Data Loss Prevention Has Jumped the Shark

March 3, 2010 by ADMIN · 3 Comments

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

The FTC sending a warning to 100 companies and agencies that their employees are leaking client and sensitive data on the web via Peer to Peer file sharing (P2P) is the single most pathetic and embarrassing communication to come across the desk of an IT professional. It’s over, Johnny IT’S OVER…

Federal Guides for Social Media Security p.II

February 25, 2010 by ADMIN · Leave a Comment

By Mike Meikle, CEO at Hawkthorne Group

Once an agency crosses over into social media interactions with other agencies and non-governmental organizations, the guidance gets diluted. The guidelines point to five government agencies, none of which are the definitive resource for social media implementations. These guidelines are a must read for any organization that is considering a foray into the Web 2.0 sphere…

The Dismal State of Information Security

February 18, 2010 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

The sheer volume of potential targets coupled with the vast amounts of money to be made has captured the attention of the global criminal hacking community. Enterprise networks are becoming hardened and they are still vulnerable. We are fragmented and all over the place with an incredible array of interdependent technologies that are set up with convenience in mind and security second…

The 80/20 Rule for Information Security

February 17, 2010 by ADMIN · 1 Comment

From The Team at MicroSolved

MicroSolved, Inc. (MSI) has developed the 80/20 Rule of Information Security that proposes the concept that 80% of an organizations’ real information security comes from only 20% of the assets and effort put into the program. These 13 security projects will give your organization the most effective information security coverage for the least expenditure of time and resources. These projects, once completed, should allow CIO’s to create an effective, efficient, and standards-based approach to information security…

SyferLock GridGuard Live On Infosec Island

February 16, 2010 by ADMIN · Leave a Comment

Press Release

Infosec Island, the new community for IT and information security professionals, today announced that its new enhanced authentication service based on the SyferLock™ GridGuard™ solution, is now live. Deploying this technology provides Infosec Island members with the option to login with a very high level of security for confidential business, personal or security-related communications. SyferLock’s GridOne authentication is available on Infosec Island to all registered members, and membership is free.

How A Security Company Applies Security

February 16, 2010 by ADMIN · Leave a Comment

By Larry Ketchersid, Chairman and CEO at MediaSourcery

Similar to security assessments, network architecture designs and other projects, a development project, such as this one involves the exchange of confidential data, including in this case, intellectual property designs, requirements documents, test plans, code fragments and road maps. We could have chose to exchange these documents over email, or printed them out and sent them next day parcel post. Instead, we ate our own dogfood and utilized IslandPKI encrypted document and message transfer…

How to Protect Your Social Network Identity

February 14, 2010 by ADMIN · 1 Comment

By Mark Smail, CTO at Onix International, Inc.

Over a billion people visited social networking sites such as Facebook and Twitter last month so it’s not surprising that hackers have these sites in their cross-hairs. In fact, according to recent research from Breach Security Labs, social networks were the most targeted category in 2009, accounting for 19% of all malicious attacks last year. By using simple data encryption and password protection tools, you can ensure that your personal information and online identities remain secure and private…

Banks Fail to Provide Effective Online Security

February 14, 2010 by ADMIN · 1 Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

So, if my PC is compromised because I don’t have adequate security and $800,000 goes missing from my account, whose fault is it? At first glance some may say the victims, others may say the banks. The fact that there are so many ways passwords can be compromised and accounts can be taken over, and banks know this, it should motivate banks to have redundant security in place. Hacks like this undermine people’s confidence in the system.

Targeted Sequel Injection Attacks on the Rise

February 9, 2010 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

SQL injections have evolved in their purpose and sophistication. Originally meant as a tool to attack a merchant’s database and steal data. The attack was reconfigured last summer to install viruses on users’ computers that contain a remote control component. The bad guys are going after high-profile, high-volume websites, instead of going after the smaller websites, which are easier to inject code into…

Police Make Arrests In ATM Skimming Ring

February 7, 2010 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Police believe they may have uncovered an international ATM “skimming” ring responsible for stealing money from hundreds of local accounts. It was not too long ago that I bought an ATM north of Boston from a dude named Bob at a bar and rolled it through the streets of Boston nabbing unsuspecting users who entered their debit cards and PINS. I performed this crazy stunt to demonstrate how easy it is and how vulnerable we are.

Next Page »