Latest Blog Posts


My Bid for the ISC2 Board of Directors Ballot

August 29, 2011 Added by:Wim Remes

I want to work with ISC2 leadership and membership to review the current status of the CISSP certification, how it is perceived by different audiences, and improve the exam process. With over 79,000 certification holders, it could be concluded that the certification is doing well...

Comments  (4)


Q2 DDoS Attacks: Some Facts and Figures

August 29, 2011 Added by:Headlines

"Cybercriminals... are increasingly using DDoS attacks as a diversionary tactic when launching more sophisticated attacks such as those on online banking systems. Complex attacks of this nature are particularly damaging in that they can cause significant losses for the financial institutions..."

Comments  (0)


The Benefits of Investigating Employee Complaints

August 29, 2011 Added by:Thomas Fox

Encouraging internal reporting helps you detect misconduct in its earlier stages. The sooner you investigate, the sooner you put an end to the misconduct reported. For fraud cases, this is particularly important, as stopping fraud sooner results in less money lost...

Comments  (1)


Researchers Find LinkedIn Spam Downloads Trojan

August 29, 2011 Added by:Headlines

"These password-stealing Trojans are programmed to insert themselves into the browser stack and can intercept login pages even before they are encrypted by HTTPS... code snippets ask for additional security questions or special passwords, information the password thieves want..."

Comments  (1)


Federal OMB Directs Agencies to Expand CIO Powers

August 29, 2011 Added by:Bill Gerneglia

This expansion of the role of the CIO at the federal level is seen as essential by outgoing Federal CIO Kundra in order to drive desired cost savings and ROI through specific programs like the data center consolidation program as well as the migration of applications to the cloud...

Comments  (0)


Google Settles with DOJ for $500 Million Over Drug Ads

August 29, 2011 Added by:Headlines

“This investigation is about the patently unsafe, unlawful, importation of prescription drugs by Canadian on-line pharmacies, with Google’s knowledge and assistance, into the United States, directly to U.S. consumers,” said U.S. Attorney Neronha...

Comments  (0)


Red Hat 5 STIG: Kernel Modules

August 29, 2011 Added by:Jamie Adams

The new draft STIG requires entries in a configuration file to prevent the kernel from loading modules – even if the modules aren't installed on the system. Nonetheless, I have compiled a list of the required settings which must be set in your modprobe.conf configuration file...

Comments  (0)


Morto Computer Worm Spreading via RDP

August 29, 2011 Added by:Headlines

"We don't see that many internet worms these days. It's mostly just bots and trojans. But we just found a new internet worm, and it's spreading in the wild... It uses a new spreading vector that we haven't seen before: RDP," said F-Secure...

Comments  (0)


Mitigating the Apache Range Header DoS Vulnerability

August 28, 2011 Added by:Mark Baldwin

A new Apache DoS vulnerability was reported by security researcher Kingcope on the Full Disclosure mailing list that affects most default installations of Apache 1.3/2.x. Fortunately, there are some configuration settings that can be adjusted to mitigate this vulnerability...

Comments  (1)


The Urban Legend of Multipass Hard Disk Overwrite

August 28, 2011 Added by:Brian Smithson

Multipass disk overwrite and the “DoD 5220-22-M standard 3-pass wipe” are, at best, urban legends. At worst, they are a waste of time. A single pass overwrite with any arbitrary value (randomly chosen or not) is sufficient to render the original HDD data effectively irretrievable...

Comments  (6)


Software Security Assurance - Getting the Formula Right

August 27, 2011 Added by:Rafal Los

Security professionals need to ensure that we're doing what's right for the developers who will be building more secure software, rather than us security professionals who are adept at bolting on security bits. That's the big revelation here, but of course, only if you believe me...

Comments  (0)


Social Media During a Crisis

August 26, 2011 Added by:Joel Harding

Without electricity most of us are going to be hosed, we won't have access to social media to communicate with family and friends. We won't be able to check the latest news and information from the government from websites and once everybody has moved to the cell phone networks, they'll crash...

Comments  (1)


Tips to Beat Back-to-School Identity Theft

August 26, 2011 Added by:Kelly Colgan

September—that whirlwind season of back-to-school registration, dorm move-ins, and sports sign-ups—ushers in a sleigh-full of identity theft opportunities. It’s not just invincible college freshmen who are at risk. Parents can expose kids to fraud without realizing it...

Comments  (3)


Insider Identity Theft is Still a Problem

August 26, 2011 Added by:Robert Siciliano

Even today, the HRdirector may have a new boyfriend who happens to have a drug problem, and who needs her to steal your identity so that he can get a fix. The fundamental issue of identity theft hasn’t changed, and the people doing it are the same. Frequently, they are those on the inside...

Comments  (0)


From China with Love: The Chairman Meow Collection

August 26, 2011 Added by:Infosec Island Admin

China has been working us over for a long time, and with each day’s passing we have been steadily more compromised by the 7th directorate and their proxy hacking groups. This is not to say that others aren’t doing the same thing as well, China just happens to be the more active...

Comments  (1)


Zeus Trojan Gains Self-Propagating Ability via Ramnit

August 26, 2011 Added by:Headlines

“Unlike the past, when financial institutions had to defend against a limited number of malware platforms, attacks can now come from virtually any malicious software program - old or new. The malware distribution channel for fraudsters has increased in scale significantly..."

Comments  (0)

« First < Previous | 290 - 291 - 292 - 293 - 294 | Next > Last »