RSS Alerts

Tag Cloud

cloud security cybersecurity Security encryption WiFi Cloud cloud computing David Harley

Bloggers

Blog

Follow and talk to Infosecurity's bloggers.

Follow Infosecurity's bloggers as they share their thoughts on the industry, technology, and much more. Our bloggers have been selected for their industry expertise. They welcome interaction, so we encourage you to add your opinions to theirs.

0
comments
PCI and Breach Data
Last week the Verizon Risk Team released an interesting report in which, among other things, they compared breach result information against norms for PCI DSS compliance. I can't imagine anyone is really all that surprised to see that organizations suffering a serious breach also tended to ...
Posted 11 October 2010 by Geoff Webb
tags: PCI DSS, Cloud
1
comment
Practicing Continuous PCI DSS Compliance
  The importance of ongoing/continuous PCI DSS compliance processes as an effective means to curb security breaches at a merchant’s site is being touted by many experts in the PCI field lately. Verizon's recommendations also mention this importance in it’s recently released report ...
Posted 07 October 2010 by Ajay Gupta
tags: PCI , PCI DSS, Compliance, Rogue
0
comments
The Power of Security Education
While doing research for an upcoming feature on insider threats, I had a conversation with Nick Levay, information security and operations manager at the Center for American Progress (CAP), a DC-based think tank. Although some of what he shared could not be squeezed into the article, his thoughts on ...
Posted 06 October 2010 by Drew Amorosi
tags: education, spear phishing, passwords
0
comments
Path to PCI DSS Compliance: High Incidence of WiFi Vulnerabilities
  The Deadline to comply with PCI DSS requirements, set for Level 1 Merchants by VISA, recently passed on Sept. 30, 2010. However, what we do not yet know is how many of these merchants have successfully met the compliance requirements.   Knowing the ‘path to c ...
Posted 04 October 2010 by Ajay Gupta
tags: PCI DSS, WiFi Security, WiFi, VISA, Rogue AP, CDE
0
comments
WiFi consumerization raising security concerns
  The growing WiFi capability in the variety of consumer devices is readily evident nowadays. These devices include cameras, camcorders, printers, scanners, smartphones, televisions, music/video players, e-book readers and many more. Having been equipped with WiFi capability, these devices are ...
Posted 29 September 2010 by Ajay Gupta
tags: WiFi, WiFi Security, WIPS, Consumerization , WPS, WIDS
0
comments
Customer Experience: Security Can Improve in the Cloud
Last week, when I was in South Africa, a partner of us pointed me to a very interesting paper by KPMG called Cloud computing: Australian lessons and experiences. What I like is, that a lot of the items I was recently raising, where actually reflected in quotes by customers of Cloud providers as well ...
Posted 28 September 2010 by Roger Halbheer
tags: Cloud
0
comments
Bigger than the Cloud?
Laura Smith over at SearchCIO  recently covered the explosive growth of the iPhone and other smartphones in the business sector, and how that growth is really testing the limits of existing security policy. Over 325 million mobile devices purchased in one quarter shows just how massive the pres ...
Posted 23 September 2010 by Geoff Webb
tags: Mobile security, iPhone, Forrester, SearchCIO
0
comments
The Risks of Unofficial Patches
This is quite a normal scenario: A zero-day pops up on the Internet by a security researcher. Immediately afterwards we see the first exploits appearing and being integrated into the different attack tools. Now, the race has started: The vendor has to develop a security update, the criminals try to ...
Posted 17 September 2010 by Roger Halbheer
tags: Risk Management, Patch Management
0
comments
One-sided Explosion
Consumerization – the use of consumer products within the corporate environment, is one of the more challenging issues for security teams to deal with. While a standard, well-defined, and well-protected infrastrucutre is a nice idea, there is more and more pressure to open up the network ...
Posted 09 September 2010 by Geoff Webb
tags: Consumerization, Apple, Gartner, Mobile security
0
comments
PCI, AV and a life vest
A good friend of mine over at NetIQ, Todd Tucker, recently blogged about some of the frustrations he sees when looking at the failure of PCI as a security standard (or rather, the failure of those organizations who pay lip service to compliance) and especially the oddly heavy emphasis given to ...
Posted 25 August 2010 by Geoff Webb
tags: PCI DSS, anti-virus, malware
0
comments
The Importance of Application Security
I think I told this story thousands of times, and everybody knows it, but I will do it for the 1001st time now. When I joined Microsoft and became what is the Chief Security Advisor for Switzerland today, we had an airlift for Windows Server 2003. The Product Manager in Switzerland asked me to keyno ...
Posted 24 August 2010 by Roger Halbheer
tags: Development
0
comments
Should RIM hold its line on the BlackBerry?
Encryption is the sort of topic that rarely makes it into the mainstream media, but the recent hoopla over BlackBerry security, namely its encryption procedures, has drawn the ire of governments throughout Asia. India, the UAE, Saudi Arabia – all have taken issue with BlackBerry services and ...
Posted 18 August 2010 by Drew Amorosi
tags: encryption, BlackBerry, compliance & policy
1
comment
Blocking Social Media Sites–a False Sense of Security?
I blog often about it: Blocking certain websites today can fire back in different ways. The CIO published an article called Workarounds: 5 Ways Employees Try to Access Restricted Sites – and they say: "Some workarounds can be dangerous because they might create a channel that data can ...
Posted 14 August 2010 by Roger Halbheer
tags: Social Media
1
comment
I-Coverage
I wanted to comment a little on the recent stir concerning the vulnerabilities on the iPhone (iPad, iTouch, I-Robot.  No, wait, that's a movie.) I think the level of interest in this vulnerability (and there's been a lot on security blogs in the past couple of days) speaks volumes about the gr ...
Posted 13 August 2010 by Geoff Webb
tags: Security, iPhone, Android, Blackberry
0
comments
Adobe CS7 Searches Saturated With Dangerous Results
Looking to save a few bucks on software will almost always lead users down a dangerous path. Users either end up at “OEM Software” sites offering unlicensed and illegal software, or to downloading cracks or keygens laced with malware.  One of the big issues here is that the ...
Posted 30 July 2010 by Rick Robinson
tags: oem software, malware, blackhat seo, pagerank bomb, adobe, microsoft
0
comments
Microsoft and Adobe: Collaboration Against Threats
You know my opinion on collaboration between countries, on public-private-partnerships, as well as on collaboration between companies. For quite a while we have been running a program called MAPP – the Microsoft Active Protections Program – where we share vulnerability in ...
Posted 28 July 2010 by Roger Halbheer
tags: Vulnerabilities
0
comments
WPA2 Exposed with 'Hole 196' Vulnerability
Until now, the WPA security version known as ‘WPA2 (AES encryption) with 802.1x authentication’ was considered as one of most secure WiFi deployments by most wireless security experts. This is due to the resilience of this version to brute force dictionary attacks that can possibly ...
Posted 23 July 2010 by Ajay Gupta
tags: WiFi, WPA2, Hole 196, TKIP, WiFi Security
0
comments
It's all about WHO
“I KEEP six honest serving-men  (They taught me all I knew); Their names are What and Why and When  And How and Where and Who.” – Rudyard Kipling As I look at the sorts of problems that even the largest, most mature organizations are dealing with, many times I ...
Posted 08 July 2010 by Geoff Webb
tags: Security, identity, access management
0
comments
Cloud Computing: Benefits and Risks of Moving Federal IT into the Cloud
July 1st: Scott Charney, Corporate Vice President Trustworthy Computing was testifying at a hearing of the House Committee on Oversight and Government Reform. Basically the hearing was on the benefits and risk of Cloud adoption for the US government. If you are interested in reading his full testimo ...
Posted 06 July 2010 by Roger Halbheer
tags: Cloud, Governments
0
comments
Secure WiFi Networks: WiFi Alliance and Legal Authorities Coming Forward
  WiFi, today, has become a near ubiquitous technology, used by most of us, with our WiFi enabled gadgets, while we are at offices, homes, public places or while traveling. However, awareness about WiFi security is still lacking and practice of configuring poorly secured or unsecured WiFi netw ...
Posted 05 July 2010 by Ajay Gupta
tags: WiFi Security, WiFi Alliance, WiFi, WEP, WPA, WPA2, Ad hoc
FIRSTPREVIOUS1...161718...22NEXTLAST
Showing 321 - 340 of 439 blogs
View the RSS feed for this blog »
Terms & Conditions | Privacy | Website Design| Reed Exhibitions. All rights reserved. Copyright © 2013
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×