London (UK), 6th June 2011 : Imperva, the leader in data security, warns Boy-in-the-Browser (BITB) attacks are gaining force as they continue to evade traditional anti-malware software.

Tomer Bitton, from the Imperva Application Defense Center, explains, “Many are familiar with Man-in-the-Browser (MitB) attacks, but most are unaware of the lesser known Boy-in-the-Browser (BitB). Not as sophisticated as MitB, BitB malware has evolved from traditional key loggers and browser session records. The recent spate of BitB trojans that targeted Chilean banks, and their customers, demonstrates that this type of attack is gaining force and continues to evade traditional anti-malware software.”

 LinkedIn has more than 90 million members, many of which are business users. 50% of them are located in the US. LinkedIn’s membership includes executives from every company listed on the 2010 Fortune 500!

 Mickey Boodaei, Trusteer's CEO comments,”This makes LinkedIn an ideal platform for cyber criminals to attack enterprise networks. Through LinkedIn, cyber criminals can build a profile of targeted enterprises. They can locate key people within the enterprise and target them with spam emails that would eventually place malware on their computer or steal their log-in credentials to email and other sensitive systems. Sounds unlikely? Well, think again”

The flurry of news surrounding mobile wallets and how NFC (near field communications) will soon allow us all to ditch our credit and debit cards in favour of a payment-enabled mobile phone ignores the security issue that is staring us in the face, says Phil Lieberman, the CEO of Lieberman Software.

With O2 announcing plans to launch an m-wallet offering in the second half of this year (http://bit.ly/kawtrh), Lieberman - whose company offers privileged identity management solutions - agrees with Computerworld's Ira Winkler that the m-wallet is a disaster waiting to happen.

31/5/2011 - Reports that Lockheed Martin is blaming an apparently successful hack of its IT systems on an earlier breach of RSA Security's system have been dismissed as "smoke and mirrors" by two-factor authentication specialist SecurEnvoy.

 According to Steve Watts, SecurEnvoy's co-founder, whilst weekend newswires were citing Lockheed Martin, the US defence contractor, as laying the blame for its data breach at RSA Security's door, it should instead have been looking at its own IT security review procedures.