1. Zero-day flaw found in web encryption
A security issue with underlying web encryption protocols TLS and SSL has left many authentication mechanisms open to attack, according to security researchers.
2. S'pore SMBs see disaster recovery plans as luxury
Local small and midsize firms diligent in data backup but still need to do more to safeguard business and customer data, survey finds.
3. Pirate Bay closure sparks rise in P2P sites
Closure of Pirate Bay led to temporary 300 percent increase in the number of file-sharing Web sites, says McAfee.
4. Corporate bank accounts targeted in online fraud
Small and midsize businesses, governments, and school districts are targets of online bank fraud involving malicious e-mails, key loggers, and money mules, FBI says.
5. 3FA not priority for Asian banks, regulators
Banks in region still ironing out two-factor authentication rollouts and unlikely to implement additional authentication layer just yet, says analyst.
6. Spammy scams surfacing on Twitter, Facebook
Users on Twitter report direct messages that lead to phishing page, while Facebook users are getting links to a malware site.
7. Twitter users warned about new phishing attack
Sophos says the new attack features direct messages with link to fake Twitter log-in page. Entering a username and password prompts a fake overcapacity "fail whale."
8. Tis season to be shopping online, at work
Employees plan to spend 14.4 hours shopping online from work computers during this year-end festivities, highlighting need to keep systems secure, study finds.
9. Web-based malware infections rise rapidly, stats show
Nearly 6 million Web pages are infected with malware, double previous estimates earlier in the year, according to Dasient.
10. LA approves US$7.2 million Google Apps deal
City's contract for Google Apps requires that integration provider Computer Sciences Corp. promise to pay a penalty if there is a security breach.
