In November 2005, Jason Spaltro, executive director of information security at US-based Sony Pictures Entertainment, sat down in a conference room with an auditor who had just completed a review of his security practices. The auditor told Spaltro that Sony had several security weaknesses, including insufficiently strong access controls, which is a key Sarbanes-Oxley requirement.
- Week in security: Authorities zero in on spyware, Dridex authors
- Chinese hackers dominating online attacks, holiday-shopping fraud
- Secure-printing innovator Datasec targets rapid overseas expansion after scoring HP Workpath coup
- Security is everyone’s business
- US charges Dridex banking trojan operators, offers $5m bounty