tagged w/ protocol
-
This risk is often hidden in plain sight, poses a genuine clear and present danger to the business and information security objectives, and one that is often overlooked. This issue is change control...This risk is often hidden in plain sight, poses a genuine clear and present danger to... more
-
-
Cyber security threats have reached a critical juncture. With attacks becoming more sophisticated and damaging, members of Congress and the Administration have taken note. The Obama Administration’s recent cyber security review highlights matters of high importance to many companies. More than ever, firms must stay on top of the rapidly changing world of cyber security, and must consider newly developed White House policies. Some priorities set forth include:Cyber security threats have reached a critical juncture. With attacks becoming more... more
-
-
The US Government must get its priorities right. Too often “cybersecurity” is confused with “anti-piracy.” The average Joe or Jane downloading copyrighted content from Youtube is not a cybersecurity issue, whereas organized gangs systematically collecting and exploiting personal data is a cybersecurity issue. One might question if the US government is devoting the proper time and attention to the cybersecurity issues that are truly most in need of national attention.The US Government must get its priorities right. Too often “cybersecurity”... more
-
-
Knowledge is paramount in our efforts to understand our “climate” when it comes to conflict, it’s causes, how it’s fueled by the feeling of loss of control, and how it either unfolds progressively over time or rapidly without notice. The extremes, ups and downs of emotions that spur loss of individual control and can lead to hot conflicts, dangerous encounters and unpredictable results.Knowledge is paramount in our efforts to understand our “climate” when it... more
-
-
RSA, the Security Division of EMC recently released several research reports that examine the far-reaching security implications of promising technologies such as cloud computing, virtualization, social networking and mobile communications, and explore the pivotal business risks and rewards they represent to organizations worldwide.RSA, the Security Division of EMC recently released several research reports that... more
-
-
By Mike Spinney, CIPP, Privacy Analyst, Ponemon Institute - Here’s a brazen bit of breachery from the Miami Herald: It’s a neat little proposition: for a flat monthly fee, a data broker (of sorts) acquires medical records from a hospital employee and passes them through to a personal injury lawyer for a fee plus a percentage of his lawsuit earnings...By Mike Spinney, CIPP, Privacy Analyst, Ponemon Institute - Here’s a brazen bit... more
-
-
Review the state of play of cyber security for the government and the private sector, including recommendations on how to create a more productive public-private partnership. Cyber security policies are rapidly expanding, indicating the critical threat faced by any organization using Internet-based technologies. In 2008, the Bush Administration launched the most comprehensive cyber security policy review in the federal government’s history. Soon after taking office, President Obama tasked the National Security Council to review our nation’s cyber security policy. In April, the first major bill calling for broad federal regulations and unprecedented power over private sector cyber systems was introduced in the Senate.Review the state of play of cyber security for the government and the private sector,... more
-
-
Sun Tzu’s theories are for the tactically minded professional wanting to secure every possible advantage - for the professional who wants to understand the mental, moral, and physical realms of conflict. WHY? Because that’s how we win on the street.Sun Tzu’s theories are for the tactically minded professional wanting to secure... more
-
-
“We see many signs that criminals are mimicking the practices embraced by successful, legitimate businesses to reap revenue and grow their enterprises” -Tom Gillis, VP and general manager of Cisco.
According to Cisco Systems’ Midyear Security Report, issued July 14, online criminals are exploiting traditional business strategies as they continue to flourish amid a shaky global economy.“We see many signs that criminals are mimicking the practices embraced by... more
-
-
Report: Naked video of ESPN reporter used to spread virus; Cyber expert shortage may hinder government in protecting Web sites, internal systems; Adobe promises patch for seven-month old Flash flaw; Report: federal documents detail iPods overheating, catching fire; Vietnam security firm in trouble after tracking hackers; Adobe investigating zero-day bug in Flash; Blackberry maker questions Etisalat software upgrade; Open-source firmware vulnerability exposes wireless routers; Clever attack exploits fully-patched Linux kernel; Trust but verify: Security risks abound in the IT supply chain…Report: Naked video of ESPN reporter used to spread virus; Cyber expert shortage may... more
-
-
The idea of having confidential records shopped to competitors and then offered up for sale to the highest bidder would be enough to keep any CIO up at night. Yet, as scary as this scenario is, cyber extortion remains rare. The bigger threat - one that should legitimately keep IT professionals up at night - is on the inside.The idea of having confidential records shopped to competitors and then offered up for... more
-
-
Companies buy these so called certified products thinking they have the magic bullet to solve their ITIL project, and they’ll skip the hard part, which is designing the processes for their organization.
So instead of a magic bullet they’ll just shoot themselves in the foot with a real bullet.
ITIL isn’t about specific products but instead about putting in processes that bring efficiency to the organization.Companies buy these so called certified products thinking they have the magic bullet... more
-
-
Nielsen Online reported that by the end of 2008 social networking had overtaken email in terms of worldwide reach. Sites such as Facebook, Twitter, Myspace and Linkedin provide users with a way to build and interact with a community in real time on a familiar platform at a very low cost.Nielsen Online reported that by the end of 2008 social networking had overtaken email... more
-
-
Lexis-Nexis Breach Linked to Crime Family: One of the “old school” tactics that the organized crime figures use is going to the local watering holes and seducing young girls and finding out where they work. The mob’s tactic of dating new employees who work at companies that have access to customer data leads to Litan’s warning, “He’s not after your heart; he’s after your data.”Lexis-Nexis Breach Linked to Crime Family: One of the “old school” tactics... more
-
-
Twitter suspends accounts of users with infected computers; South Korea blocks sites to help end cyber attacks; Kansas audit raises computer security questions; Apple still mute to iPhone complaints; U.S. State Dept. workers beg Clinton for Firefox; Snooping through the power socket; New York official: Tagged site stole identities; Firefox 3.5 vulnerability rated ‘highly critical; Probe into cyberattacks stretches around the globe; BlackBerry update bursting with spyware; French workers threaten to blow up Nortel factory; FBI charges satellite descramblers…Twitter suspends accounts of users with infected computers; South Korea blocks sites... more
-
-
In an open letter to Google boss Eric Schmidt, security experts, lawyers, and privacy advocates want Google to start using the secure version of the HTTP protocol to protect Gmail users from session hijacking.In an open letter to Google boss Eric Schmidt, security experts, lawyers, and privacy... more
-
