Malware Undetected

The recent massive attacks on web sites, dubbed Beladen and Gumblar, show that one of the primary weaknesses (if not the primary weakness) of information systems is the endpoint.  Attackers have been using malware to steal the FTP credentials of web site maintainers and uploading...

PCI 1.2 and Anti-virus Software Requirements

Last month the PCI Security Standards Council released version 1.2 of the PCI DSS. There were a number of updates and changes to the standard, most of which I have already written about. I want to revisit Requirement 5 of the PCI DSS which relates to the use of anti-virus software on...