Information Security
Enterprise Security: Over Budget, Over Extended, Under Prepared
November 11, 2011 Added by:Rafal Los
When your organization's house is on fire, the pressure's on to put it out immediately rather than worry about long-term sustainability. The best time to formulate a strategy is pre-breach. Unfortunately, this is often the time when you probably won't have the funds... details, details...
Comments (1)
Mikko Hypponen Warns of Adobe Reader Threats
November 11, 2011 Added by:Headlines
F-Secure's Mikko Hypponen urged organizations to reconsider the continued use of Adobe Reader given the tendency for attackers to exploit the application's frequent vulnerabilities. "These attacks are not against PDF - these attacks are against Adobe Reader," said Hypponen...
Comments (0)
Memory Forensics: How to Capture Memory for Analysis
November 10, 2011 Added by:Dan Dieterle
Analysts use memory dumps to analyze malicious software. Once you have the memory dump, you can perform some very interesting analysis on it, like viewing what processes and programs were running on the machine, and what network connections the system had. You can even pull passwords from them...
Comments (2)
Controlling Valuable Data By Using Maps
November 10, 2011 Added by:Brent Huston
As the battle rages, attackers look for every angle they can leverage in order to access your data. Our team has spent countless hours discussing the importance of identifying what ‘valuable data’ means, learning where that data lives, and understanding how it is accessed...
Comments (0)
Top Five Security Settings for Apple iPhones and iPads
November 09, 2011 Added by:Tom Eston
Apple mobile devices are among the most popular gadgets today. In fact, Apple reports that 250 million iOS devices have been sold and 18 million apps downloaded. While the popularity of these devices increases, many don’t understand the basic security features that Apple makes available to them...
Comments (0)
IBM AS400 (I-Series) Key Controls for User Accounts
November 09, 2011 Added by:Kevin Somppi
It is impossible to prove that a platform or program has no bugs; however, if you take the time to reasonably test and find the obvious vulnerabilities, and challenge the access which your user community has been granted, you stand a better chance of not being compromised...
Comments (1)
Trust: A Rare Commodity Online
November 09, 2011 Added by:Robert Siciliano
Dishonesty poses a challenge to banks and retailers in the form of theft. Theft is a big problem on the Internet, and any online business knows that they can’t afford to trust you, regardless of how honest you may be. The FFIEC recently instructed retailers and banks to enhance their security...
Comments (0)
TakeDownCon Discounts for Infosec Island Members
November 09, 2011 Added by:Infosec Island Admin
Sign up for TakeDownCon trainings and enjoy a 15% discount, three complimentary TakeDownCon passes, a 'Test Pass Guarantee', a $300 discount voucher for training at any Hacker Halted, and choice of a free iPad 2, a $500 Tiffany & Co. Gift Card, or four nights hotel accommodations...
Comments (0)
Five Information Security Issues We All Face Today
November 09, 2011 Added by:Bozidar Spirovski
Technology has done a great deal for changing the way we live and do business today. While the benefits are numerous, however, there have been challenges that come with that development. Here’s a look at some of the information security issues we all face...
Comments (0)
NICE Issues Cybersecurity Workforce Framework
November 09, 2011 Added by:Headlines
The framework organizes cybersecurity work into high-level categories ranging from the design, operation and maintenance of cybersecurity systems to incident response, information gathering and analysis. The document is meant to define professional requirements in cybersecurity...
Comments (0)
Spotting an Information Hoarder
November 08, 2011 Added by:Joel Harding
Information is power. Those who control information understand they wield a very powerful tool, they share information with only those they decide need to see that information. One who controls information within an organization can manipulate others, whether consciously or unconsciously...
Comments (0)
INFOPOCALYPSE: You Can Lead Them to the Security Trough...
November 08, 2011 Added by:Scot Terban
We have seen this from the perspective of magic boxes that promise to negate security vulnerabilities as well as teams of consultants who will “securitize” the company. The net effect is that those paying for such products and services may as well be buying a handful of magic beans instead...
Comments (0)
The Credit Score Ripple Effect on Your Identity
November 08, 2011 Added by:Kelly Colgan
The Wall Street Journal reports that “the proliferation of ‘scores’ highlights the widening trade in personal information, which is already fueling public concern about diminishing personal privacy...
Comments (0)
Hackers: The Good, the Bad and the Ugly
November 07, 2011 Added by:Emmett Jorgensen
Hackers are often portrayed as social outcasts or criminals looking to defraud the unsuspecting public. The media frequently makes little or no distinction between hacker types, simply lumping them all together into a malevolent group. The truth is hackers come in all shapes and sizes...
Comments (1)
SecBiz -- Who will be Infosec's Pariah?
November 07, 2011 Added by:Ali-Reza Anghaie
Infosec has become overrun with FUD. We're on the verge of bottoming-out and reconstructing our collective industry souls. The next three years will be exciting times for our industry. And the first major breakthrough will be finding our pariahs...
Comments (5)
Avatars, Mobiles and Other Security Stories…
November 07, 2011 Added by:Infosec Island Admin
There are so many learning resources out there in our profession, making it hard to know where to go for the really worthwhile insights on key issues like personal devices in the workplace, cloud security etc. Two upcoming online events in these areas that have really got people talking...
Comments (0)
- Five Things Your InfoSec Team Should Do in the Next 30 Days
- The Disclosure Debate Continues….. (part 1,453, 769) to be Continued
- The Danger of Mixing Cyber Espionage with Cyber Warfare
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)