1. Zero-day flaw found in web encryption

A security issue with underlying web encryption protocols TLS and SSL has left many authentication mechanisms open to attack, according to security researchers.

2. S'pore SMBs see disaster recovery plans as luxury

Local small and midsize firms diligent in data backup but still need to do more to safeguard business and customer data, survey finds.

3. Pirate Bay closure sparks rise in P2P sites

Closure of Pirate Bay led to temporary 300 percent increase in the number of file-sharing Web sites, says McAfee.

4. Corporate bank accounts targeted in online fraud

Small and midsize businesses, governments, and school districts are targets of online bank fraud involving malicious e-mails, key loggers, and money mules, FBI says.

5. 3FA not priority for Asian banks, regulators

Banks in region still ironing out two-factor authentication rollouts and unlikely to implement additional authentication layer just yet, says analyst.

6. Spammy scams surfacing on Twitter, Facebook

Users on Twitter report direct messages that lead to phishing page, while Facebook users are getting links to a malware site.

7. Twitter users warned about new phishing attack

Sophos says the new attack features direct messages with link to fake Twitter log-in page. Entering a username and password prompts a fake overcapacity "fail whale."

8. Tis season to be shopping online, at work

Employees plan to spend 14.4 hours shopping online from work computers during this year-end festivities, highlighting need to keep systems secure, study finds.

9. Web-based malware infections rise rapidly, stats show

Nearly 6 million Web pages are infected with malware, double previous estimates earlier in the year, according to Dasient.

10. LA approves US$7.2 million Google Apps deal

City's contract for Google Apps requires that integration provider Computer Sciences Corp. promise to pay a penalty if there is a security breach.