Could criminals shop for free online?

Researchers say they were able to "buy" items for free or at a self-selected discount through holes in payment integration systems on Web sites, before they were fixed.

Read full story 

PayPal security chief on Epsilon breach and more (Q&A)

CIO Michael Barrett talks with CNET about the need to choose data outsourcers wisely in light of the Epsilon breach, why PayPal isn't re-issuing SecurIDs after the RSA breach, and other matters.

Read full story 

In Epsilon breach, e-mail insecurity (roundup)

The breach exposed names and e-mail addresses of customers of many major U.S. companies and could lead to a rise in targeted phishing attacks.

Read full story 

The breach felt 'round the Web (week in review)

Data breach affecting broad swath of consumers turns little-known Epsilon into somewhat of a household name. Also, big moves in online video and the U.S. government is on tech's case.

Read full story 

New fake antivirus accepts SMS payments

Rogue programs trick victim into paying before installing fake security software, offering various payment methods including by text message.

Read full story