Monster.com identity attack may claim more vicitims; Security policies neglect off-network devices

Security News Alert This newsletter is sponsored by Secure Computing Live Webinar: Securing up network access Learn how token-based, one-time password authentication systems can help enterprises reduce business risk, better comply with regulations, are easy to manage and most importantly keep networks secure. Tune in to this live webinar August, 29, at 2:00 p.m. ET. Click here for more details Network World's Security News Alert, 08/22/07 Monster.com identity attack may claim more vicitims, 08/20/07: The 46,000 people reportedly infected by ads on job sites may be only a fraction of the victims of an ambitious, multistage attack that has stolen data belonging to several hundred thousand people who posted resumes on Monster.com, a researcher said this weekend. Survey: Security policies neglect off-network devices, 08/22/07: A majority of companies put confidential data at risk every day when equipment such as servers, desktops, laptops and portable storage devices leave the confines of their network, according to a recent survey of 735 IT security practitioners. First exploit appears for Patch Tuesday vulnerability, 08/20/07: A security researcher has published the first exploit against one of the 14 vulnerabilities patched last week by Microsoft, security company Symantec has warned customers. Network World Security Buyer's Guide Find the right security products for your enterprise - fast. From anti-spam to wireless LAN security, our Buyer's Guides have detailed information on hundreds of products in more than 20 categories. With the side-by-side comparison tool you can evaluate product features to make the best decision for your enterprise. Click here to go to the Security Buyer's Guide now. Phishers looking to cash in on Wells Fargo computer crash, 08/21/07: Wells Fargo & Co. may have a new problem, following its widespread computer crash earlier this week: online scammers. Survey: Cisco has the knack for NAC, 08/21/07: A Current Analysis survey says Cisco is most often considered by NAC customers, but other vendors do better at retaining customers that have already bought their NAC gear BeyondTrust tames Vista’s UAC pop-ups, leaves security intact, 08/21/07: Management vendor BeyondTrust Tuesday unveiled software that lets companies nearly eradicate the pop-ups that plague Windows Vista’s user account control feature. Lawsuit filed on behalf of consumers in data breach case, 08/20/07: A California law firm has filed a class-action lawsuit against Fidelity National Information Services (FIS) and one of its subsidiaries over an incident involving the potential compromise of personal data belonging to 8.5 million consumers. Worried companies block Facebook, 08/21/07: The security backlash against Facebook has taken a new twist with a survey finding that large numbers of employees are now being blocked from accessing it. SpamSieve update targets attachments, 08/20/07: The antispam utility SpamSieve has undergone an update that creator Michael Tsai says will improve accuracy for e-mail messages containing attachments. SpamSieve 2.6.4 also fixes a bug that could cause crashes when processing messages containing PDF attachments. Annoying Microsoft warning be gone!: Blogger Colin Spence shows you how to get rid of "This page contains both secure and nonsecure items" error with RSS feeds.

TODAY'S MOST-READ STORIES: 1. Gunplay blamed for Internet slowdown 2. 1.6M records stolen from Monster.com 3. 10 virtualization companies to watch 4. Business e-mail overtakes the telephone 5. Skype users don't buy outage explanation 6. Google struggles with phone number 'for life' 7. Skype: Network felled by Windows Update 8. Voyager spacecraft celebrates 30-years 9. Top 10 'networkiest' eBay oddities 10. Is onshoring become the new offshoring? MOST-READ REVIEW: WAN acceleration offers huge payoff

Contact the author: Senior Editor Ellen Messmer covers security for Network World. E-mail Ellen. This newsletter is sponsored by Secure Computing Live Webinar: Securing up network access Learn how token-based, one-time password authentication systems can help enterprises reduce business risk, better comply with regulations, are easy to manage and most importantly keep networks secure. Tune in to this live webinar August, 29, at 2:00 p.m. ET. Click here for more details BONUS FEATURE IT PRODUCT RESEARCH AT YOUR FINGERTIPS Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details. PRINT SUBSCRIPTIONS AVAILABLE You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today. International subscribers, click here. SUBSCRIPTION SERVICES To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here. This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription. Advertising information: Write to Associate Publisher Online Susan Cardoza Network World, Inc., 118 Turnpike Road, Southborough, MA 01772 Copyright Network World, Inc., 2007