Broadband Advisor

If you needed any more reminders about why it isn't a good idea to use external mail services to conduct critical business, the recent break-in to US Republican Vice-Presidential candidate Sarah Palin's gov.palin@yahoo.com Yahoo inbox should be it. Of note is that following the disclosure of the inboxes the compromised address and another address, gov.sarah@yahoo.com, have been suspended.

Microsoft's Security Vulnerability Research & Defense team (SVRD) have recently posted information online about the Cross Site Scripting (XSS) filter to be incorporated into Internet Explorer 8 when it is released.

No one will deny the global celebrity of Angelina Jolie. She's on the cover of magazines, stars in blockbuster movies and is a ratings bonanza each time she appears on TV. Now that she's had twins, she's got triple the appeal for some fans.

Bill Cheswick -- best known for writing "Firewalls and Internet Security" in 1994 and his earlier work at Bell Labs -- doesn't want to let commercial blogging software within hacking distance of his hardened Web server. A self-described Apple fanboy, Cheswick does want to host his own blogs, however, one about his job as lead member of the technical staff at AT&T Research and another about personal stuff, "if I can tell the difference."

By and large we have all gotten used to spam and unsolicited commercial e-mail (UCE). Even if you buy or build the best filters, if you are at all active online you're going to get at least a few spam messages every day. It has become one of those things that you can't avoid, like death and taxes only more irritating.

Here's a travel advisory: The next time you find yourself in a foreign city at night with nothing to do, take my advice: rent a movie in your hotel room. Don't go to discos. And if you do go out, don't bring a smart phone with you.

Security company Finjan Wednesday reported it has found more than 1,000 sites infected by an attack toolkit called "Asprox," which exploits discovered flaws in a vulnerable site's programming to add hidden attack code. The attack code in turn searches for flaws on a browser's PC, and if any such holes are found it will download malware onto the computer.

What do I do if I suspect someone is controlling my PC? When my IP address has been changed without my knowledge? My boot-up process is getting harder unless I unplug the Ethernet cable and the CPU is at 100 per cent every time I open any program. There is also a new connection to the Internet that is between my connection and the net I know was not there a month ago. When I try to register my e-mail address the programs say it's invalid and does not match whatever it has to compare it to.-- Teresa Hurst.

When determining the risk to a system and the data stored on it, insider threats are generally regarded as lower risk. Despite the complete access (high risk) that insiders generally have, most of the time insiders are trusted agents (very low risk) on the network. When it breaks down, it can break down in a catastrophic manner, especially if there is money at stake.

With recent reporting showing the ineffectiveness of breach disclosure laws on the rate and scope of data losses, what sort of teeth will HIPAA and similar laws have when electronic health records are compromised in similar numbers and scope.

With identity theft on the rise and personal information at a premium, it's never been more important to be cautious about what you reveal online.