Related

• CISOs should know business goals to embed security practices36783
• Mobile devices still poorly secured, survey finds6802
• Zero-day exploit in Windows 7 64-bit may allow remote code execution5698
• Eircom computer theft exposes customer and employee data 5406
• Carrier IQ attempts belated damage control 5381
• Firewalls fail to stem tide of DDoS attacks4713
• Laptop users offered simple full-disk encryption upgrade4350
• Microsoft ASP.Net flaw targeted by hacker exploit code4241
• Internet will vanish Monday for 300,000 infected computers3738
• TCD student named as second LulzSec suspect3573
• Apple device encryption a headache for law enforcement3465
• Twitter urges password changes after security breach3396
• Undetected access allows botnet-like abuse of cloud computing 3217
• 30,000 WordPress blogs infected to distribute malware3185
• Businesses must go beyond compliance for security3110
• Microsoft researcher calls for password overhaul3054
• Anonymous supporters hit by cybercriminals2976
• Software exploits fell to new low in 20112932
• IBM, HP and Microsoft 'weakest' on patching2793
• Cloud outages pose greater risk than breaches2687
• Corporates struggle to secure employee mobile devices2612
• Amnesty UK website hacked to serve lethal Gh0st RAT Trojan2599
• CSOs warned to watch for FinFisher spyware2598
• Fortune 500 firms and US agencies infected with DNSChanger2500
• Microsoft patches critical security holes in Windows, Office, IE2441
• Secunia cuts vulnerability disclosure deadline to six months2397
• Google, Microsoft and Yahoo fix serious e-mail weakness2360
• Symantec admits Norton antivirus source code stolen 2350
• Dropbox introduces two-factor authentication2334
• Research shows Irish most cautious about sharing personal data2289
• Netwatch sensor technology to reduce Garda false alarms2287
• New Crisis Mac trojan targeting Snow Leopard, Lion2279
• EU to enforce 24-hour data breach disclosure2278
• Symantec braces for further source code leaks2276
• VMware virtualisation source code stolen2269
• Dropbox blames employee account breach for spam attack2243
• Advanced Persistent Threats to top infosec challenges for 20132238
• Number of denial of service attacks on the rise2232
• Hacker billboard Pastebin struggles with DDoS attacks2216
• RSA bets the future of security on big data2212
• Microsoft Azure security features revealed on STAR registry2209
• IRISSCERT begins teen security awareness campaign2196
• AVG finds 11-year-old creating malware to steal game passwords2184
• Global hacking increases in Q22174
• Anti-virus update2147
• SAP to offer support for smart phone and tablet security2144
• Fujitsu developing HTML5-based security app for corporate smart phones2131
• IT execs accept BYOD, despite reservations2125
• ComputerLinks introduces Mobile Active Defense to the channel2114
• Romanian police nab 'NASA hacker'2111
• Through a presentation, darkly2089
• Fighting the good fight2062
• Symantec outlines BYOD mobile security strategy2031
• Eset warns against malware 'as Gaeilge'2030
• Reuters blogging platform, Twitter account hacked2027
• Hotline.ie issues warning about bogus holiday booking e-mails2020
• Hacked websites deliver Android malware2019
• Zeus variant tricks Facebook, webmail users into exposing card details2014
• Algorithm reveals source of malware and spam attacks2006
• Ramnit worm goes after Facebook credentials1996
• Facebook pushes security tips to all its users1992
• Unpatched vulnerabilities in more than half of Android devices1987
• IT groups fail to focus on logs for security clues1984
• Internal staff still pose the biggest security risk1979
• Largest DDoS attack in history slows global Internet1953
• Met Police toys with smartphone content evidence system1953
• Ransomware and skills shortage focus for IRISSCERT 1944
• EU online counter-terrorism group considers widespread surveillance1931
• Blizzard Entertainment warns of password breach1930
• ‘Dirty smart phones’ leave file traces1926
• Webroot to accelerate channel investment in Ireland1915
• Apple admits fault in iCloud hack situation1913
• Unpatched Java vulnerability exploited in targeted attacks1911
• New Sophos partner programme 1903
• Hackers deface Panda Security's website following arrests1880
• Most security threats in 2012 were redirects from legitimate sites, Sophos1878
• India tops spam sender rankings1874
• Alleged LulzSec member indicted in US1864
• Kaspersky appeals for Gauss crypto help1860
• Legal, tech BYOD pitfalls highlighted at security conference1837
• Sophos aims for complete security 1837
• Last.fm latest to suffer password breach1813
• Brazil goes nuts for tweets1808
• LulzSec members plead guilty to DDoS attacks on Sony, CIA, others1800
• ISACA releases business IT governance framework COBIT 51780
• Yahoo investigating possible massive security breach1751
• FBI nabs alleged LulzSec member over Sony hack1732
• Dutch citizen charged with fraud, identity theft in hacking case1712
• Microsoft to release IE update for critical vulnerabilities on Friday1683
• Wordpress sites worldwide experience brute force attack1668
• GSM-based security devices vulnerable to blocking by criminals1668
• US government tops list of Twitter snoopers1662
• Facebook removes two-factor authentication mobile numbers from search1661
• Big brother influence alters employee behaviour1660
• 'Shamoon' cyberweapon the work of amateurs1643
• Lulzsec Reborn publishes reveals usernames, passwords of 10,000 Twitter users1635
• The escape key1626
• Botnets for hire likely used in attacks against US banks1620
• Browsers pose the greatest threat to enterprise1611
• 'Celebrity' e-mail hacker sentenced to prison1601
• Education and feedback focus for PCI1588
• Global information security spending to reach €13.2bn by 20171569
• IT security survey: the insider risk1558
• Microsoft vows to improve security suite after failed evaluation1556
• Huawei to meet German security researcher over vulnerabilities1550
• Google Chrome endorsed by German government1544
• Patch now as more stolen code leaks, warns VMware1517
• Government, industry come together for makeITsecure campaign1512
• GoDaddy comes back online after attacks1474
• LulzSec defendant will be dealt with in UK1471
• Cybercrime ring busted with help from Facebook1468
• MasterCard shows credit card with LCD screen and PIN1448
• Firms struggling to secure trust infrastructure1442
• LulzSec leader granted six-month sentencing delay1434
• M2M offers new frontier for hacker mischief1424
• EU cybersecurity agency warns of cloud dangers1393
• Evernote hit in hacking attack, users must reset their passwords1384
• Antivirus 'king' McAfee still free despite blog report of capture1384
• Final Patch Tuesday of 2012 includes five 'critical' updates1381
• Hackers leak 1m Apple UDIDs allegedly stolen from FBI laptop1372
• Cybergeddon likely to be caused by 'glorious cock-up'1369
• Adobe investigates alleged customer data breach1366
• Securing the human 1364
• Spanish police say DDoS suspect used a van as a mobile office1342
• A DAB hand1335
• AWS aims for security conscious enterprise with appliance1317
• MakeITsecure publishes tips for safe surfing1315
• Long hard climb to high level of cloud security1310
• Cisco pushes ahead with context-aware security vision1306
• Experts call for two-factor authentication on Twitter1273
• BitCoin exchange loses $250,0000 after encryption keys stolen1247
• Dexter malware infects point-of-sale systems worldwide, researchers say1203
• Sony admits 400 Chinese customer names, e-mails leaked from mobile division1202
• LivingSocial hacked, 50 million users told to reset passwords1174
• Important SCADA systems secured using weak log-ins1171
• Serious data breaches take months to spot1170
• Denial of service attacks more complex, targeted and angry1151
• Spam levels down as industry takes aim at botnets1125
• Java fix and better communication needed1114
• Kaspersky developing secure OS for industrial control1104
• US to scrutinise IT purchases with ties to China1074
• Best worst enemy1069
• There’s no such thing as information security risk1054
• IT pros offered new Cloud Security qualification1044
• Online scammers target unemployed with fake job offers1041
• McAfee heart problems delay deportation to Belize1041
• Google Play apps used to hide BadNews mobile botnet979
• Leaked Apple UDIDs stolen from digital publishing firm946
• China calls for cooperation not war in cyberspace943
• Integrated solutions key for security908
• Emerging security threats899
• Trusting technology882
• Bit9 blames SQL injection flaw for recent hack881
• Cloud storms the market873
• Big Data, social media and security themes at Euro Tech Summit 864
• LulzSec turncoat dodges sentencing for second time860
• Unifying force828
• Stand to attention826
• BlackBerry 10 cleared for use by US Defence dept779
• The threat within716
• Sophos Android security update709
• Facebook attacked with credential-harvesting malware692
• After the breach370
• All area access327
• Purse strings loosen for security spend313

When asked about the issue most likely to impact their enterprise's security in the next year, top answers were data leakage (17%), cyber-attacks (15%), inadvertent employee mistakes (17%), incidents related to bring your own device (BYOD) (13%) and cloud computing (11%). Fifteen per cent said all of these issues were top concerns, and 9% believed that none of these are concerns.

"Today, it is critical for enterprise leaders to recognise information management and IT as a business issue. The survey shows that more than a third of respondents still report a disconnect between the information and business strategies," said Dr Derek Oliver, CEO, Ravenswood Consultants Ltd, co-chair, ISACA COBIT 5 Task Force and past president of the ISACA London Chapter. "Using a business framework for IT governance, such as COBIT 5, will help clarify the roles of the business and information, and provide a common language and set of goals to get everyone on the same page."

For global results of the survey, visit http://COBIT5presskit.isaca.org

TechCentral Reporters