A study finds attackers targeting firms with poor patch management policies, exploiting vulnerabilities that should have been patched years ago.

New DDoS statistics suggest hactivist groups are to blame for an increase in the number and types of DDoS attacks across the Internet.

New Web application vulnerability statistics show the number of vulnerabilities is rising, despite the use of Web application development frameworks.

Microsoft has spurred Browsium to rewrite its tool for running IE6 on Windows 7, limiting the security threat posed by continued use of IE6.

Reaction to the European Commission data protection proposals has been largely negative, as many believe the new rules are costly and misdirected.

Respondents' top SharePoint security concerns include frustrated users who inadvertently or deliberately circumvent security policies.

Ensure Windows 7 network security during your enterprise desktop upgrade with two essential elements for your Windows 7 upgrade project plan.

The Chromebook is unique among new entrants in the mobile device arena. Mike Cobb breaks down the key Google Chromebook security issues enterprises need to know.

Can Androids ever be secure enough for corporate use? Learn about Android security controls to enable effective Android enterprise security.

The Cattles financial services group has admitted losing unencrypted computer backup tapes containing personal details of 1.4 million customers.

Traditional antimalware can't keep up with the threat landscape. Are antivirus signatures destined for the rubbish bin?

The integration of enterprise digital rights management solutions and data loss prevention tools could bring a level of automation to document security management.

Learn about implementing enterprise EDRM and how this technology combo supports enterprise content management security.

P2P encryption is an emerging technology; one that may be helpful for many companies, especially merchants. Mike Chapple dissects the pros and cons.

Security team member Jeffrey Catalfamo details the key elements of a successful anti-social engineering training program.

Expert Lisa Phifer explains the process for creating a winning enterprise mobile device security policy that reduces the risk of mobile data threats.