They start with basic questions: Are you a public company? Have you been in any actual or attempted merger, acquisition or divestment within the past two years? How many employees? What percentage of your revenue is international? From there they hone in on the specific controls and safeguards you have in place to secure your data and IT infrastructure. Here are seven areas that the insurance carriers are looking at…
Kellogg, Brown & Root (KBR) was responsible for the kickback fraud that occurred in the US v. Khan case, and has been the focus of many other cases of procurement fraud within the LOGCAP project. Since combat operations began in 2001, DCAA has referred to criminal investigators 32 cases of suspected fraud that were associated with all wartime-support contracts. Of those, the vast majority were related to the Logistics Civil Augmentation Program.
Once a predator uses your Internet connection to go to into the bowels of the web, your Internet Protocol address, which is connected to your ISP billing address, is now considered one that is owned by a criminal. If law enforcement happens to be chatting with that person, who’s using your Internet connection to trade lurid porn, then someone may eventually knock on your door at 3 AM with a battering ram. And in freakish and relatively new twist, hackers can use a virus to crack your network and gain remote control access, and then store illicit porn on your hard drive.
Hackers are spreading their operational bases further around the world, according to threat analysis from managed security firm, Network Box. Not only should we all be wary about what links we click on in emails, social networking sites and IM, but we should examine what data we put online.
A Rhode Island Hospital was fined $150,000 after a surgeon operated on the wrong finger of a patient, and now the hospital must install video cameras in all of its operating rooms. Of course video surveillance will not PREVENT such incidents from happening, but knowing such recordings are being made will likely make surgeons much more careful…
The short answer for persons leaving a company is to be very careful and to have a very clear understanding with the employer about what can and cannot be taken. The increasing involvement of government authorities in enforcing remedies involving trade secrets certainly signals a new level of risk for those who may be considering taking or copying trade secrets.
In terms of speed, Retina performed much faster. In terms of scan depth, Nessus has a small advantage, since it includes a web mirroring tool that is very helpful in HTTP. In a direct comparison, Nessus wins simply because Retina manifested erroneous results on repeat scans.
Forget about vampires, ghouls and zombies. You were much more likely to receive a fright this year from something lurking in your e-mail. There were the usual crop of Trojan horses and phishing expeditions, and as the surprising list points out, some of the scares go all the way up to White House and the FBI.
Do surviving relatives have a right to read their deceased son’s, daughter’s, husband’s or wife’s communications with other people whose lives could then subsequently be completely altered as a result? What would your email service providers do with all your messages? Who should make that decision, and when should that decision be made?Do surviving relatives have a right to read their deceased son’s, daughter’s,... more
An intruder could eavesdrop on sensitive data sent across the Internet, manipulate the DNS address that redirects traffic from trusted sites to malicious ones, and possibly even infect other routers automatically. Chen says he informed Time Warner’s security department of the hole; they responded that they were aware of the problem but couldn’t do anything about it.An intruder could eavesdrop on sensitive data sent across the Internet, manipulate the... more
Many internal clouds will run on the back of VMware, but not all, and VMware alone will not satisfy all of the business’s requirements for running an effective internal cloud. Why not? I can think of several reasons…Many internal clouds will run on the back of VMware, but not all, and VMware alone... more
The first major hurdle that must be addressed to ensure information security and privacy policies are implemented and managed properly is that of upper management support. Beyond upper management buy-in, there are six other critical factors that will determine whether or not security policies are effective.The first major hurdle that must be addressed to ensure information security and... more
For a long time I have been recapitulating concerns to enterprises about managing the internal threat. And with the recent economic downturn, layoffs and other sources of employee dissatisfaction are increasing the risks from internal threats. The fact is, corporate management must pay attention to the insider threat and implement policies and controls to manage it.For a long time I have been recapitulating concerns to enterprises about managing the... more
BBC News announced that more passwords to email accounts were posted: Yahoo, Gmail, AOL, Comcast, and Earthlink users appear among those impacted. Again, security experts are urging those with accounts to change their login details. These are extra steps everyone should take at least once a year, or during situations where an account may be compromised:BBC News announced that more passwords to email accounts were posted: Yahoo, Gmail,... more
Whilst the recent news that Microsoft has released a free computer security package to the public is reassuring, it does not detract from the fact that the world’s most popular operating system still has serious security flaws.Whilst the recent news that Microsoft has released a free computer security package to... more
The seeming inconsistency between the perception of being immune from data breach risks with the rapid growth in data breach incidents, led us to think about whether organizations can actually quantify their level of breach risk. We were somewhat surprised that there is not much available to organizations to help them in scoring their vulnerability.The seeming inconsistency between the perception of being immune from data breach... more
Currently most security technology is reactive, taking action only against known threats that have been defined and can therefore be found. Researchers are hoping that by proactively scanning a network for unusual behavior, digital ants can discover zero-day threats before they do harm.Currently most security technology is reactive, taking action only against known... more
Many social media sites are set up so that a participant needs to endorse others in order to gain credibility; however, such endorsements may give the appearance that the company is actually giving the endorsement. Thus, the company has an interest to protect in connection with any social media account used that identifies an employee of the company.Many social media sites are set up so that a participant needs to endorse others in... more
Residents in states with a high concentration of small and medium-sized businesses are targeted most by spammers, according to a recent report by e-mail security vendor MessageLabs, a Symantec subsidiary that analyzes billions of inbound messages collected by its data centers around the world.Residents in states with a high concentration of small and medium-sized businesses are... more
How SaaS Cuts The High Costs of Web Access and SSO By 80% with On Demand Identity
This whitepaper explains:
* How identity services eliminates all capital outlays for hardware, software and infrastructure, expenses for support and staffing
* You can reduce the costs of training and integration to reduce identity lifecycle costs by more than 80% from enterprise identity softwareHow SaaS Cuts The High Costs of Web Access and SSO By 80% with On Demand Identity... more
