Internet Security Alliance October Events

From The Internet Security Alliance

ISAlliance President Larry Clinton, in Estonia by request of the US State Department; Critical Infrastructure Protection (CIP) Congress; ISAlliance/CyLab Webinar; CMU Software Engineering Institute one day course: Creating a Computer Security Incident Response Team; ISAlliance/AIA Webinar; NIST 5th Annual IT Security Automation Conference; Illinois Institute of Technology 5th Annual VoIP Conference & Expo…

Privacy and Security Top Cloud Concerns

By Satish Das of the CTO Forum Team

Today, most of our contracts are jurisdiction-based and mostly relate to the location of data. With cloud computing, this is something which can’t be defined. Until laws evolve to accommodate these technological issues in contractual terms, large corporations will find it difficult to migrate quickly to clouds.

Fighting DDoS Attacks at the ISP Level

By John M. Salomon, Information Security Consultant

I asked one of the sales guys from a major international backbone provider why they didn’t allocate a small portion of these IPs as tarpits? His response: ”Our mission isn’t to save the Internet.” Honestly though, it should be, it’d be in everyone’s interest to minimize capacity used by worms and bots and free bandwidth that could be used productively for other purposes.

Forgotten Security Defenses Pose Threat

By Simon Heron, CISSP Internet Security Analyst

Companies are protecting themselves from high-profile threats such as malware attacks, but are often leaving themselves vulnerable from the forgotten security defenses. In the first of our advisory notices on forgotten security, we advise companies to examine their applications, hardware and security systems to protect against vulnerabilities resulting from insufficient monitoring.

Top Ten Smart Grid Privacy Concerns

By Rebecca Herold (The Privacy Professor) CIPP, CISSP, CISM, CISA, FLMI

Establish energy industry standards that require each utility to perform at least annual PIAs for their area of responsibility on the Smart Grid, in addition to performing PIAs when significant operations changes occur, to show the privacy vulnerabilities and threats for consumer meter and power collection points.

Mobile Cloud Users Exceeds One Billion

By Kevin L. Jackson, Vice President at Dataline

One has to wonder as application architectures adjust to cloud computing, at what point will it no longer be advantageous for application owners to define infrastructure in terms of servers, storage, and security devices?

Idaho Tops The Most Spammed States Report

By Cara Garretson, Veteran Business and Technology Journalist

Residents in states with a high concentration of small and medium-sized businesses are targeted most by spammers, according to a recent report by e-mail security vendor MessageLabs, a Symantec subsidiary that analyzes billions of inbound messages collected by its data centers around the world.

What Are You Worth On The Black Market?

From The CCCNews Team

Ever wondered how much your online identity is worth to a cyber criminal? Cyber crime is now larger than the international drug trade. Nearly 10 million people have reported identity theft in the U.S. over the last 12 months and one in four households have already been victimized.

Industry Should Share Data Loss Information

By Danny Lieberman, Security Expert and Founder of Software Associates

People and their employers are unwilling to discuss the details of security events that happened, their security vulnerabilities, the damage in dollars was actually caused, how the events were discovered, how the threats that exploited the vulnerabilities were mitigated and most importantly – how well their current security products perform.

Seven Ways to Avoid Silos in the Cloud

Coby Royer, Technical Product Manager for Symplified

As you consider the PaaS and IaaS for hosting and deploying new apps, remember that you are not alone. Your app will be one of many for your customers; and collaboration and integration require identity management and access control solutions.

Next Page »

• Categories

  • Anthony M. Freed (26)
  • Bill Brenner (2)
  • Bob Violino (1)
  • Bozidar Spirovski (23)
  • Breach (540)
  • Britt Womelsdorf (5)
  • By Dr. InfoSec (2)
  • Cara Garretson (7)
  • CCCNews (1)
  • Chorey Taylor & Feil (8)
  • Christophe Veltsos (2)
  • Christopher Burgess (7)
  • CIOZone (26)
  • Class Action Lawsuit (111)
  • Cloud computing (113)
  • Coby Royer (5)
  • CTO Forum (9)
  • D&O Liability (601)
  • Daniel Wallace (5)
  • Danny Lieberman (11)
  • DataLine (10)
  • David Alexander (2)
  • Derek Crawford (1)
  • Doug Pollack (7)
  • due diligence (310)
  • Fame Foundry (1)
  • FEATURE ARTICLE (428)
  • Financial (587)
  • Fred Leland (7)
  • Gene Kim (3)
  • Government (373)
  • Greg George (5)
  • H1N1 (15)
  • hackers (539)
  • healthcare (134)
  • Heather Bourgoin (1)
  • HomeATM (8)
  • identity-theft (535)
  • IDExperts (17)
  • Ike Z. Devji (1)
  • Infosec Island Network (38)
  • Insider Threat (490)
  • Internet Crime Complaint Center (1)
  • Internet Security Alliance (71)
  • ISR News (321)
  • Jacqueline Herships (2)
  • Jenni Hesterman (3)
  • John M. Salomon (2)
  • John Watkins (7)
  • John-Patrick Skaar (2)
  • Kaliber Data Security and Compliance Consultants (3)
  • Kat Sanders (2)
  • Ken Leeser (3)
  • Kevin L. Jackson (10)
  • Kevin M. Nixon (21)
  • Larry Ketchersid (1)
  • Laton McCartney (7)
  • Lauren Taylor (1)
  • Linda McGlasson (1)
  • malware (501)
  • Mark Smail (1)
  • Mark Wright (1)
  • Mel Duvall (3)
  • Michael Eggebrecht (3)
  • Michael Lohr (1)
  • Michael O'Conner (4)
  • MicroSolved (1)
  • Mike Duncan (3)
  • Mike Meikle (4)
  • Mike Spinney (1)
  • Military (211)
  • national security (453)
  • PCI (308)
  • PCI Security Standards Council (32)
  • Physical Security (11)
  • privacy (552)
  • Rachel James (10)
  • reach (11)
  • Rebecca Herold (16)
  • Richard Stiennon (44)
  • Robert Siciliano (34)
  • Sarbanes-Oxley (502)
  • ScamStop (2)
  • Sean Wilkins (2)
  • Semyon Dukach (1)
  • Simon Heron (14)
  • Software Associates (11)
  • Steven Fox (19)
  • SUPERAntiSpyware (3)
  • Sybase (6)
  • Symplified (5)
  • The Jester (8)
  • The Privacy Professor (16)
  • Thomas R. Fox (8)
  • Tom Groenfeldt (2)
  • Tom McLain (2)
  • Trefis (14)
  • Tripwire (18)
  • Uncategorized (621)
  • virtualization (101)
  • Webcast (49)

• ISR Headline Index

  • Hackers Lurking in Hotel Networks
  • 7 Month Vulnerability in Windows Virtual PC
  • How to Secure a Cisco Router
  • On HTML Insecurities…
  • When Social Networking Clashes with Security
  • Spam Block: Public Servants or Vigilantes?
  • Sticky Situations in Social Media
  • Quick Tips for Using Secure Shell
  • Consolidate Compliance With Open Source
  • DoS Attack Reveals Widespread Vulnerabilities
  • Study Shows Employees Put Data at Risk
  • Tracking Google’s Script Kiddie Hackers
  • Newbie Introduction to Digital Forensics Part 2
  • Simple Log Review Checklist Released
  • Press F1 for Help? Microsoft Zero Day Threat!

• Recent Comments

  • Ryan Aslett on Data Loss Prevention Has Jumped the Shark
  • Tom on (Lack Of) Encryption and The HITECH Act
  • ADMIN on Patriot Hacker Hits Jihad With DDoS Attacks
  • Robert Siciliano on Data Loss Prevention Has Jumped the Shark
  • Karen J. Cox on Data Loss Prevention Has Jumped the Shark
  • Scot McLeod on Outsourcing Breach Response Lowers Costs
  • John Marke on Gartner Tells CIOs to Embrace Social Media
  • Social Engineering and Enterprise Security | CIO – Blogs and … | Enterprise Engineering Addict on Gartner Tells CIOs to Embrace Social Media
  • From Russia, With Smartphones on Top 8 Social Media Security Threats
  • Judith Hoffman on Scam Alert: Rogue Gmail Account Phishing
• 
  

  Information Security Resources

  Top network security blogs