Security

Is protecting intellectual property from cyberthieves futile?

LAGUNA BEACH, Calif. -- After the publication of the Mandiant report earlier in the year linking China's People's Liberation Army to ongoing and massive cyberattacks against U.S. corporations, government agencies, universities, and other organizations, policy makers and industry experts have been trying to figure out how to better secure their intellectual property against cyberattacks.

Call it a work in progress.

"The frustration for me is that in the U.S., parties who have valuable intellectual property are not adequately protecting their data," said Richard Marshall, former director of Global Cyber Security Management for the Department … Read more

Help protect yourself from signed malware in OS X

There is no question that regardless of the computing platform you use, malware happens. To help prevent these and other unwanted programs from running, Apple includes a data execution prevention routine called GateKeeper, which offers three layers of protection. The first allows everything to run, the second allows only applications signed with a valid Apple Developer ID to run, and the third allows only programs distributed through the Mac App Store to run.

Apple provides the Developer ID option with the assumption that most who use its Developer program create legitimate and trustworthy code, since their works will be easily … Read more

Kim Dotcom threatens to sue Twitter, others over patent

Kim Dotcom says he doesn't really want to sue Google, Facebook, Twitter, and other companies, but he really needs some help funding his defense.

The eclectic and controversial MegaUpload founder today said he invented two-factor authentication, which is being used by more and more companies to secure access to their sites. The verification steps aim to reduce the likelihood of online identity theft, phishing, and other scams because the victim's password would no longer be enough to give a thief access to their information.

Along with Twitter's recent introduction, Microsoft, Apple, Google, Facebook, PayPal, and countless other … Read more

Power utilities claim 'daily' and 'constant' cyberattacks, says report

Power utilities in the U.S. are under daily cyberattacks, according to report released Tuesday by members of Congress.

Of about 160 utilities surveyed in the 35-page report (PDF), more than a dozen reported "daily," "constant," or "frequent" attempted cyberattacks on their computer systems.

"Grid operations and control systems are increasingly automated, incorporate two-way communications, and are connected to the Internet or other computer networks," the report said. "While these improvements have allowed for critical modernization of the grid, this increased interconnectivity has made the grid more vulnerable to remote cyber … Read more

Google security: You (still) are the weakest link

SAN FRANCISCO--Two of Google's top Chrome and Google Apps security experts confessed that the problem of passwords will continue to plague the people who use them and computer security for the foreseeable future.

On the second day of the company's I/O conference here on Thursday, Eran Feigenbaum, the director of security for Google Apps, suggested that people follow three recommendations to stay safer online.

"You should turn on two-step verification, make sure [the browser] is up to date, and make sure your password recovery options are set," the six-year veteran of Google said.

His colleague, … Read more

The right way and wrong way to use Twitter

"Thank you for sharing" takes on an entirely new meaning when using social media. Most of the people who use Twitter, Facebook, and other social networks intend their posts to enlighten, amuse, or inspire their friends and followers. It doesn't always work out that way.

For businesses, Twitter is primarily about customer relations, but this can backfire, too, as Customer Think's Trish Miller points out in the Top 10 Twitter Mistakes of 2012.

The first time you sat behind the wheel of a car you didn't just turn the key and head for the freeway … Read more

Free services make Gmail, Google Drive, Google search more private

It's no secret that any information you provide to a Google service is no secret.

When Google changed its terms of service last year, the company granted itself and any other company it chooses complete, unfettered access to anonymized (we hope) versions of all the messages you send and receive via Gmail, all the files you upload to Google Drive, and all the terms you enter in the Google search box.

As CNET's Rafe Needleman reported in April 2012, Google's rights go beyond simply perusing your personal information. Google's terms of service include the following:

When … Read more

Three essential security add-ons for Firefox, Chrome, and IE

If you ask people what they like least about the Internet, the three items at the top of their list of complaints will likely be trackers, ads, and viruses.

While you may not be able to eliminate these and other Web nuisances, you can minimize their effect on your browsing via three free add-ons for Firefox, Google Chrome, and Internet Explorer: Ghostery, Adblock Plus, and Web of Trust. (Note that Adblock Plus is not available for IE; blocking ads in Internet Explorer 10 is accomplished by using the program's Tracking Protection feature, as explained below.)

Do-it-yourself do not track … Read more

How hackable is your password? McAfee offers password tips

How do you create a password that's strong yet easy to remember? That's the challenge we all face, and one that's prompted a few words of wisdom from McAfee.

In honor of Intel's so-dubbed Password Day, McAfee unveiled a series of tips and tricks on Tuesday aimed at helping all of us juggle the passwords we're forced to maintain across the Web. Its parent Intel has also chimed in with a page that tells you how long it would take to break a certain password. Let's look at Intel's page first.

Browse to … Read more