While the chances are extremely low that a boot.efi file could become corrupt on a boot disk or partition protected by PGP Whole Disk Encryption, it is possible. If this occurs, it could prevent your system from booting. Prepare for this unlikely event by creating a recovery CD before you encrypt a boot disk or partition using PGP Whole Disk Encryption on a Macintosh Snow Leopard system.

This recovery disk is only available for usage on Macintosh OSX 10.5.8 (Leopard) and 10.6 (Snow Leopard) systems with PGP Desktop 10. Download the image for disks encrypted with PGP Desktop 10 ONLY.

Visit this Knowledge Base article for more information.

It's been more than a month since my last posting and it's been surprisingly quiet on the cybercrime front since the Albert Gonzalez plea deal was announced. There have been a few new stories like this one in Network World summarizing how organized crime, mostly Russian, is taking over the global cybercrime industry. Followers of this blog will find nothing new in these stories other than the fact that nearly all major news outlets now seem to view cybercrime as a 'beat' requiring regular reportage.

There were, however, two smaller developments of interest. The first was the discovery that a Russian syndicate had offered a forty three cent "bounty" for every infected Macintosh a user could deliver. It's an interesting case on two fronts. First, it points out...

Brian Tokuyoshi - Product Marketing Manager

The PCI Data Security Standard brought the issue of data encryption to light for many organizations. It established a baseline for security practices that highlighted some of the things that best-of-class security organizations already knew, such as specifying the types of data that must be protected and how to avoid risky practices that could expose such information to unauthorized access. It was necessary because the card processing industry is extensive and there needed to be guidelines to bring all the participating companies up to spec.

Yet it still appears to be clear that there are lingering misunderstandings about what it sought to achieve. From the viewpoint of the industry, it is easier to understand its purpose, for it gives the credit card industry better assurances to its customers that all the companies handling personal information have met a minimum set of security standards. From the...

Phil Dunkelberger - President & CEO

With news of data breaches becoming a regular event and increasing in frequency, they hardly count as "news" any longer. In fact, breach disclosures have become such a regular part of our daily routine that it's getting harder to see the "forest for the trees." As nearly all states now have breach disclosure laws, we're now living in an era where fewer breaches go unreported, even if some of them get reported late. The question now is not whether data is at risk, but what new threats are emerging and how do we best address them. I'm pleased to announce that PGP Corporation has partnered with the Open Security Foundation...