As more workers spend a greater part of their days on social networks like Facebook and Twitter, hackers have turned their energies toward spreading their malware across those services, harming workstations and company networks.

That’s the contention of a recent report measuring Web 2.0-targeted hacks that occurred in the first quarter of this year and was conducted by the Secure Enterprise 2.0 Forum, an industry group aimed at enabling the safe use of social media in the workplace.

Read more …

Next-gen collaborative sites now account for 21 percent of all Web hacks, report says

Web 2.0 sites are now the premier target for hackers, amounting to 21 percent of all reported hacking incidents, according to a report issued yesterday.

The study by the Secure Enterprise 2.0 Forum, an organization devoted to the secure use of social media at work, says that Web 2.0 sites are now attacked more frequently than sites operated by the media (18 percent) and retail businesses (13 percent).

Continue reading the article …

Bot infections, spam can be ‘silent killer’ for SMBs due to drain on email servers, network resources

A small or midsize business (SMB) is ultimately a more attractive target for spammers, botnet operators, and other attackers than a home user mainly because it has a treasure trove of valuable data without the sufficient IT and security resources to protect it.

Continue reading the article …

“I have your shit!” the note, which was posted to Wikileaks read. “In *my* possession, right now, are 8,257,378 patient records and a total of 35,548,087 prescriptions. Also, I made an encrypted backup and deleted the original. Unfortunately for Virginia, their backups seem to have gone missing, too.”

Continue reading the article ….

The number, scale and sophistication of data breaches fueled by hackers last year is rekindling the debate over the efficacy of the credit card industry’s security standards for safeguarding customer data.

All merchants that handle credit and debit card data are required to show that they have met the payment card industry data security standards (PCI DSS), a set of technical and operational requirements designed to safeguard cardholder information from theft or unauthorized access.

Continue reading the article