This week, Juniper is updating vGW to version 5.5, providing new features to meet the growing challenges of securing virtual infrastructure at scale.
"vGW is a software solution for securing virtual environments doing the same sort of things that physical devices do," Johnnie Constansis, product marketing manager at Juniper told...

The IBM Security Network Protection XGS 5000 is first in the new product family that aims to go beyond what IBM's traditional IPS devices have provided to date with a deeper and more integrated level of threat intelligence.
he XGS series is intended to initially supplement and perhaps one day replace, IBM's GX series of network security appliances.
"It's a new class of device," Joe Anthony, Director, Threat Protection Product Management, IBM Security Systems, told...

In the modern world of web development there are a set of new and emerging specifications sometimes grouped under the moniker HTML5. One of those specifications is the WebSocket API, that enables two-way communications.
WebSockets offer the promise of faster communications that than traditional TCP, but according to a pair of security researchers, there is a hidden risk. Speaking at the Black Hat conference last week, Sergey Shekyan, senior software engineer at Qualys; and Vaagn Toukharian, developer at Qualys, detailed how WebSockets could be exploited for malicious gain...

Apple has never taken the stage at the Black Hat conference to explain IOS security. That all changed last week, as Apple Platform Security Manager Dallas De Ately took the stage and explained in great detail how IOS is built for security from the ground up.
"IOS is different than Mac," De Atley said. "The baseband components are always on for notifications, the device never fully goes to sleep and the phone is always connected...

For 24 years, Shawn Henry worked in the FBI, and served in a number of different positions in the agency. His last position at the FBI was as the executive director, and he now is in the private sector as president of Crowdstrike services.
“We need warriors to fight our enemies,” Henry told the capacity Black Hat audience of more than 6,500 computer security professionals.
To start his keynote, Henry delved into the history of the FBI, which has investigated a number of different crimes throughout its history, ranging from illegal drugs, to organized crime to bank robberies...

Microsoft has announced what it takes measures to improve the security of online service Xbox Live. As the software giant, the company is focusing increasingly on the security settings and user accounts, in particular the fight against fraud and phishing attacks. Recall fraud - a type of fraud in the field of information technology, in particular, unauthorized activity, and unauthorized use of resources and services in communication networks. Phishing - the kind of Internet fraud that aims to gain access to sensitive user data - username and password. To do this, users are sent e-mails on behalf of the popular brands, as well as personal messages within the various services...

ESET announced the release of a new version of ESET NOD32 Mail Security for Mail Servers software platform based on IBM Lotus Domino. According to Boris Greydingera, Director of Information Technology of the Russian representation of ESET, a new version of the solutions ESET NOD32 Mail Security for IBM Lotus Domino includes advanced scanning algorithms and detection of threats in mail traffic, implemented an improved spam filtering.
...

...

...

Victim said to be among Australia's largest telcos.
Hackers claiming to have stolen 40GB of data from one of Australia's largest internet service providers are threatening to publish part of the cache in protest against the nation's proposed data retention laws...

Hackers strike over data retention plans.
Hackers operating under the banner of Anonymous have defaced a string of Queensland Government web sites in protest against Australia's proposed data retention policies.
The data retention policies would allow the government to force internet providers to store up to two years' worth of a users' online historical data and provide easier access to social networks such as Twitter...

Inks one-year, $3.9 million contract.
The Reserve Bank of Australia (RBA) will deploy an "application-aware" firewall to replace an ageing network security system, under a new one-year, $3.9 million contract with Data #3.
The central bank this week revealed that it had selected Data #3 to supply, support and maintain "next generation firewalls", concluding a tender process that commenced early this year...

Enlists third party to investigate spam complaints.
Cloud storage service Dropbox has enlisted third-party security experts to investigate why users were receiving spam to unused email accounts.
Users flocked to Dropbox's forums last week to complain that spam was hitting their dormant Dropbox email accounts...

Creates annual survey.
CERT Australia will fund the University of Canberra's Centre for Internet Safety to undertake an annual survey of cyber threats experienced by a sample of 500 Australian companies.

Attorney General Nicola Roxon said the survey would provide “a better picture” of how cyber incidents affect business and the Australian economy...

Secret intelligence agency opens up for the first time in 60 years.
The head of the Australian Secret Intelligence Service (ASIS) has warned IT security challenges "pose one of the biggest threats of the decade", as the security landscape makes covert intelligence operations more difficult for agents...

Zombies orphaned.
Security firm FireEye has claimed it dismantled a botnet responsible for up to a third of the world's spam.

All known command-and-control servers for the Grum botnet have been removed in Panama, Russia and the Netherlands after community pressure on the internet service providers in those countries hosting them, according to the company...

Applies to enterprise app portfolio.
ING Direct Australia has completed a year-long overhaul of the identity management and access control system that governs user access to enterprise applications and systems.

Head of IT performance Tony Sestanovic told the Gartner Security and Risk Management Summit in Sydney yesterday that the new system had been applied to 30 Sarbanes-Oxley (SOX)-related applications with 1200 users in the first 90 days of operation...

The Internet Systems Consortium (ISC) had been tasked by the FBI to operate replacement DNS servers -- and those DNS server were in fact taken down on July 9th. However, U.S.-based ISPs have stepped in to cushion the fall by re-routing users to ensure they don't lose their Internet access.
Among those ISPs continuing to operate re-direct users even after the July 9th takedown is U...

Hackers publish 21,485 clear text passwords.
Hackers have stolen and published 21,485 clear text passwords from a Billabong customer database in what the Aussie surfwear icon has described as an "extremely serious matter".
The clear-text passwords were uploaded to a codepaste site for #WikiBoatWednesday, an event popular in hacktivist Twitter circles, for which groups publish stolen data caches online...

Two-factor authentication not enough, agency says.
The European Network and Information Security Agency (ENISA) has advised banks to presume that all customer PCs are infected given "the current situation" of security.
In an advisory last week, the EU cyber security agency noted that many existing authentication systems have failed to prevent fraud...