Blog Posts Tagged with "End Users"
Protection Without Detection
January 14, 2013 Added by:Simon Moffatt
Often as consultants, technologists and engineers, we sometimes fail to see things through the eyes of the normal subscriber and end user. When the majority of us buy a car we are concerned about mpg, reliability, safety and performance. We are not generally wanting to speak directly with the mechanic, designer or component builder about the injection system, the carbon mix of the break pads or ...
Comments (2)
Paying Lip Service (Mostly) to User Education
October 24, 2012 Added by:Fergal Glynn
The connection between improved security and user education is so well-established as to be almost axiomatic. Better technology, coding practices and testing can only accomplish so much. So what’s being done about the dearth of solid user education?
Comments (1)
The OTHER Problem with Passwords
August 29, 2012 Added by:Wendy Nather
Organizations are motivated to prioritize ease of use over security if they feel their target audience won't be able to use advanced features without support. The result is that the password reset process to an address of record is the easiest way to get into an account. And of course attackers know this too...
Comments (1)
Why is a Password Manager Not Yet a Hot Selling App?
August 13, 2012 Added by:Gurudatt Shenoy
What is the solution to preventing security Armageddon if passwords are not going away soon and people are going to use the same password for all their accounts? I did find a solution for this couple of years back. It is called a password generator and will generate a unique password for storage and management...
Comments (5)
The Bad Guys Know You’re an Olympics Addict
August 08, 2012 Added by:Kelly Colgan
The emerging theme from these Summer Games: There’s a general lack of awareness among consumers and end users about possible threats when they’re online. Even with corporate security professionals on high alert, it is ultimately end users and consumers who will make the choice that infects the system...
Comments (0)
NIST: Guide to Rating Software Vulnerabilities from Misuse
July 29, 2012 Added by:Headlines
A new guide from the National Institute of Standards and Technology (NIST) describes a "scoring system" that computer security managers can use to assess the severity of security risks arising from software features that are designed under an assumption that users are operating these features as intended...
Comments (0)
Password Security: The Main Vein
July 02, 2012 Added by:Ahmed Saleh
Your passwords should be treated as "high sensitive information", and you are responsible for taking the appropriate steps to select and secure this information. Information system users should be aware of the characteristics of weak and strong passwords in order to ensure adequate protection of their information...
Comments (1)
Security and Privacy for Microsoft Office 2010 Users
June 27, 2012 Added by:Ben Rothke
Encryption, privacy, data protection, and macro security are but a few of the vital capabilities for anyone using Microsoft Office - or any office suite for that matter. Author Mitch Tulloch shows how to take control of the Microsoft Office 2010 experience and use the many security and privacy features...
Comments (0)
OTA Introduces Online Trust Index Measuring Website Security
June 07, 2012 Added by:Headlines
"OTA's work to recognize best practices for sites underscores the importance of focusing on security and privacy holistically. This year's honor roll recipients have demonstrated exceptional leadership and commitment towards consumer protection and to enhance the vitality of the internet"...
Comments (0)
Security's Fundamental Truth and Problem
April 03, 2012 Added by:Robb Reck
It’s very nature makes security difficult for people to readily accept. Security really is hard. It is inconvenient. It takes a 10 minute process and turns it into 11, 15, 30 or 60 minutes. Why wouldn’t our people give pause when security comes with these kinds of burdens?
Comments (0)
Applications Need to Respect User Rights From the Start
March 28, 2012 Added by:Electronic Frontier Foundation
By installing and authorizing an app, users don’t know how much information they are handing over. Without details about policies and practices, how confident can they be in the security of that data against the threat of subpoenas, intrusions, or rogue employees?
Comments (0)
It's not Illegal if You Consent: Malware's Dirty Little Tricks
March 08, 2012 Added by:Rafal Los
Bad guys often rely on the end-user's lack of awareness, employing some dirty tricks like creating a convincing web page that looks just like your antivirus software, or something equally dastardly. But there's another trick that makes me crazy: End User License Agreements...
Comments (0)
A Better Path for Applications: Respecting Users
February 20, 2012 Added by:Electronic Frontier Foundation
Even with industry standard security practices in place, data is still vulnerable to a breach or a subpoena. Companies collecting personal data have an obligation to keep as little personally identifiable data as necessary to provide their services...
Comments (0)
The Great Infosec Cop-Out?
October 17, 2011 Added by:Javvad Malik
Often, security people find ways to pass the blame onto our end users. In some cases this is justified; but not all the time. And because of this, I feel it’s come to be one of the biggest cop-outs in the field of information security...
Comments (0)
Top Ten Dangerous Internet User Behaviors
July 26, 2011 Added by:Headlines
Call it laziness, or perhaps an unjustified feeling of immunity - the "that will never happen to me" syndrome. Ether way, all the efforts of security experts and vendors are regularly being undone by the risky actions of end-users, and the cyber crooks are capitalizing on this fact...
Comments (0)
Solving The End User Problem
July 19, 2011 Added by:Kevin McAleavey
One of the more useful tools for Windows clients was a product called "Steady State." It allowed a system to be "snapshotted" and in the event of malware intrusion, a reboot would restore the client to its previous snapshot. But like most good ideas, Microsoft discontinued it...
Comments (3)
- The Danger of Mixing Cyber Espionage with Cyber Warfare
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform