Network->General
Low-Cost Ways to Make Your Network More Secure
November 26, 2012 Added by:Marc Quibell
There are improvements you can introduce that are seamless, low-cost , don't present a new burden to your users, and/or are easy to implement. So in between your major IT Security projects that may or may not happen, why not improve you security posture and lower your overall risks?
Comments (2)
Windows 8 Security in Action: Part 2
November 22, 2012 Added by:Dan Dieterle
I have noticed some changes in the way Microsoft handles their different service account passwords over the past few weeks. It first started a while back when using Microsoft Live mail. One day when I typed in my legitimate password to my e-mail account, I received this error message...
Comments (0)
LTE networks vulnerable to jamming, a question of national security
November 18, 2012 Added by:Pierluigi Paganini
"These comments describe extremely effective attacks can be realized, using fairly low complexity. It would be in the interest of public safety to take measures to reduce the vulnerability of Public Safety LTE, and lower the likelihood of an effective jamming attack..."
Comments (0)
Never Attribute to Malice, But Always Verify
November 15, 2012 Added by:Fergal Glynn
FX did find hardcoded local bootloader passwords. These would require physical access and are the types of hardcoded passwords commonly found in networking gear and appliances. Yes a vulnerability but not likely nefarious...
Comments (0)
Reverse Deception: Organized Cyber Threat Counter-Exploitation
November 14, 2012 Added by:Ben Rothke
Every organization of size and scope is a target, and many of the world’s largest firms and governments have been victims. In Reverse Deception: Organized Cyber Threat Counter-Exploitation, Dr. Max Kilger and his co-authors provide an effective counterintelligence approach in which to deal with APT...
Comments (0)
Why Least Privilege Management is Essential to the new NIST Risk Assessment Guidelines
November 13, 2012 Added by:Paul Kenyon
NIST guidelines that were updated last mont, make multiple references to privileged users and/or administrators, who are deemed both major threat sources and enablers of risky events. When it comes to these standards, taking a least privilege approach to security is a major step towards protecting organizations...
Comments (1)
BYOD savings may be lost by security and admin costs
November 12, 2012 Added by:Rainer Enders
Companies need to mobilize, that is without question -- but for too long BYOD has become nearly synonymous with this effort. In reality, BYOD is just one of the ways enterprises can mobilize, and in many cases, it is not the most secure, or necessarily the most cost-efficient way to do so...
Comments (0)
The secrets of incorporating security into functional testing
November 11, 2012 Added by:Rafal Los
Whether you agree with that or not, my proposal is that with the right tools it can be done. More than just the right tools, with tools that appropriately match the use-case of the functional tester... so I've started collecting a list of things functional testers would require to add in the security...
Comments (0)
Six Sneaky Ways to Bring Down Your Company
November 08, 2012 Added by:Pete Herzog
This article will give you some ideas on how you can quickly put yourself out of a job using the Internet. If you're careful and a little lucky, you won't end up in jail either! At the very least, this article shows how doing things that are good for an office may not necessarily be good for the security of your company...
Comments (0)
Offensive Defense: A Really Bad Idea Proposed By Charlatans And Zealots
November 08, 2012 Added by:Scot Terban
Everyone just stop. All you offering the services or touting the ideas should just sit back down and shut up. Everyone cries now that the government is encroaching on their rights with regard to privacy and you all want to just push that bar even further out with offensive defense actions? Morons…
Comments (0)
Post Exploitation Command Lists: Request to Edit
November 07, 2012 Added by:Rob Fuller
If you would like to contribute, please shoot me a tweet, a email, a... anything and I will gladly add you to the permissions to edit. Honestly it just became so overwhelming that every time I thought to add something I would cringe away because I know I'd spend most of time fixing them...
Comments (0)
F-Secure Mobile threat report Q3/2012, cyber threats in the ether
November 06, 2012 Added by:Pierluigi Paganini
The rapid diffusion of Android devices has had the effect of increasing the number of malware developed for the OS. During the third quarter 51,447 unique samples were detected. Google has tried to secure it’s OS with the introduction of an additional security layer named Bouncer...
Comments (0)
Attack by Team GhostShell Against Russian Government
November 05, 2012 Added by:Pierluigi Paganini
Hacktivism represents a serious problem for governments and intelligence agencies. The hack of IT infrastructure and the exposure of confidential information is a serious menace. In the past Anonymous has hit several governments and law enforcement agencies in the UK, US, Japan, and India...
Comments (0)
Windows 8 Security in Action: Part 1
November 04, 2012 Added by:Dan Dieterle
Is Windows 8 the next operating system for your enterprise? In this article, we will take a quick look at Microsoft’s new OS – Windows 8. We will see some of the new security features that make it more secure than its predecessor Windows 7...
Comments (0)
The secret of incorporating security into functional testing
November 04, 2012 Added by:Rafal Los
Conversation today was around tools and use-cases for the tools in the stream of creating more secure software. My experience in this industry over the last several years has taught me that you have to fashion the tools to the use-case. Even if you give me a fantastic hammer I still won't be a great carpenter...
Comments (0)
Russia deploys a massive surveillance network system
November 03, 2012 Added by:Pierluigi Paganini
DPI is most advanced and intrusive category of inspection tools, it is able to analyze every packet in traffic filtering particular services or contents. Remeber that DPI systems have been adopted by various regimes such Iran and also China used the technology to implement its Great Firewall project...
Comments (0)
- Identity & Access Management: Give Me a REST
- Over-Sharing Riskier than Government Snooping
- 20 Critical Security Controls: Control 13 – Boundary Defense
- Redefining Social Networking
- Creating Your Own Privacy & ROI
- Security Intelligence for the Enterprise - Part 1
- Why are Cybercrimes NOT Always White-collar Crimes?
- From the SMB to Security Guru: Five Ways IT Pros Can Manage Security on a Budget
- Balancing Act Between Privacy and Security
- The NSA’s Word Games Explained: How the Government Deceived Congress in the Debate over Surveillance Powers