Search:

Latest Blog Posts

44fa7dab2a22dc03b6a1de4a35b7834a

Big Companies Reporting More Security Intrusions

October 26, 2010 Added by:Bill Gerneglia

The 6th Annual Security Survey of IT Executives and Network Administrators found that among large companies with 5,000 or more U.S. employees, 67 percent reported an intrusion of user machines, office network or servers during the last two years. The largest percentage yet found...

Comments  (0)

69baa1f1851ad2bd24c61868329f76f7

Essential Trust Analysis

October 26, 2010 Added by:Pete Herzog

In operational trust analysis, you learn to use logic and reason to make a trust decision. It is a new practice developed by ISECOM to explore operational trust in Trusted Computing as part of the EU's Open Trusted Computing (OpenTC) project...

Comments  (8)

99edc1997453f90eb5ac1430fd9a7c61

Business Continuity: It's in God's Hands Now

October 26, 2010 Added by:Javvad Malik

Good security practices can help you ensure that you can tie down everything within your control whilst recognizing there are aspects outside of your control which can impact these. Building another site would ensure business functions continue as normal through a disaster scenario...

Comments  (1)

959779642e6e758563e80b5d83150a9f

Why Software Patents Are a Bad Idea

October 26, 2010 Added by:Danny Lieberman

The problem with software patents goes far beyond being an abstract mathematical algorithm or not, since most software is about ways of doing business or implementing consumer electronics, as opposed to innovative computational algorithms...

Comments  (0)

C787d4daae33f0e155e00c614f07b0ee

Using Windows XP Drop My Rights Utility

October 25, 2010 Added by:Robb Reck

Drop My Rights is a free Windows XP utility offered by Microsoft that allows you to be logged into your computer as an administrator while running high risk programs like Internet Explorer, Firefox and Outlook with reduced privileges...

Comments  (2)

E973b16363b3de77b360563237df7e32

Microsoft Patch Disclosure Summary - October 2010

October 25, 2010 Added by:Bozidar Spirovski

Remote Code Execution vulnerabilities, Elevation of Privilege vulnerabilities, Information Disclosure vulnerability, Denial of Service condition, Information Tampering scenario...

Comments  (0)

Fc152e73692bc3c934d248f639d9e963

The Reinvigoration Of Social Engineering

October 25, 2010 Added by:PCI Guru

As I constantly like to remind everyone, security is not perfect. Social engineering is one of the most insidious attack techniques around. Unfortunately, organizations do little to address social engineering and have only made social engineering easier over the years...

Comments  (0)

0f48ebb4a6ca02dbf5141affdbfa6898

Methodologies: Cleaning the Mental Gutters

October 25, 2010 Added by:Bill Wildprett, CISSP, CISA

My challenge and task is to apply this modality of critical thinking to the domains of information security, along with that of the OSSTMM. Like more physical exercise will clean the arterial plaque from your personal system, it’s important to floss your brain and defrag your mind...

Comments  (1)

7e6249b5c7f6b63c28587c820b16edcb

Google Street View and Unencrypted Wi-Fi: Not a Hazard

October 25, 2010 Added by:Robert Gezelter

The effort being focused on Google would be far better spent on educating users about the hazards. Google is caught being an identifiable target. The Street Wise vehicle cruising down the block every few years is not a serious hazard to privacy and security...

Comments  (1)

B64e021126c832bb29ec9fa988155eaf

Chinese Hackers, Russian Cyber Crime and American Apathy

October 25, 2010 Added by:Dan Dieterle

Many American businesses and home users don’t focus on securing their systems, or simply don’t care. You have 2 to 15 guys protecting your network; they have the manpower to task 1,000 hackers to penetrating your system if you have something they want. Who is going to win that battle?

Comments  (7)

6d117b57d55f63febe392e40a478011f

Enterprise Information Security and Social Networks

October 24, 2010 Added by:Anthony M. Freed

As Natalie Petouhoff of Forrester Research noted, social media isn't a choice anymore - it's a business transformation tool. With that said, firms that have not yet embraced social media need to approach it in a cautious manner, rather than blindly drinking it like Kool-Aid...

Comments  (2)

5c9886924588e138cc18290742c2095e

Authentication - Risk and Trust Part Two

October 24, 2010 Added by:Guy Huntington

There are many different identity types interacting with a modern enterprise and identity type gradients. The risk associated with these identity gradients may vary according to the purchase amount, or type of information flowing between the enterprise and the identity type gradient..

Comments  (0)

55e2c9d06a7261846e96b8bb2d4e1fe5

Hashes and the Security Account Manager

October 24, 2010 Added by:bitraptor bitraptor

SAM is far from being perfect, but the real problem lies in the way they store the passwords - it's an old method created by Microsoft prior to the Windows NT family, and they still run the old style LM hash keys so that two concurrent hashes of the passwords are stored...

Comments  (0)

Ebb72d4bfba370aecb29bc7519c9dac2

Anton Chuvakin and Andrew Hay Talk Logs

October 23, 2010 Added by:Anton Chuvakin

LogChat Podcast is back - and now on iTunes as well. Everybody knows that all this world needs is a podcast devoted to logs, logging and log management - as well as SIEM, incident response and other closely related subjects - and now you have it...

Comments  (0)

Dd9902bc56a9d85cdc62c00083ea4871

Security Awareness Training - At Age 5?

October 23, 2010 Added by:Katie Weaver-Johnson

Before you hand over that phone to provide some extra entertainment when you get stuck in line at a restaurant, you may want to make sure all other applications are locked down, you have signed out of your email and other social networking sites...

Comments  (1)

0dc5fdbc98f80f9aaf2b43b8bc795ea8

DoD Primed to Hire IT Security Professionals

October 23, 2010 Added by:Global Knowledge

Depending on the job role, Department of Defense Directive 8570 provides guidance and procedures for the training, certification, and management of all government employees who conduct Information Assurance functions in assigned duty positions...

Comments  (0)


« First < Previous | 326 - 327 - 328 - 329 - 330 | Next > Last »



Popular Topics
Access Control  Anonymous  Application Security  Attacks  Authentication  China  Cloud Computing  Cloud Security  Compliance  Cyber Crime  Cyber Security  Cyber Warfare  Cyberwar  DDoS  Data Loss  Data Loss Prevention  Denial of Service  Employees  Encryption  Enterprise Security  Espionage  Exploits  FBI  Facebook  Government  Hacking  Hacktivist  Headlines  ICS-CERT  Identity Theft  Industrial Control Systems  Information Security  Information Technology  Infosec  Infrastructure  Law Enforcement  Legal  Managed Services  Management  Military  Mobile Devices  National Security  Network Security  PCI DSS  Passwords  Penetration Testing  Policies and Procedures  Policy  Privacy  Regulation  Risk Management  SCADA  Security  Security Awareness  Security Strategies  Social Engineering  Social Media  Stuxnet  Tools  Training  Vulnerabilities  Web Application Security  breach  breaches  fraud  hackers  internet  malware  report  vendors