the topic of Internet Security and the importance of global industries sharing intelligence to better secure online transactions. Enjoy this last edition of 2006 and have a happy and safe holiday season.

In This Issue:

Hot Topics

  • F500 blogs more than double this year. The Fortune 500 has discovered the benefits of blogging—and VeriSign is no exception.
  • Third Annual TAC Helps Us Track Your Needs. We're always listening to our customers and prospects—especially during our technical advisory council (TAC). 
  • VeriSign ' s Keynote on Identity Security at RSA Conference Europe 2006. A thought-provoking presentation, titled 'Identity Security: Time to Share' focused on the issues related to identity theft, online fraud, and phishing.

Monthly Threat Summary

  • Microsoft's security update for November addresses a number of critical vulnerabilities, most notably in Internet Explorer 6.0, XML, and the Workstation service. Security experts believe the flaw in Workstation to be significant, as it would allow an attacker to remotely download malicious code on a targeted computer. VeriSign urges all customers to download all applicable patches as soon as possible.

News from VeriSign

  • VeriSign to Acquire inCode Wireless
  • WestCom and VeriSign Announce Strategic Alliance
  • U.S. Department of Education Turns to VeriSign for Meeting HSPD-12 Deadline

Security Events

  • January 8-11, 2007, International CES, Las Vegas, NV
  • January 14-17, PTC '07, Honolulu, HI
  • February 5-9, RSA Conference , San Francisco, CA

Read this issue


October 2006

In October, Symantec Corp. and VeriSign, Inc. announced plans to deliver security solutions to combat the growing threat of consumer identity theft and fraud on the Internet. Symantec plans to offer support for the VeriSign Identity Protection (VIP) Authentication Service, which allows consumers to utilize one-time passwords to protect their online identity. The VIP Authentication Service is enhanced by the VIP Shared Authentication Network which enables consumers to use one credential across multiple member websites.  In addition, the two companies intend to jointly market combined identity and security solutions to financial institutions, online retailers, and end users.  Read more on this item here.

In this issue:

Hot Topics

  • VeriSign Introduces the First Fully-managed Service to Collect, Analyze, Store, and Alert on Logs. Leverage log data for  broader compliance and more comprehensive security—at a lower cost than traditional solutions.
  • Take Charge of Compliance with VeriSign Solutions and Services . How many information security regulations apply to your business? What would it take to comply with them all?
  • Intelligent Infrastructure Enables and Protects Your Business. In today's challenging heterogeneous environments, VeriSign enables and protects digital interactions—billions of them a day.

Monthly Threat Summary

  • Microsoft Corp. released 10 bulletins on Tuesday, Oct. 10, covering 26 vulnerabilities, at least one of which impacts the Windows operating system and is rated as "Critical.”

Security Events

  • November 1 - 2 Secure World Expo, San Francisco, CA
  • November 7 - 9 ISPCon, Santa Clara, CA
  • November 12 – 14 ISF World Congress, Washington DC
  • November 13 – 14 BITS, Orlando, FL
  • November 29 – December 1 Gartner Identity, Las Vegas, NV

Read this issue


June 2006

An eventful Microsoft patch week passed with no significant new exploits. Security managers, however, should remain vigilant as unpatched issues remain. Last month also saw the painful departure of spam warrior Blue Security who faced defeat of the money-hungry spam and phishing industry. VeriSign continues to monitor spam, phishing, and other malicious activities to help customers stave off costly attacks.

In this issue:

Hot Topics

  • Phishing Attacks Against American Banks Increase
  • Monthly Threat Summary
  • The Demise of Blue Security
  • Assessing Geopolitical Threats Via Data Analysis

Standards and Regulations

  • NIST Information Security Handbook Draft Released

News from VeriSign

  • 2006 VeriSign Network Security Trend Survey

Ask a VeriSign Consultant

  • Complying With The New PCI Data Security Standard

Security Events

Read this issue


May 2006

As phishing continues to mature, one of the last sanctities supposedly free of such malice has been under attack. The SSL/TLS encrypted Web page used for securely transmitting private information has seen increased abuse by phishers. They took advantage of loopholes in some SSL Certificate practices and obtained certificates that make them look legitimate.IE 7 will change that, and enterprise security managers should take notice:  the advent of High Assurance Certificates will prove its long-term effectiveness against phishing.

In this issue:

Hot Topics

  • MetaFisher – The New Face of Botnets
  • April Threat Summary
  • IE 7 Beta 2 Released 
  • Asia Now #1 Spammer
  • Authorize.net Hacked

Standards and Regulations

  • GAO Reports On SOX Burden

News from VeriSign

  • VeriSign Hosts Risk Management Talks
  • Get Ready For IE 7

Security Events

Read this issue

 


This site is independent of all its sources
The contents of the site are sourced from across the industry. All copyrights are acknowledged.