Press Room

• Catbird in the News
• Press Releases
• Events
• Catbird Blog
• Security News
• It Could’ve Been Stopped
• 
  Please send me
  more information!
  

Security News

Virtualization Security

Whose Job Is Virtualization Security?
As network boundaries blur and longstanding design paradigms fall by the wayside, how do we assign accountability for security? It's a pressing question: Because virtualization gives us so much power and flexibility, we're moving ahead at a breakneck pace, often without looking closely at whether security-assurance levels remain as the services delivery model morphs. (By Richard Dreger November 21, 2011, Information Week)

Hackers Likely Have Japanese Warplane, Nuclear Data Attackers likely accessed sensitive data relating to military aircraft, missiles, and nuclear power plant designs and safety systems, said Japanese defense officials.
(Mathew J. Schwartz, October 25, 2011, InformationWeek )

700,000 InMotion Websites Hacked by TiGER-M@TE
InMotion’s data center got hit by the hacker that calls himself TiGER-M@TE, leaving a few hundred thousand website owners with nonfunctional pages. He is also the one responsible for the attack carried out on Google Bangladesh. By (Eduard Kovacs September 26th, 2011, Softpedia)

DNS hijack hits The Register: All well
On early Sunday evening, UK time, The DNS records of many websites, including those of The Register and The Telegraph, were hijacked and redirected to a third party webpage controlled by Turkish hackers. (Drew Cullen, September 5, 2011, The Register)

PCI Council revokes company's QSA status
Merchants that use Scottsdale, Ariz.-based security services provider Chief Security Officers (CSO) to validate their adherence with the Payment Card Industry Data Security Standard (PCI DSS) will have to find a new assessor. (Angela Moscaritolo, August 09, 2011 SC Magazine)

Health Net Breach Exposes 1.9 Million Records
According to the most recent Ponemon Institute figures, the average data breach costs healthcare organizations $345 per records. Using those numbers, this breach could cost Health Net upward of $655 million when all is said and done. That's a little more than 5 percent of Health Net's projected $12 billion revenue for 2011

IRS Financial Systems Vulnerable to Insider Threats
In addition, GAO said, 65 of 88 or nearly three quarters of previously reported weaknesses remain unresolved or unmitigated.

Exploitable DOS attack against upatched versions of ESX (4.x) and ESXi (4.x)
Unspecified vulnerability in the Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, and OpenSLP, allows remote attackers to cause a denial of service

Gartner Says 60 Percent of Virtualized Servers Will Be Less Secure Than the Physical Servers They Replace Through 2012

Honda Data Breach Highlights Need to Set Strong Cloud Security Policies (eWeek–January 24, 2011)

Turning white clouds into black clouds: Cloud-driven hacking is now real (InfoWorld–January 13, 2011)

Cloud Computing Security Risks Outweigh Benefits: Survey

Companies Slowly Join Cloud-Computing

Regulatory Compliance, Slowly Catching up with Virtualization

Catbird and McAfee address security in the new datacenter

Virtualization infrastructure monitoring: Eating your veggies

Virtualization Security: How the Masters of Mixing Protected Unique IP

Virtualized Systems Can Be A Security Risk: Analyst

Virtualization Audit 101: The top 5 risks and recommendations for protecting your virtual IT

Leading analysts recommend virtualization security

How to Find and Fix 10 Real Security Threats on Your Virtual Network

Google Study on Security Exposure of Virtualized Environments

Forrester on Virtualization and Security

Web Security & Insider Attacks

Kroxxu botnet hits a million web users – November 22, 2010, V3.co.uk

Kaspersky download site hacked, redirecting users to fake AV – November 19, 2010, Help Net Security

Websites hosted at Go Daddy under siege in mass injection attacks – November 3, Softpedia (International)

Saudi websites target of 68,000 hacking bids every day – November 3, 2010 Saudi Gazette (International)

Hackers Hijack Sites of Internet Organizations

Verizon Study Links External Hacks to Internal Mistakes

Web infection attacks more than 100,000 pages

Hacking tool compromises masses of websites

Hannaford Breach lesson: limit the network access of employees and regularly monitor system activity

Attackers booby-trap searches at top Web sites

Trend Micro hit by massive web attack