Five Tips to Avoid Getting Phished

	When You Can't Trust Your Own Company | Bank of America to Further Ramp Up Security with New CISO
	CIO Security				Forward this to a Friend >>>
	Five Tips to Avoid Getting Phished The criminal art of spear phishing, email spoofing that aims to get the recipient to click on a bad link or attachment, has been around for years. But that doesn't mean it's become any less effective. According to figures from the U.S. Computer Emergency Readiness Team (US-CERT), which compiles information from federal, state and local governments, commercial enterprises, U.S. citizens and foreign CERT teams, phishing attacks accounted for 53 percent of all security incidents in 2010. Read More RESOURCE COMPLIMENTS OF: IT Roadmap Denver IT Roadmap Denver - April 28, 2011 IT Roadmap Denver returns April 28 to the Colorado Convention Center! Through executive keynotes, ROI workshops, technical tutorials, strategy sessions, networking opportunities and a private IT expo, attendees will gain insights into the latest IT issues, trends, challenges and solutions from top IT analysts and practitioners. Register now to attend! In this Issue When You Can't Trust Your Own Company Bank of America to Further Ramp Up Security with New CISO Epsilon a Victim of Spear-Phishing Attack, Says Report Epsilon E-Mail Breach: 4 Unanswered Questions FAQ: Epsilon E-Mail Breach What Happened to Not Sharing My Information? Verizon Customers Caught Up in Epic Epsilon E-Mail Hack 'We Regret to Inform You': the Epsilon Breach Letters You Don't Want to See Tax Prep Maker Warns Customers of Epsilon E-Mail Hack Impact Ten Security Tips to Protect You During Tax Season Backup Disasters: How You Can Avoid Them It's Not Funny When Security Becomes a Joke Google Apps: How We Locked Down Documents Attackers Favor Social-Networking Sites, Shortened URLs Do Utility Companies Slight IT Security? Tighter Security Available to .Com Sites, Only with Upgrades IEEE Suffers a Data Breach Millions of Sites Hit with Mass-Injection Cyberattack Thieves Are Stealing Children's Identities Gucci Admin Accused of $200,000 IT Rampage WHITE PAPER: Dell Guidelines for Choosing a QSA The independent white paper in this security KnowledgeVault is just one of the resources to help you make the right decision. It details the top 5 questions to ask a prospective QSA firm and offers guidelines on everything from making sure they adequately handle compensating controls to assessing their expertise with virtualization. Learn more. When You Can't Trust Your Own Company The 'Net is just one hack away from disaster Read More Bank of America to Further Ramp Up Security with New CISO Bank of America has hired a new CISO as it continues its effort to bolster security after WikiLeaks claimed to have obtained sensitive internal documents from an unnamed major U.S. bank. Read More Epsilon a Victim of Spear-Phishing Attack, Says Report A targeted spear fishing campaign described in a security alert last November may have caused the massive data breach revealed this week by email service provider Epsilon. Read More Epsilon E-Mail Breach: 4 Unanswered Questions A data breach at e-mail marketer Epsilon, the sort of company that doesn't usually make the tech headlines, has put at risk millions of users, security experts have warned. Customers of big companies such as Citibank, JPMorgan Chase, Target and Walgreens were affected, and now may be at increased risk of e-mail swindles. Read More FAQ: Epsilon E-Mail Breach A server breach at Epsilon Interactive exposed the names and email addresses of millions of people. This explainer tells what happened and how you can protect yourself. Read More What Happened to Not Sharing My Information? The notifications are still trickling in from companies impacted by the data breach at Epsilon. I have received two. My wife has received four. I have heard some people have received notifications from as many as six different companies letting them know their personal data might have been exposed in the Epsilon breach. The inevitable question is: why did Epsilon have your data in the first place? Read More Verizon Customers Caught Up in Epic Epsilon E-Mail Hack Verizon customers this week got emails regretting to inform them that their personal contact information had been compromised. Read More 'We Regret to Inform You': the Epsilon Breach Letters You Don't Want to See "We regret to inform you ..." are five words you never want to see in an email. But over the weekend thousands of people did as Epsilon began warning its customers that it had suffered a break-in and email addresses were stolen. Read More Tax Prep Maker Warns Customers of Epsilon E-Mail Hack Impact Intuit has warned users of its tax preparation software to be aware of identity theft scams in the wake of a major breach at marketing firm Epsilon. Read More Ten Security Tips to Protect You During Tax Season You have an extra three days to file this year, but the April 18 tax deadline is fast approaching. Tax season can be stressful, or exciting depending on who owes who. Either way, the anxiety over income tax season helps attackers catch people off guard with spoofed IRS messages and other income tax related scams. Read More WHITE PAPER: Dell Elements of a Proactive Data Security Solution See all the survey results along with more data security resources, including an expert Webcast outlining six vital security steps, in the security KnowledgeVault. Learn more. Backup Disasters: How You Can Avoid Them Even those of you religious about backing up your PC data may face a few of the same demons that CIO.com's Bill Snyder recently battled. Read on for advice on how to make sure your backups don't behave badly. Read More It's Not Funny When Security Becomes a Joke Security is now so mainstream, it can be the punchline for a network comedy. Read More Google Apps: How We Locked Down Documents Here's how two organizations added extra security and monitoring power to track and protect sensitive Google Apps documents. The bad news: Until Google delivers these capabilities itself, you'll have to turn to a third party vendor. Read More Attackers Favor Social-Networking Sites, Shortened URLs Social-networking sites and shortened URLs have become the favored technologies for scam artists to lure victims to websites that attempt to push malware or launch an attack, says a Symantec report released today. Read More Do Utility Companies Slight IT Security? Do utilities and energy companies spend huge amounts for physical security but slight information-technology security? Read More Tighter Security Available to .Com Sites, Only with Upgrades VeriSign has added an extra layer of security to the Internet's .com domain, but e-retailers, banks and other Web site operators will need to upgrade their DNS hardware, software or services to take advantage of .com's new cryptographic features. Read More IEEE Suffers a Data Breach The Institute for Electrical and Electronics Engineers suffered a data breach last year that compromised credit card information of 828 people who registered for an IEEE conference. Read More Millions of Sites Hit with Mass-Injection Cyberattack Hundreds of thousands -- and possibly millions -- of websites have been hit with a cyberattack that some are calling "one of the biggest mass-injection attacks we've ever seen." Read More Thieves Are Stealing Children's Identities Identity theft has saddled thousands of children with debt, sometimes for years before they ever discover their personal information has been stolen, a study says. Read More Gucci Admin Accused of $200,000 IT Rampage A network engineer fired by fashion house Gucci has been charged with going on an IT rampage against his former employer in which he deleted data, shut down servers and left the company nursing an estimated $200,000 cleanup bill. Read More
	Hot Picks for the Week CIO Resumes: Compare Yours to the Cream of the Crop 9 Best Social Networking Android Apps Google Apps: How We Convinced the C-Suite Switching Outsourcing Providers: 10 Tips Join CIO on Facebook! Images, Stories, RSS, Twitter and more!
	Get more CIO peer perspective online LinkedIn | Facebook | Twitter You are currently subscribed to cio_security as info55383.news@blogger.com. Unsubscribe from this newsletter | Manage your subscriptions | Subscribe | Privacy Policy If you are interested in advertising in this newsletter, please contact: bglynn@cxo.com To contact CIO.com, please send an e-mail to online@cxo.com. Copyright (C) 2011 CIO, 492 Old Connecticut Path, P.O. Box 9208, Framingham, MA 01701 ** Please do not reply to this message. If you want to contact someone directly, send an e-mail to online@cxo.com. **