tagged w/ electronic database
-
The Internet Security Alliance presented Melissa Hathaway with its annual award for vision in cyber security Tuesday during an event at the National Press Club. Hathaway, the Obama Administration’s former acting cyber security chief, received the McCurdy Award on the one-year anniversary of when she began her 60-day review of the government’s cyber security program. ISA believes that Hathaway’s work, if implemented, would result in the establishment of a modern partnership between the public and private sectors, which is necessary for an effective and sustainable system of cyber security.
http://information-security-resources.com/2010/02/09/isa-presents-melissa-hathaway-with-award/The Internet Security Alliance presented Melissa Hathaway with its annual award for... more
-
-
An important consideration with information security incidents is identifying if personally identifiable information - PII - is involved. If it is, then the privacy breach response team needs to be put into action to determine whether or not an actual privacy breach occurred. I’m always interested in hearing the challenges and unique situations they run across as they not only create their plans, but also for how they execute them. Here are three of these situations, often overlooked and not planned for, but experienced by organizations.
http://information-security-resources.com/2010/02/08/perplexities-of-enterprise-privacy-policies/An important consideration with information security incidents is identifying if... more
-
-
According to Peter Greenberg, the author of CRM at the Speed of Light, social CRM is a philosophy and a business strategy, supported by a technology platform and designed to engage a customer in a collaborative conversation in order to provide mutually beneficial value in a trusted and transparent business environment…
http://information-security-resources.com/2010/02/08/sorting-out-social-crm-options-for-business/According to Peter Greenberg, the author of CRM at the Speed of Light, social CRM is a... more
-
-
Police believe they may have uncovered an international ATM “skimming” ring responsible for stealing money from hundreds of local accounts. It was not too long ago that I bought an ATM north of Boston from a dude named Bob at a bar and rolled it through the streets of Boston nabbing unsuspecting users who entered their debit cards and PINS. I performed this crazy stunt to demonstrate how easy it is and how vulnerable we are.
http://information-security-resources.com/2010/02/07/police-make-arrests-in-atm-skimming-ring/Police believe they may have uncovered an international ATM “skimming”... more
-
-
-
Anti-jihadi hactivist The Jester (th3j35t3r), the self-proclaimed Nicest Hacker in the World, has returned for part two of our conversation concerning his campaign of intermittent disruption of militant pro-jihad websites. Part one, Q&A With anti-Jihadi Hacker The Jester, elicited both ire and accolades for the cyber-vigilante in nearly equal volume, revealing just how polarizing the issues surrounding ownership, permissions and access have become in this age of information.
http://information-security-resources.com/2010/02/04/more-talks-with-anti-jihadi-hacker-the-jester/Anti-jihadi hactivist The Jester (th3j35t3r), the self-proclaimed Nicest Hacker in the... more
-
-
-
-
We have had a few weeks to absorb the implications of wide spread Chinese supported attacks against Google and thirty or so other organizations. The US Secretary of State made one of the most affirmative statements on Internet freedom yet articulated by a government. Various policy analysts have chimed in as well. Some thoughts on what they have said…
http://information-security-resources.com/2010/02/02/china-internet-freedom-is-culturally-relative/We have had a few weeks to absorb the implications of wide spread Chinese supported... more
-
-
The detailed reasons why people fail at DLP implementations merits a separate post – but it’s a lot like why over 50% of the content management implementation from vendors never made it to production in the 90s – the root cause was that there was no real business case for the technology. Unlike business processes – data risk cannot be outsourced.
http://information-security-resources.com/2010/02/02/advantages-of-data-focused-risk-assessments/The detailed reasons why people fail at DLP implementations merits a separate post... more
-
-
WireHead SecurityTM, an information security services firm providing customers with solutions to strengthen internal security and risk management, today announced a partnership agreement with the North Carolina Independent Colleges and Universities (NCICU), under which member institutions can take advantage of discounted service pricing. NCICU is comprised of North Carolina’s 36 private, non-profit liberal arts, comprehensive, and research colleges and universities accredited by the Southern Association of Colleges and Schools.
http://information-security-resources.com/2010/02/02/wirehead-security-partners-with-ncicu/WireHead SecurityTM, an information security services firm providing customers with... more
-
-
Fraud as a service or FaaS for the acronym collectors, has been a topic of concern for security professionals since 2008. Gone are the days where the primary theft is being perpetrated by the sociopath lone-wolf in the basement. The major player is now organized crime, responsible for 70 percent of online fraud and billions in ill-gotten gains…
http://information-security-resources.com/2010/02/01/faas-the-emergence-of-fraud-as-a-service/Fraud as a service or FaaS for the acronym collectors, has been a topic of concern for... more
-
-
Scammers will say and do anything to get a person to part with their money. At first they had a sob story that sounded like a legitimate issue, new housing, can’t have a pet. When posted in a classified ad, it looks legitimate. Then they involved a “shipping company” that was a front for the scam. Once the victims were asked to send money via Western Union, that should have been a red-flag.
http://information-security-resources.com/2010/02/01/pet-lovers-are-target-of-latest-online-scams/Scammers will say and do anything to get a person to part with their money. At first... more
-
-
There needs to be a change to email security if we want to stop seeing high profile security breeches such as the ones that hit Hotmail and Google in 2009, and the America law firm Gipson Hoffman & Pancione more recently. The problem is, most email filtering systems will trust the email address and therefore allow it through.
http://information-security-resources.com/2010/01/31/behavioural-based-email-security-systems/There needs to be a change to email security if we want to stop seeing high profile... more
-
-
Cisco’s existing product lines offer a number of different appliance options which allow companies the ability to block the various web based threats in existence. The problem that this type of solution has is that it does require constant tweaking of the filtering and analysis settings as well as someone to constantly keep an eye on current events as zero-day attacks become more prominent.
http://information-security-resources.com/2010/01/31/web-security-from-a-new-perspective/Cisco’s existing product lines offer a number of different appliance options... more
-
-
Are you embracing the collaboration phenomenon that has been storming, complete with thunder, lightning and rain over the past few years? Or have you been hiding under an umbrella to avoid this social media storm? Yes, we are all interconnected, whether we want to be, are expected to be, or prefer not to be. We are, as they say in poker, all in, as collaboration is here to stay ― and it’s driven by technology…
http://information-security-resources.com/2010/01/27/technology-drives-new-age-of-collaboration/Are you embracing the collaboration phenomenon that has been storming, complete with... more
-
-
-
The number and types of external threats to a network are growing exponentially, and unless a company has a dedicated and highly specialized team devoted to network security, it’s hard to keep up with the rapidly changing threat landscape. After all, the threats of the Internet are the same for every company regardless of its size.
http://information-security-resources.com/2010/01/26/consider-outsourcing-your-network-security/The number and types of external threats to a network are growing exponentially, and... more
-
-
-
We are observing an incredible rise in cybercrime. New profiles of attackers arrived in the so-called hacking underground, and the hacking world – sometimes – is meeting with organized crime and State-sponsored attacks. The world is changing and, basically, the keyword is the information. In today’s world Information is the Power that’s the sole reason why all of this is happening.
http://information-security-resources.com/2010/01/25/un-crime-justice-institute-fights-hackers/We are observing an incredible rise in cybercrime. New profiles of attackers arrived... more
-
