Security

Predicting the future for technology and business is never easy, yet Symantec CEO John Thompson ventured into that Tuesday morning in his keynote speech at RSA 2008.

On the future, Thompson predicted three things: that malicious software will outnumber legitimate software, increasing the need for so-called white listing; that identity management will grow beyond the enterprise and start to include every customer in the world; and digital rights management will be become a reality for all content, not just music and video.

He said businesses need to start thinking about these things now. "I believe this starts with a … Read more

On Thursday morning, at this year's RSA Conference in San Francisco, Chris Boyd of Facetime and I will present a talk, "How to Adapt to the Echo Generation's Social Media Hacking Game." The following is a preview of that talk, presented in three parts. On Tuesday, we're looking at who are the Echo Generation hackers. Wednesday , we'll look at how they use online social media for hacks. And on Thursday, we'll talk about how Chris uses features of social networks and Web 2.0 to shut these kids down.

It's a world … Read more

At RSA 2008 on Monday, Hitachi announced its acquisition of M-Tech. Since last Wednesday, the Canadian ID management company has been using its new name, Hitachi ID Systems.

Forrester Research predicts that the ID and access management market space will grow from $2.6 billion in 2006 to $12.3 billion in 2014, and Hitachi, long known for its security electronics, wants to be a player in the enterprise security market by offering a complete package.

Hitachi currently offers advanced IT authentication with its finger vein biometric devices. Finger vein biometric authentication is used in 80 percent of Japanese ATMs … Read more

Want to cause trouble at RSA? Register with any of a number of special characters in your name or business name and watch the badge printer issue blanks. That's what happened to me.

Monday morning when I registered for RSA 2008 (where I'll be speaking with Chris Boyd of FaceTime), I thought maybe I'd get a little VIP service. (Our talk on "How to Adapt to the Echo Generation's Social Media Hacking Game" is at 9:10 a.m. PDT on Thursday.) Instead, I was stuck in various registration lines for more than half … Read more

Next week, the RSA 2008 security conference gets under way in San Francisco. But for members of the media, it has already started, with a barrage of phone calls from vendors (more and more each year) eager to get their products mentioned. Look for full coverage starting Monday on CNET News.com.

Unlike last year, when Bill Gates said good-bye, there are few "big" moments anticipated in the week ahead, which means there could more surprises. Last year, it was Larry Ellison having to cancel his keynote speech due to illness.

Themes and topics at RSA 2008 will … Read more

Worried about online auction fraud? If you're a man you should be, according to the latest Internet Crime Complaint Center report (in PDF). On average, men lost more money to online fraud than women in 2007. Men also perpetrated most of the online crime, accounting for 75 percent of the total reports last year. And while the overall number of complaints declined when compared with previous years, the total dollar value in losses rose to a record high of $239 million in losses in 2007. That's $40 million more than in 2006.

The Internet Crime Complaint Center (IC3) … Read more

On Thursday, Microsoft announced it will release eight security bulletins next week. The news is intended as a heads-up for IT departments in advance of Patch Tuesday.

Of the eight patches, five are considered "critical," and three are considered "important" by the software giant.

Among the critical patches, one will affect Microsoft Office, two will affect Windows, and two will affect the Internet Explorer browser. Of the important patches, Microsoft says one will affect Microsoft Office and two will affect Windows. The potential vulnerabilities include spoofing and remote code execution.

On Wednesday, VeriSign invited companies to join their VeriSign Identity Protection (VIP) Network by announcing the VIP Quick Start. As encouragement, vendors who sign up between now and September 30 will receive 5,000 free tokens to distribute to their customers. The customers can then use the tokens on any of the participating VIP sites.

VIP is part of a two-factor authentication process created by VeriSign. Customers are given tokens or cards that display a digital password that's time-synced with a server on the corporate bank end. When one goes to access the site, you simply enter the digital … Read more

Owen Thor Walker, an 18-year-old bot herder from Whitianga, New Zealand, plead guilty on Monday to six charges resulting from a botched botnet upgrade that led to a 2007 denial-of-service attack on the University of Pennsylvania.

Walker plead guilty to two charges of accessing a computer for dishonest purposes; two charges of accessing computer systems without authorization; one of damaging or interfering with computer systems; and one of possessing software for committing a crime. He could face five years in jail. However, according to reports from The New Zealand Herald, Judge Arthur Tompkins is considering Walker's age and cooperation … Read more