As if they needed more stress, organizations are facing evolving and increasingly stringent compliance regulations from the Payment Card Industry, as well as Sarbanes-Oxley, HIPAA and others. Here are a few security compliance products that can make the audit process less excruciating.
Here are 10 of the distributor's hottest new offerings winning over solution providers.
New smartphones from Sony, Motorola and the first-ever Twitter-only mobile device -- the TwitterPeek -- headline a busy week for handset makers as the holiday shopping season heats up.
Paris Hilton Web Site Hacked
8:00 PM EST Mon. Jan. 12, 2009
Once a user visits the ParisHilton.com Web site, they are immediately prompted to "update" their system. When the pop up box appears, users have the option to click "Cancel" or "Ok." In the end, either icon that they choose will trigger the download of an executable designed to steal personal and financial information on users' machines.
Home users who become a victim of the attack could enable the hackers to steal bank accounts or identity information. If users visit ParisHilton.com on a corporate network, the malware allows the attackers to intercept, or redirect network traffic, as well as install information-stealing Trojans.
Although experts say it's difficult to determine the number of affected users, at least 164,000 users have visited the site since the attack was launched, according to Alexa.com.
Researchers at security company ScanSafe detected the same type of malicious attack on numerous other celebrity Web sites, including sexy-celeb-photos.com and MLB.com.
However, experts say that unlike the MLB.com malware and other standard drive-by downloads, the ParisHilton.com attack forces the user into clicking -- in this case, the dialogue box -- which in turn triggers the installation of the malware when they visit the ParisHilton.com site. Users are unable to exit the dialogue box, or close their browser, until they click an icon.
Experts say this latest malicious attack relates to the challenge attackers face when trying to entice users to click on infected files or links that install malicious code.
"(Users) have to click in that dialogue box. It's going to invoke that malware, so they're solving part of the challenge. They're forcing users into making a click," said Mary Landesman, senior security researcher at ScanSafe. "We're seeing a way that they've worked around that problem."
Hilton's mobile phone was hacked in 2005, revealing private data and photos. In March, 2008, a hacker penetrated her Facebook security controls to gain access to pictures.
