Network->General
High-Frequency Stock Trading Networks Vulnerable
January 07, 2011 Added by:Headlines
A former IBM research fellow has identified vulnerabilities in high-frequency stock trading networks that could allow hackers to manipulate trades by inflecting minute latencies that could result in significant aberrations to real-time stock prices, netting millions...
Comments (0)
CyberForensics: Understanding Infosec Investigations
January 06, 2011 Added by:Ben Rothke
The book takes a broad look at cyberforensics with various case studies. Each of the books 10 chapters takes a different approach to the topic, and is meant to be a source guide to the core ideas on cyberforensics...
Comments (0)
USB Attack Vectors Move Beyond Flash Drives
January 05, 2011 Added by:Dan Dieterle
The computer does not see the Teensy device as a USB drive or another accessory, but as a human interface device. With the Teensy programmable keystroke device, we are really looking at a new generation of intelligent malicious hardware that will be limited only by the imagination of the attacker...
Comments (6)
Anonymous Fallacies: To LOIC or Not To LOIC
January 05, 2011 Added by:Scot Terban
What really caught my eye is the section in red, the admonition about “if you get caught” This is the most egregious set of instructions that I have ever seen and will only serve to land those of the “hive mind” in courts across the globe with a fair chance at getting truly buggered...
Comments (3)
DDoS Wars: 4chan Downed Again By Another Attack
January 05, 2011 Added by:Headlines
The message boards of script-kiddie haven 4chan were hit by another distributed denial of service (DDoS) campaign, just one week after suffering significant downtime from a similar attack...
Comments (0)
The Value of a Stolen Corporate Laptop
January 04, 2011 Added by:Bozidar Spirovski
There are a lot of companies who do not take this issue seriously. The mindset of managers still needs to be adjusted to present the issue. Because managers speak the language of money, let's make a simple calculation that shows the impact of how much is your laptop worth...
Comments (2)
Getting Results the Wrong Way
January 03, 2011 Added by:Andy Willingham
Right results are not the measurement of success. How you arrive at the results is more important. It is not all about results. Of course results are important, done the right way. Lots of us in the community have been saying that the industry is broke and that we’re looking for ways to fix it...
Comments (0)
WikiLeaks Lessons for IT Security
January 03, 2011 Added by:Eli Talmor
Obviously Data Loss Prevention policies need to be implemented on endpoint workstations across the Globe: Every document needs to be classified (i.e. encrypted) at generation. The document encrypted should be also “fingerprinted” to prevent distribution in “un-encrypted” form...
Comments (0)
Bank of America Sets Up WikiLeaks Damage Control Team
January 03, 2011 Added by:Headlines
The Bank of America counter-espionage team includes consultants from the Booz Allen Hamilton, and is apparently focusing on details surrounding Bank of America's acquisitions of Merill Lynch and troubled lender Countrywide...
Comments (1)
FBI Has IP Addresses of Anonymous DDoS Attackers
January 03, 2011 Added by:Headlines
What the so-called "leaders" of the Anonymous minions failed to relay to the participants in the DDoS attacks is that the LOIC tool would send their IP addresses along with every packet during the attack. The FBI will use the IP addresses to identify those who participated in the attack...
Comments (0)
Gartner Report: Critical Capabilities for SIEM
January 02, 2011 Added by:Heather Howland
This research will help project managers, who are responsible for selecting a security information and event management (SIEM) solution, evaluate products from 12 of the major vendors in the segment...
Comments (0)
Anonymous Movement is Fueled by Cowardice
January 02, 2011 Added by:Anthony M. Freed
The Anonymous DDoS attacks should be rightfully categorized as just another form of mass censorship driven by the tantrums of politically and philosophically infantile neophytes who lack any substantial moral convictions, and who are easily swayed by the pseudo-rage of a mob mentality...
Comments (3)
Ten Big Information Security Stories from 2010
January 02, 2011 Added by:Headlines
The ensemble does not focus solely on the pop-security issues that made the biggest headlines per se, but is instead a thoughtful examination of some of the stories that will prove to have the biggest impact and long term effects on the information security field as a whole...
Comments (0)
Pentagon Tightens Data Security Protocols
January 02, 2011 Added by:Headlines
At issue is how best to classify material in an effort to prevent further breaches, while also maintaining post-9/11 efforts to increase information sharing efforts between multiple government agencies charged with defending the nation from future terrorist attacks...
Comments (0)
Cyber Criminals Target Home Equity Lines of Credit
January 02, 2011 Added by:Headlines
It is possible that courts could hold banking clients responsible for losses if they deem the bank's security measures were on par with the industry average, even if that average standard is woefully inadequate to secure funds...
Comments (0)
Is Sandboxing the End-All Solution?
January 01, 2011 Added by:Dan Dieterle
When you have millions of lines of code, like you have in an Operating System, you will have bugs. Hackers can use these coding bugs to create exploits. Microsoft and Adobe products have been a favorite target for hackers. But how do you protect software from hackers when there are unknown bugs?
Comments (1)
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox