Comerica refused to reimburse Experi-Metal. So the company sued the bank to recover their funds, alleging that the bank does not have sufficient online security and anti-fraud measures.

Comerica responded by filing a request for a summary judgement to dismiss the lawsuit. A judge has dismissed the request, and the course is now going to court.

Comerica refused to reimburse Experi-Metal. So the company sued the bank to recover their funds, alleging that the bank does not have sufficient online security and anti-fraud measures.

Comerica responded by filing a request for a summary judgement to dismiss the lawsuit. A judge has dismissed the request, and the course is now going to court.

Apparently the systems management firmware has been compromised in the manufacturing supply chain, and has been infected with malicious software. Dell is calling customers to warn them of the malware infections, and giving them instructions on how to scan the flash memory to detect and remove the spyware.

It’s another example in the growing set of supply chain vulnerabilities that are starting to emerge in the IT industry. Vendors of IT infrastructure must realize that attackers are eager to infect their products, and are even doing so inside the supply chain itself.

This is happening under the auspices of the European Investigation order (EIO).

Civil liberties organizations are very concerned that UK citizen’s personal details could be shared with foreign police for such mundane offenses as not paying for a meal at a restaurant.

Conservative Member of Parliament Rob Halfon claims that the UK government is not doing enough to investigate privacy invasions by Internet companies. He warns that if government does not take more action to investigate Internet companies that are accused of privacy violations, the UK risks having a “privatized version of Big Brother”.

His comments come in the wake of concerns about Google’s StreetMap project that “inadvertently” mapped out the wifi spots of thousands of people.

Dan Raywood of SC Magazine interviewed me about privacy issues and data protection today here in London. You can read the full article here.

The UK Ministry of Defense has admitted to losing 340 laptops over the last two years, and less than half of them were encrypted. A further 215 USB memory sticks were lost, and many were not encrypted either. When you add up lost mobile phones, CDs, PDAs as well, it turns out that only 20% of these were encrypted.

I spent much of the day being interviewed by security and business press. There is considerable interest in how the Information Commissioner’s Office (ICO) will deal with government agencies that have lax security and data protection practices. For corporations, the ICO can now fine up to 500,00 pounds, but it’s unclear how government bureaus will be disciplined.

A new version of the Zeus trojan has been detected that tries to steal Verified by Visa and Mastercard SecureCode passwords, allowing criminals to use corporate payment credit cards.

When users log into their online banking websites from infected computers, the new Zeus trojan will display a screen telling the user that they need to enroll their corporate credit card into the Verified by Visa security scheme. In reality, the criminals are stealing your data and can then use that to use your corporate credit card online illegally.