Market for Software Vulnerabilities?

Despite unethical consequences, some people think that market mechanism for software vulnerability disclosure works. For sure, Immunity Inc. beleives so. Is it because this mechanism improves overall security of the public or because they make tons of money from selling the vulnerability information? Joining its club might cost you as much as $100,000. Read more on this subject.

Bank of America lost tape containing customer information

Bank of America has lost computer tapes containing financial information on more than one million federal employees. This raised concerns of possibly exposure of data to identity theft. Chairwoman of the Senate Homeland Security and Governmental Affairs Committee Susan Collins is now seeking an explanation of how the bank will protect the affected federal employees. Read more.

Security Guideline from NIST

After receiving 'D+' for information security from FISA-mandated survey, federal agencies now have a guideline which is designed by NIST to improve their security control. NIST's guideline spans 17 key security areas to ensure that federal agencies have certain security controls, policies and procedures in place, which are required by FISA. Read more.