Kurt Roemer, Citrix' chief security strategist. Photo by ITWC staff.

Published: October 16th, 2014

Securing your database is about more than just securing your network

If you run a business harbouring sensitive information within a database – anything from intellectual property, to digital cash, to your customers’ data – you need to secure it. It sounds like such

Published on: January 21st, 2014 Candice So


Organizations that look to protect themselves against attacks launched by the Anonymous hacktivist collective should make sure that their Web applications are secure before deploying anti-DDoS (distributed denial-of-service) solutions, says security firm Imperva

Published on: February 27th, 2012 Lucian Constantin

Canadians’ records stolen from Sony e-commerce site

The problems keep coming for Sony. On Tuesday the company confirmed that someone had hacked into its Web site and stolen about 2,000 customer names and e-mail addresses. Close to 1,000 of the

Published on: May 25th, 2011 Robert McMillan

Thousands of sites hit in massive Web attack

Internet users have been hit by a widespread Web attack that has compromised thousands of Web sites, including Web pages belonging to the Wall Street Journal and the Jerusalem Post.Estimates of the total

Published on: June 11th, 2010 Robert MacMillan and Gregg Keizer

Heartland hackers stole 130 million credit and debit card numbers

This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web application security vulnerabilities,

Published on: August 20th, 2009 Jaikumar Vijayan

Ouch! – Why SQL injections really sting and how to protect yourself

"SQL injection" – the phrase seems forbidding, and the reality it signifies is quite sinister.In fact this concept was mostly unknown just a few months ago, but now Web site developers around the

Published on: October 24th, 2008 Brian Jackson

Hackers exploit Olympic fever to infiltrate PCs of unsuspecting fans

Cyber-criminals are using the Olympics to put malware on the podium, hijacking legitimate Olympic coverage and content so as to infect those involved with the Beijing Games and its fans, according to security

Published on: August 19th, 2008 Brian Jackson

Bustling industry fueled by Microsoft’s Patch Tuesday

Time: The second Tuesday of every month, 10:00 a.m. PST. Like clockwork, Microsoft releases a group of security patches. And like clockwork, that release sets in motion a flurry of eventsfrom businesses, security

Published on: July 11th, 2008 Karen D. Schwartz

How to not have your Web site hacked like Sony’s

The U.S. Sony Playstation Web site is the latest high-profile victim of a hacker attack on business sites that's spreading malware at breakneck pace, says a security vendor. Sophos PLC reported that Sony

Published on: July 4th, 2008 Brian Jackson

Microsoft and HP respond to millions of attacks with free tools

Microsoft Corp. and Hewlett-Packard Co. on Tuesday unveiled free tools to help Web developers and site administrators defend against the rapidly growing number of SQL injection attacks that aim to hijack legitimate sites.

Published on: June 26th, 2008 Gregg Keizer