Latest Posts
The Unisys Ponemon study – Is It Actually Relevant to ICSs
July 22, 2014 Added by:Joe Weiss
It is important to understand the validity of the observations and conclusions as this report is being widely quoted.
Comments (0)
Black Hat Conference Talk on How to Break Tor Cancelled
July 22, 2014 Added by:Eduard Kovacs
Organizers of the Black Hat security conference that's scheduled to take place next month in Las Vegas announced that a presentation detailing how the Tor network's users can be de-anonymized has been cancelled.
Comments (0)
Keeping it Simple - Part 1
July 21, 2014 Added by:PCI Guru
Apparently, I struck a nerve with small business people trying to comply with PCI. In an ideal world, most merchants would be filling out SAQ A, but we do not live in an ideal world. As a result, I have collected some ideas on how merchants can make their lives easier.
Comments (0)
The Five Stages of Vulnerability Management
July 21, 2014 Added by:Tripwire Inc
The key to having a good information security program within your organization is having a good vulnerability management program.
Comments (0)
Cached Domain Credentials in Vista/7 (AKA Why Full Drive Encryption is Important)
July 17, 2014 Added by:Neohapsis
Without full disk encryption (like BitLocker), sensitive system files will always be available to an attacker, and credentials can be compromised.
Comments (0)
Snowden Continues to Expose Allied Cyber Tactics
July 17, 2014 Added by:Dan Dieterle
NSA whistleblower and Putin poster boy Edward Snowden apparently released yet another document, this one exposing UK cyber spying techniques allegedly used by the GCHQ.
Comments (0)
Compliance and Security Seals from a Different Perspective
July 16, 2014 Added by:Rafal Los
Compliance attestations. Quality seals like “Hacker Safe!” All of these things bother most security people I know because to us, these provide very little insight into the security of anything in a tangible way. Or do they?
Comments (0)
Security: Not Just a Checkbox Anymore
July 15, 2014 Added by:Tripwire Inc
There have been many publicized victims of breaches recently. There can often be a lot of conjecture as to what happened, how it happened, and why it happened.
Comments (0)
Hacks of Houston Astros, Butler University Put Network Security on Center Stage
July 14, 2014 Added by:Patrick Oliver Graf
Together, the high-profile hacking of the Houston Astros and Butler University show why it’s important for every organization to think like an enterprise in constructing a network security plan.
Comments (0)
Is BYOD Security Really Concerned with Safety – or Is It About Control?
July 14, 2014 Added by:Eric Byres
As SCADA security professionals we need to pick our security battles carefully. I will be looking deeper into the real goals of any SCADA security policy or technology I am exposed to. Is it really helping make SCADA and ICS safer? Or is it just a way to make control easier? Is it addressing the real risks? Or is it just for show?