Is the information-technology function at your company focusing on the same priorities as the business? Based on a recent survey by The Corporate Executive Board's IT Leadership Exchange, the overwhelming answer to this question is—No.

Through a survey of 150 IT departments at mid-sized companies, the IT Leadership Exchange found that 90 percent of CIOs expect that the IT department will be misaligned with business needs in an economic recovery, and more than half feel that this will threaten the business's long-term competitiveness.

China is the number-one source of email-borne targeted attacks of the sort Google and at least 30 other companies are believed to have suffered, according to the latest monthly MessageLabs Intelligence report from Symantec Hosted Services. The firm analyzed the email headers of suspect messages intercepted last month to identify the true IP address of the senders, and found that around 28 percent of targeted attacks originated in China.

More than half of IT and security professionals worldwide believe their company’s laptops and other mobile devices pose security risks to their organizations, and only half of them have CEOs who are strong advocates and supporters of data security efforts, according to new report issued today.

[Rich opinion: Information Technology (IT) is nothing but "chop wood and carry water".  Technology leaders must be so much more than technologists with business titles. They must be strong business leaders to successfully participate in risk management. In the end, it's all about money, politics, and time value. Are you part of the accountability or part of the risk?]

California intends to create a state-of-the-art information security operations center to monitor cyber-threats and protect state and local government networks from attack. The center also would support local government networks that need assistance.

Two computer programmers designed codes to alter thousands of trade blotters and records for swindler Bernard Madoff and took hush money to help keep the massive fraud going, U.S. authorities said. The FBI arrested Jerome O'Hara, 46, and George Perez, 43, at their homes on Friday morning.

China is significantly boosting its capabilities in cyberspace as a way to gather intelligence and, in the event of war, hit the U.S. government in a weak spot, U.S. officials and experts say.

Outgunned and outspent in terms of traditional military hardware, China apparently hopes that by concentrating on holes in the U.S. security architecture, its communications and spy satellites and its vast computer networks, it will collect intelligence that could help it counter the imbalance.

BP (Beyond Petroleum laf!) has been fined a record $87m (£53m) for failing to correct safety hazards at its Texas City refinery in the U.S. The $87m fine is the largest in OSHA’s history. An explosion in 2005 at the Texas plant killed 15 people and injured 180 more. The safety violations found "could lead to another catastrophe", US Labor Secretary Hilda Solis said.

The Homeland Security Department should establish a national standard to encourage companies and individuals to report data breaches to federal authorities, helping them gauge the intensity of cyberattacks and investigate cybercrime, security professionals said on October 28. Federal agencies are required to report data breaches to the U.S. Computer Emergency Readiness Team, which is part of DHS. Reporting requirements for companies, however, vary by state.

The growing ineffectiveness of a popular and widely requested antibiotic has Chattanooga doctors emphasizing the importance of responsible antibiotic use. Chattanooga physicians say between one-half and two-thirds of the most-common bacteria — streptococcus pneumoniae — is showing resistance to azithromycin, the generic name for the antibiotic Zithromax. The antibiotic often is dispensed in a packet called the “Z-pak.”

The Cybersecurity Act of 2009 introduced in the Senate would allow the President to shut down private Internet networks. The legislation also calls for the government to have the authority to demand security data from private networks without regard to any provision of law, regulation, rule, or policy restricting such access.

Security experts have made a breakthrough in their five-month battle against the Conficker worm, with the discovery that the malware leaves a fingerprint on infected machines which is easy to detect using a variety of off-the-shelf network scanners. The finding means that, for the first time, administrators around the world have easy-to-use tools to positively identify machines on their networks that are contaminated by the worm.

Before I even get started with this post, I'm going to editorialize with a sub-title:
WTF's Going on with Cheyenne Mountain?
There is just somthing about this news that strikes me as disturbing.

North American Aerospace Defense Command (NORAD), the high-tech facility responsible for monitoring the skies over North America, faces continuing security problems at its new location inside an office building on an air base in Colorado Springs.

Users of Linux-based routers are being warned of a new worm in the wild which attempts to take control and add their device to a growing botnet. As reported over on vnunet.com on March 25, the ‘psyb0t’ worm was first spotted by security research group DroneBL recently, but may have been spreading since the start of the year.

Designed to brute-force the password of routers running Linux compiled for the RISC-based MIPS chip, including ones running custom OpenWRT and DD-WRT firmwares, the worm takes control of poorly secured devices and joins a botnet which the DroneBL group estimates may have grown to as large as 100,000 compromised devices so far.

Government investigators testing the nation’s food tracing system were able to follow only five out of 40 foods all the way through the supply chain, according to a report released. 

An investigation by the Health and Human Services inspector general’s office found that the records many companies keep are not detailed enough. And one-quarter of the company managers were totally unaware of record keeping requirements. The inspector general recommended that the FDA consider seeking stronger legal powers to improve the tracing of food.

An Energy Department investigation has alleviated fears that a significant amount of plutonium was missing from a national laboratory, but it has also heightened concerns about flaws in the system for controlling the U.S. stockpile of weapons materials. The investigation began in February, shortly after a routine inventory at Los Alamos National Laboratory in New Mexico found a plutonium shortage estimated at 2.2 pounds, setting off a frantic national effort to determine what happened to the material.

With China’s economy cooling down, some of the country’s IT professionals are turning to cybercrime, according to a Beijing-based security expert. Speaking at the CanSecWest security conference last week, the CEO of Knownsec, a Beijing security company, said that while many Chinese workers may be feeling hard times, business is still booming in the country’s cybercrime industry.