Security Training
Social Engineering: How Dangerous is Your Lunch Break?
January 15, 2015 Added by:Tripwire Inc
If an attacker (or anyone else) wants to know what’s going on in an organization, all they need to do is go to lunch.
Comments (0)
Fear Hackers? First Invest in an IT Security Culture Change
January 14, 2015 Added by:Kevin L. Jackson
With all the news these days about cyberterrorism and hacking the cloud may seem like the last place you would want to put your precious information.
Comments (1)
Security Analytics – Finally Emerging For Real?
January 13, 2015 Added by:Anton Chuvakin
Security analytics – a topic as exciting and as fuzzy as ever!
Comments (1)
Operational Security - Home Rules
January 12, 2015 Added by:Neohapsis
What we tell those we advise in business also applies to friends and family; the time you spend preparing now may save you countless hours of worry and expense down the road.
Comments (3)
Young IT Professionals, Cybercrime, Script Kiddies & CyberWarriors, OH MY!
January 12, 2015 Added by:Brent Huston
Recently I came across a couple of articles that both centered on the potential roles that young people entering into the IT Security field may face.
Comments (1)
Should Companies Strike Back at Hackers?
January 08, 2015 Added by:Tripwire Inc
The question of whether it makes sense to attack your cyber attackers isn’t new—this has been a debate in the infosec community for quite a while. In my opinion, in most cases the answer is “No, companies shouldn’t attack back.”
Comments (5)
Ex-Employees: All the Best, But Can We Have Our Personal Emails Back, Please?
January 07, 2015 Added by:Patrick Oliver Graf
It doesn’t matter if employees leave a company on unpleasant terms or quite amicably – it is absolutely essential that enterprises have solid, well-defined termination processes in place, and that they’re followed to the letter.
Comments (3)
Does Your Valuable Data Belong to Hackers?
January 05, 2015 Added by:Thu Pham
Every organization, regardless of size, is comprised of a variety of sensitive data - from HR and payroll handling medical, financial and personally identifiable employee data to your precious intellectual property. And each of these data types can be sold for a price on the black market, making them valuable to attackers financially as well as for blackmail purposes.
Comments (5)
Moving from Alert-Driven to Intelligence-Driven Security
January 05, 2015 Added by:Paul Lipman
The emergence of smart, integrated, cloud-based security services will enable a transformation from an alert-centric to an intelligence-centric approach to security. This will vastly enhance the Chief Information Security Officer's (CISO’s) visibility and ultimately deliver substantial improvements in the robustness of the overall security posture.
Comments (1)
JPMorgan Hackers Compromised Server Unprotected by Two-factor Authentication
December 24, 2014 Added by:Brian Prince
A server that lacked two-factor authentication was the gateway hackers used to breach JPMorgan Chase this year, according to a report.
Comments (3)
Improve Information Security and Privacy Now!
December 22, 2014 Added by:Rebecca Herold
Too many businesses have poor information security controls in place (e.g,. demonstrably Sony, Staples, and a seemingly infinite number of other companies) and are basically giving their intellectual property, and the personal information they are responsible for, away.
Comments (3)
Should I Use “SIEM X” or “MSSP Y”?
December 18, 2014 Added by:Anton Chuvakin
Lately I’ve been surprised by some organizational decision-making as they think about their sourcing choices for security monitoring.
Comments (1)
5 Effective Ways to Raise Privacy Awareness
December 18, 2014 Added by:Rebecca Herold
Here are five of the ways that I’ve found to be very effective for raising privacy awareness throughout the years.
Comments (0)
What Network Security Lessons Can We Learn from the Sony Attack?
December 17, 2014 Added by:Patrick Oliver Graf
Hollywood is a place that can be driven mad by star-studded gossip, where the talk of the town is rarely private and where people are accustomed to their secrets not staying secret for very long. Yet, this state of play hasn’t made it any easier for the victims of last month's cyberattack against Sony, carried out by shadowy assailants calling themselves the Guardians of Peace.
Comments (15)
Debunking The Biggest Cyber Security Myths for Businesses
December 16, 2014 Added by:Tripwire Inc
A glimpse at the world of cyber security can be a frightening one. Stories revolving around security breaches hitting major companies, like Target and Home Depot, can fill any business executive with trepidation.
Comments (6)
How To Exit an MSSP Relationship?
December 15, 2014 Added by:Anton Chuvakin
Let me touch a painful question: when to leave your managed security services provider?
Comments (0)
- Suits and Spooks London: Register Now for Early Bird Rate
- Angler Exploit Kit Uses Domain Shadowing to Evade Detection
- Is Compliance Bad for Security?
- Malware Can Hide in a LOT of Places
- Weaknesses in Air Traffic Control Systems are a Serious Issue for FAA
- PlugX Malware Adopts New Tactic in India Attack Campaign
- DARPA’S Memex Project Shines Light on the Dark Web
- Killed by AI Much? A Rise of Non-deterministic Security!
- The Malicious Insider
- PCI DSS 3.0 Updates and Ramifications for Network and Application Security