Skip Links

Compliance Research Center

Your source for the latest news, opinion, product comparisons and reviews of compliance tools.

Compliance News
Managing the unmanageable
Cloud firewall management vendors unleash new wares aimed to taming virtual firewall sprawl.
For 'Malware as a Service' merchants, business is booming
Malware merchants have matured, and are more diversified and dangerous than ever.
Breaches, like history, repeat themselves
Firms that overlook IT security basics are setting themselves up to be breached.
Goal of new security service: More involvement from ISPs, carriers
New security analytics service purports to arm service providers with the information they need to keep their network traffic clean.
Clamor for cloud apps increases corporate data breach risk
Vendor analysis of network and application traffic shows poorly managed remote access tools and traffic flowing outside port 80 are rampant.
Chinese 'attack US DOD smart cards' with Sykipot malware
A new strain of Sykipot is being used to attack U.S. Department of Defense smart cards.
Chinese 'attack US DoD Smart Cards' with Sykipot Malware
A new strain of Sykipot is being used to attack US Department of Defense smart cards
Passwords aren't dead, though maybe yours should be
Despite all those "death to passwords" chants, some say it's still a solid form of authentication -- when users aren't being stupid...
Privacy 2012: I know what you did at 3:30 a.m.
For a peek into what experts expect this year and beyond when it comes to privacy, we turn to the Rebecca Herold (aka the Privacy Professor) for...
Government engineers actively plan for cyberwar
Governments are arming themselves to their cyber-teeth with offensive and counter-defense cyber weapons, and there's little enterprises can do to...
More SCADA security flaws surface
Numerous new authentication issues saddle Siemens' industrial control applications.
Watching the watchers
While there's no single fix, a number of experts weigh-in on how to make certain those with privileged access don't abuse it.
Sophos Updates Mobile Device Management Platform
Latest version of Sophos Mobile Control includes reporting dashboard for compliance enforcement
Will Kim Jong Un be for cyberwarfare what his dad was for nukes?
Security experts have differing views on what the death of Kim Jong Il will mean for the future of cyberattacks.
Nation's nuclear power watchdog comes up short on FISMA compliance
Majority of compliance gaps surround configuration and vulnerability management, an independent audit finds. But NRC has made important strides, too.
The security threat Stephen King warned us about?
Remember the film "Maximum Overdrive," where machines took over and went on a murderous rampage? With cars and appliances ever more...
Carrier IQ security risks overblown?
Security expert reaction and recently published research says yes
Carrier IQ: A privacy tempest in your pants pocket
Privacy and cyber law experts weigh in on the privacy implications surrounding the Carrier IQ mobile diagnostic software.
Healthcare breaches: Do they even matter?
Electronic medical record breaches continue, yet the public pays little attention to healthcare provider security and privacy policies.
Why healthcare IT security is harder than the rest
In this interview, security expert Gunnar Peterson explains why securing health care IT systems is quite different from other types of business IT...