Reading Time: 2 minutes Every time you turn around, it seems there is another high profile data breach in the news that involves the compromise of cardholder data. The Target data breach alone may have compromised the data of more than half of all adult Americans. It has never been more important to focus on being compliant with Payment…

Reading Time: 1 minute The Mozilla has released security updates to address multiple vulnerabilities in their Firefox browser, including 11 critical fixes. Among the critical fixes is for a “use after free” bug. This is where a program referencing memory after it has been freed. This can cause a program to crash. It is technically possible for hackers to…

Reading Time: 4 minutes Without SSL and SSL Certificates e-Commerce as we know it would not be possible. All SSL Certificates provide a secure connection between a browser and a server with all messages encrypted with Public Key Encryption (PKI) technology. So, why are there so many product offers at very different prices? Innovative product offerings like wildcard SSL…

Reading Time: 3 minutes There is a right way and a wrong way for an organization to handle a data breach. Unfortunately, they are sometimes the SAME way. The consensus in crisis management is that it is always best to get in front of a bad news story by getting it out quickly so you can frame the story…

Reading Time: 1 minute vBulletin Solutions announced this week that they have a critical emergency patch to their vBulletin forum software to fix an SQL injection vulnerability that could allow hackers to access the software’s databases. The vulnerability and fixes apply only vBulletin version 5. The patch will automatically be implemented on all sites on Vbulletin’s cloud hosting service….

Reading Time: 2 minutes If you would really like to be infected by malware, the best place to go these days is amazon.com! According to a quarterly report for Q2 2014 by Solutionary’s Security Expert Research Team (SERT), Amazon hosts 41% of all malware identified by SERT’s honeynet. A honeynet is a network configured in ways to invite attacks…

Reading Time: 2 minutes We are now more than half way through 2014 and Comodo finds itself in a familiar place in the ongoing Proactive Internet Challenge, conducted by Matousec.com. As has been the case for almost 2 ½ years, Comodo Internet Security tops there results chart of 38 Internet Security suites tested by Matousec. (See below) Matousec is…

Reading Time: 3 minutes Various news reports have confirmed that many web servers are still vulnerable to the Heartbleed bug, which effects Apache servers running SSL. The bug was first reported early in April of this year. Oracle recently released a list of products affected by the Heartbleed OpenSSL vulnerability and hackers appear to be in high gear to…

Reading Time: 1 minute Microsoft has released a security advisory to address improperly issued SSL certificates that could be used in attempts to spoof content, perform phishing attacks, or perform man-in-the-middle attacks. This issue affects all supported releases of Microsoft Windows. Windows XP is not supported. The advisory states “The SSL certificates were improperly issued by the National Informatics…

Reading Time: 2 minutes In the latest report by netmarketshare.com, the supposedly dead Windows XP actually increased its market share of desktop operating systems slightly, with a 25.3% share. That makes it the second most popular desktop OS by a wide margin, behind Windows 7 at 50.5% and ahead of Windows 8.1 with a mere 6.6% piece of the…