-
26.
-
27.Advanced Spear Phishing - individually targeted (infoworld.com)
Interesting example of how advanced spear phishing has become.
-
28.Quarter Of Germans Happy To Have Chip Implants (www.eweekeurope.co.uk)
So says trade body head (and his body).
-
29.Leveraging Open Source for Business Intel : Information Security Resources (information-security-resources.com)
Open source intelligence (OSINT) is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence…
-
30.Outsourcing Breach Response Lowers Costs : Information Security Resources (information-security-resources.com)
The Ponemon Institute last month released their 5th annual 2009 Annual Study: Cost of Data Breach. This year, the report explored several new areas and came up with some interesting and in some cases surprising conclusions…
-
31.
Praetorian Prefect | Press F1 for Help, pwned. (praetorianprefect.com)Microsoft published security advisory 981169 yesterday in response to the zero day vulnerability reported a few days prior. The vulnerability is in the help system and can be triggered by luring an Internet Explorer user into pressing the F1 key. Windows 2000, Windows XP SP2 & SP3, and Windows 2003 SP2 with Internet Explorer 7...
-
32.U.S. to Reveal Rules on Internet Security - NYTimes.com (www.nytimes.com)
-
33.Gartner Tells CIOs to Embrace Social Media : Information Security Resources (information-security-resources.com)
Has someone been putting strange substances in the drinking water at Gartner’s Greenwich, CT headquarters? Some of their analysts are beginning to sound like New Age gurus on a mission to bring peace, love and harmony to the corporate world. Consider these words of wisdom recently imparted by Gartner analysts to clients at an Orlando conference…
-
34.One Click Ownage (www.mavitunasecurity.com)
Mavituna Security strikes gold with Webraider.
-
35.Filling Adobe’s heap … (feliam.wordpress.com)
-
36.21 More Business Sector Breaches from 2009 (www.infosecisland.com)
Some of the breaches described in the notifications were reported in the media at the time, but we spotted a number from the business sector that had not been reported in the media or on this site at the time. So here is a brief roundup on another 21 breaches from the business sector last year...
-
37.19 more financial sector breaches from 2009 (www.infosecisland.com)
Maryland has updated its web site to provide breach notifications that it has received since its last update. The newly posted notifications are for the period ending December 31, 2009, so there will likely be more to come for 2010...
-
38.Another, Better TKIP Attack That's Still Limited (wifinetnews.com)
-
39.Building your OWN Malware Lab (Part 1) (www.infosecisland.com)
Malicious software pieces like viruses, worms and bots are currently one of the largest threats to the security of the Internet. Antivirus Labs have invested great Money for analyzing and reversing viruses, but for our case we can perform the analysis using some useful tools on our PC.
-
40.Road Map for an Application/Software Security Architect (Part 6) (www.infosecisland.com)
So, the application designer has disclosed that the solution for the web services being designed will involve the (1) need to authenticate; (2) need to determine levels of authorization; and (3) [by the way] need to have some personalized data be carried forward to the application. If you, as a the ...
-
41.TED Blog: Sergey Brin on Google's China decision (blog.ted.com)
Sergey talks about Aurora and China.
-
42.Federal Guides for Social Media Security p.II : Information Security Resources (information-security-resources.com)
Once an agency crosses over into social media interactions with other agencies and non-governmental organizations, the guidance gets diluted. The guidelines point to five government agencies, none of which are the definitive resource for social media implementations. These guidelines are a must read for any organization that is considering a foray into the Web 2.0 sphere…
-
43.2009 Cyber Attacks Increased by One Third : Information Security Resources (information-security-resources.com)
Symantec’s 2010 State of Enterprise Security study also found that 100 percent of enterprises surveyed experienced cyber losses in 2009, with theft of intellectual property, customer credit card information or other financial information and customer personally identifiable information the most prevalent…
-
44.The first thing about security (www.infosecisland.com)
If there is anything you should ensure for the security of your computer system, it is this: "ALWAYS have a backup." This is the first part of disaster resiliency, and is useful not only as a protection against malicious crackers, but also against accidental modification or deletion, and it also acts as insurance against the eventual physical failure, whether it's just electromechanical fatigue or a large earthquake or other natural disaster that takes out the computer room.
-
45.Banks, Businesses, Viruses and the UCC : Information Security Resources (information-security-resources.com)
There’s an interesting post over at Krebs On Security talking about some poor company that is going bankrupt because TD Bank allegedly will not give them their money back after it was stolen out of their account. As such, if your company has money wired out of it’s account, the bank isn’t to be held liable - or at least that’s been their argument. This is happening all the time, so why aren’t we hearing about it all the time? Well that leads me to the worst part of this story…
-
46.Relationships with Foreign Business Partners : Information Security Resources (information-security-resources.com)
There are several critical components in the selection, use and retention of any Foreign Business Partner, such as agents, resellers, joint venture partners or distributors. The due diligence process should contain, at a minimum, inquiries into the following areas…
-
47.
Praetorian Prefect | A Brief Reminder, Passwords Have Been Around Forever (praetorianprefect.com)The much maligned password has existed for thousands of years, for example the Greek historian Polybius described their use in the Roman military before the birth of Christ.
To illustrate the point here is a clip, the password scene, from the 1932 Marx Brothers movie “Horse Feathers”.
-
48.New Adobe Download Manager Bug (blog.trendmicro.com)
Within days of Adobe’s release of out-of-band security updates for both Acrobat and Reader, word now comes from security researcher Aviv Raff, of another new vulnerability in an Adobe product.
-
49.Defending Against Advanced Persistent Errata : Information Security Resources (information-security-resources.com)
Many security professionals have sent me irrate comments via e-mail like: You’re insane! You can’t block China! How long have you been in security! You can’t block a whole country! These remarks come in response to my writings concerning cyberwarfare, China and similar themes. In today’s blog entry, I bring to you: “Advanced Persistent Errata – Defending The Castle;” in other words, Blocking ANYONE you damn well choose to block…
-
50.Thousands More Twitter Accounts Hacked : Information Security Resources (information-security-resources.com)
IT security firm, Sophos, has warned Twitter users on a new attack that has led to thousands of accounts being compromised by hackers using a Web 2.0 botnet. The hijacked accounts are later used to spread money-making spam campaigns. The security firm found out that fellow members of the micro-blogging network had posted messages disguised as humorous inks, but were actually aimed to phish passwords credentials from unsuspecting users. These messages were accompanied with clickable links which redirected users to a fake Twitter login page hosted on a website based in China. Watch the video which demonstrates the attack…
Powered by