Massive Epsilon email breach could boost phishing, spam

At least 50 banks, retailers and other firms are affected by a major email breach at a Texas-based data management firm that provided marketing email services.
Disaster recovery and planning considerations

Security must be included in disaster recovery planning to ensure sensitive data is protected.
Information Assurance Standard 6 (IAS 6)

The Information Assurance Standard 6 (IAS 6) is legislation enacted by the British government in May 2009 as part of its Security Policy Framework (SPF). SPF is a response to government data breac...
Nineteen charged with using Zeus to drain UK accounts

Suspects allegedly used the data-stealing malware to hijack bank accounts and steal millions of pounds.

Data Breach Incident Management and Recovery

Essential Knowledge
News
Tips
Expert Advice
Definitions
Multimedia
All

Email Alerts

Register now to receive SearchSecurity.co.uk-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Royal Holloway 2012: An incident response process for armoured malware

An incident response process may be futile when dealing with today’s armoured malware, as explained in this Royal Holloway article. Feature
IT in Europe, Security Edition: Password security standards and trends

Passwords have long been a security problem. This IT in Europe: Security Edition looks at password trends and alternative forms of authentication. Learning Guide
Disaster recovery and contingency planning security considerations

Security must be included in disaster recovery planning to ensure sensitive data is protected. Feature
IT in Europe, Security Edition: Calculating risk and managing threats

Find all articles from Information Security Europe magazine for Spring 2011. Magazine
A new approach to fighting varied types of cybercrime cases

Fighting cybercrime may seem like a losing battle considering the enemy is so well resourced. In a Royal Holloway University of London master's thesis, Anna Cevidalli and John Austen explore new approaches in the battle against cybercrime. Royal Holloway eBook Seri
Make PCI DSS compliance easier by reducing scope, outsourcing data

Many organisations are still struggling with PCI DSS compliance. But there are some ways to ease the burden introduced by PCI DSS. Find out how some experts recommend making PCI DSS compliance easier. Feature
Information security face-offs: Marcus Ranum, Bruce Schneier

Renowned security experts Marcus Ranum and Bruce Schneier square off on today's hot-button information security issues and debates. Face-off
Do data security breach notification laws work?

There are more than 40 state notification laws, but how have they impacted the security of sensitive data? Our two experts debate the issue. Face-off
Endpoint Security

Read an excerpt from the book, Endpoint Security. In Chapter 3, "Something is Missing," author Mark S. Kadrich reveals a new way of modeling the network. chapter excerpt
Business continuity planning standards and guidelines

An excerpt from Chapter 1: Contingency and Continuity Planning of "Business Continuity and Disaster Recovery for InfoSec Managers," by John W. Rittinghouse and James F. Ransome. Book Chapter
See more Essential Knowledge on Data Breach Incident Management and Recovery

Opinion: LinkedIn hacking incident betrays users’ trust

Users are told to create strong passwords, but the LinkedIn hacking showed strong passwords are no defense when the application provider is attacked. News | 14 Jun 2012
ICO fines Welsh health board £70,000 for patient record loss

For the first time, the ICO fines an NHS organisation for sending patient data to the wrong person. News | 11 May 2012
Going after the middlemen in the fight against financial cybercrime

The FBI and SOCA successfully executed Operation hAVoC, going after the middlemen, or carders, in the fight against financial cybercrime. News | 10 May 2012
SOCA takes its website offline in DDoS response

Just days after SOCA shut down carder sites, the agency was the victim of a DDoS attack, leading SOCA to takes its website offline. News | 03 May 2012
SOCA shuts down network of CVV sellers' carder sites

The Serious Organised Crime Agency shut down 36 CVV sellers who were selling stolen credit card and banking credentials to buyers around the world. News | 27 Apr 2012
Infosecurity 2012: Survey proves value of security awareness programme

According to the latest findings from PwC, better end-user security training can pay off in fewer breaches. News | 27 Apr 2012
Infosecurity 2012: ICO opposes mandatory data breach notification

Information Commissioner Christopher Graham calls mandatory breach disclosure for all companies unnecessary, saying voluntary disclosure is working. News | 26 Apr 2012
Prepare now for more stringent U.S. data privacy laws

U.S. data privacy laws will soon become more pervasive and more strictly enforced. Security teams should prepare their organizations for the new rules. News | 05 Apr 2012
SIEM deployment case study shows patience is required

Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed. News | 30 Mar 2012
Costs of a data breach falling, but cost per record rising

The cost of a data breach in the UK is falling, data from Ponemon Institute shows, but the news isn't all good. News | 26 Mar 2012
See more News on Data Breach Incident Management and Recovery

The new EU data protection regulation: Planning for compliance

The new data protection rule will impact businesses worldwide. Discover quick wins for SMBs and projects for large businesses to move to compliance. Tip
Incident reporting and employee surveillance laws in other countries

When an organisation has employees abroad, the security team must understand employee surveillance laws and incident reporting requirements. Tip
Stop phone tracking and GPS data leakage

GPS-enabled smartphones and other GPS devices may leak confidential or sensitive data, making it easy for attackers to target your employees. Tip
RSA Europe 2011: IT security conference coverage

All the news from RSA Europe 2011. Read news, features, tips and blogs from the London based IT security conference. Tip
Top incident response steps: Hacker tracking, mitigating brand damage

Computer systems aren't the only things that can suffer as the result of a breach. In this tip, learn how to create policy for hacker tracking and mitigating brand damage. Tip
Top incident response steps: Incident response team responsibilities

Do you know the proper incident response steps to handle a breach? Expert Davy Winder covers how to manage incident response team responsibilities. Tip
Understanding IT business continuity management systems

In this excerpt from "BS25999: A Pocket Guide," learn about business continuity management systems and how to test a BC plan. Tip
Data breach policy: Regaining information systems security and control

After a breach or acquisition, senior management is often keen to see security is under control once again. In this tip, Michael Cobb explains how to do just that. Tip
Laptop security tips: The physical perspective

Michael Cobb reviews tools and tactics that can help you limit the damage of a laptop loss. Tip
Remote phone lock and GPS tracking counter smartphone security risks

Lost or stolen smartphones pose serious security risks to data, but remote device lock technology and GPS tracking can help mitigate those risks. This is the first of two parts. Tip
See more Tips on Data Breach Incident Management and Recovery

What are the proper procedures for handling a potential insider threat?

In this SearchSecuity.com Q&A, Mike Rothman discusses how corporations can avoid insider threats by forming an incident response plan and monitoring employee behavior. Ask the Expert
Is there a way to integrate business continuity planning and operational risk management?

In this SearchSecurity.com Q&A, security management expert Mike Rothman discusses the differences between business continuity planning and operational risk management. Ask the Expert
How should information security and networking groups coordinate firewall management?

When it comes to firewalls, the networking group often handles the installation, while the information security department writes the rules. Should these responsibilities be split? In this expert Q&A, security management pro Shon Harris reveals how e... Ask the Expert

Information Assurance Standard 6 (IAS 6)

The Information Assurance Standard 6 (IAS 6) is legislation enacted by the British government in May 2009 as part of its Security Policy Framework (SPF). SPF is a response to government data breaches uncovered in the government's Data Handling Revie... Definition

Data Protection Act compliance: Effective data protection?

Recently, a lot of attention has been paid to the Data Protection Act, but how useful is it, really? In this interview, Paul Simmonds, member of the board of management of the Jericho Forum, discusses why the DPA is capable of keeping data safe. Video
CISSP Essentials training: Domain 10, Operations Security

Prepare for the final segment of the CISSP exam by learning about operations security. Video
CISSP Essentials training: Domain 7, Business Continuity

Study for the CISSP exam with a video about business continuity and disaster recovery. Video

Royal Holloway 2012: An incident response process for armoured malware

An incident response process may be futile when dealing with today’s armoured malware, as explained in this Royal Holloway article. Feature
The new EU data protection regulation: Planning for compliance

The new data protection rule will impact businesses worldwide. Discover quick wins for SMBs and projects for large businesses to move to compliance. Tip
Opinion: LinkedIn hacking incident betrays users’ trust

Users are told to create strong passwords, but the LinkedIn hacking showed strong passwords are no defense when the application provider is attacked. News
ICO fines Welsh health board £70,000 for patient record loss

For the first time, the ICO fines an NHS organisation for sending patient data to the wrong person. News
Going after the middlemen in the fight against financial cybercrime

The FBI and SOCA successfully executed Operation hAVoC, going after the middlemen, or carders, in the fight against financial cybercrime. News
SOCA takes its website offline in DDoS response

Just days after SOCA shut down carder sites, the agency was the victim of a DDoS attack, leading SOCA to takes its website offline. News
SOCA shuts down network of CVV sellers' carder sites

The Serious Organised Crime Agency shut down 36 CVV sellers who were selling stolen credit card and banking credentials to buyers around the world. News
Infosecurity 2012: Survey proves value of security awareness programme

According to the latest findings from PwC, better end-user security training can pay off in fewer breaches. News
Infosecurity 2012: ICO opposes mandatory data breach notification

Information Commissioner Christopher Graham calls mandatory breach disclosure for all companies unnecessary, saying voluntary disclosure is working. News
Prepare now for more stringent U.S. data privacy laws

U.S. data privacy laws will soon become more pervasive and more strictly enforced. Security teams should prepare their organizations for the new rules. News
See more All on Data Breach Incident Management and Recovery

About Data Breach Incident Management and Recovery

Develop data breach incident management and recovery plans, policies and procedures in order to protect sensitive information, avoid compliance fines and mitigate information security threats such as data security breaches and insider threats.

Latest Headlines

E-Books

E-Zines

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Blogs

Data Breach Incident Management and Recovery

Email Alerts

About Data Breach Incident Management and Recovery

More from Related TechTarget Sites