Basic Laptop Security Prevents Identity Theft
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
In 2003, an estimated 1.5 million laptops were stolen worldwide. Today, that number has climbed to 2.6 million. That’s a 70% increase in just a few years. That’s one stolen laptop every 12 seconds. Laptop computers have been the source of some of the biggest data breaches of all time. Unfortunately your security, or lack thereof, is in the hands of others.
Simplified Analysis: Forging A Biometric ID
By Bozidar Spirovski, CISSP, MCSA, MCP
Security of biometric ID’s like biometric passports is a very frequent topic of discussion and we all know there are issues. But most of those issues are related to encryption, materials and generally anything that requires a lot of technical knowledge. Here is an example of the possibility to create a fake Biometric ID…
Top 10 Identity Theft Predictions For 2010
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
I’ve joined forces with the Identity Theft Resource Center to expand the pool of knowledge about identity theft issues. As nationally recognized experts in this crime, we have come up with ten predictions for what the nation can expect in the area of identity theft in 2010 and beyond.
Risk-Based Due Diligence for Supply Chains
By Thomas R. Fox, Attorney at Tom Fox Law
Which department or group of your company spends the most money annually? Did Supply Chain immediately come to mind? Probably not. How much of your compliance efforts are focused on the Supply Chain within your organization? There are several methods that could be used to assess risk in the area of supply chain and vendors.
Facebook Stung By Social Media ID Theft
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
The problem with social media identity theft is that when it takes over your account, all the people that you communicate with within your account may believe the identity thief is you. And when that identity thief begins to ask for money, from your friends and from your family and your coworkers, then they may actually pull money out of their pocket and send it via Western Union to the imposter. They think that you’ve actually come into the trouble that the identity thief is saying you’re in.
ROI and the InfoSec Value Statement
By Steven Fox, Founder of SecureLexicon
A value statement connects a project or investment to the mission and values of the organization and there are cases were value overrides financial ROI. A cogent value statement combined with a best-effort ROI can enhance both the bottom line and the security posture of the company by identifying the operational conditions for success.
Lest We Forget About Enterprise Security
By Shubhendu Parth, CTO Forum Team
Are CIOs spending less time on supervising what they should be doing the most—strengthening the citadel and securing the digital assets—particularly when corporate wide cyber crimes and espionage have started to show a quantum jump even in developing economies like India? Security may be a key thing that worries CIOs, but there are other things that keep him occupied these days.
Is Information Protection Even Possible?
By Danny Lieberman, Security Expert and Founder of Software Associates
The author of a ComputerWeekly article correctly identifies that it’s easier to access data and leak it than it is to modify or delete data. However, the notion that data is out of control in the corporate world is an over-reaction, and does a mis-justice to most businesses.
Cloud Based Vulnerability Management
By Bozidar Spirovski, CISSP, MCSA, MCP
The services are usually delivered as a dedicated Black Box appliances that are placed within your infrastructure. They perform the scanning or IPS/IDS, but the results are then sent to the ‘cloud’ where reports are generated. Most companies are offering the usual set of services…
Forgotten Security: Patching and Updating
By Simon Heron, CISSP Internet Security Analyst
The fourth guide in our ‘Forgotten Security’ series, Forgotten Security: Keeping up to date, is targeted at IT teams, encouraging them to take another look at their procedures, ensuring that they cover both software and equipment. A fully updated system is protected against the latest threats.
