PCI Council Advice on Threat Management

December 15, 2009 by ADMIN · 1 Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Security professionals intuitively think proactively. Our job is to predict and prevent what the bad guy will do next. My job specifically is to instill this mindset into you, the consumer, SMB or large corporate enterprise. Bob Russo, General Manager and Rockstar of the PCI Security Standards Council reminds us all in this Business Week article that it’s not all about prevention.

10 Holiday Tips For Secure Online Shopping

December 12, 2009 by ADMIN · 1 Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Criminals set up fake websites and then go through the same process legitimate eTailers do in regards to search engine optimization, search engine marketing and online advertising via adwords. They use key words to boost their rankings on Internet searches to show up along side legitimate sites. These same processes are also being used to infect unsuspecting users with malware. Here are ten tips for secure online shopping.

MIT: Reality Mining Protects Your Identity

December 4, 2009 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Reality Mining defines the collection of machine-sensed environmental data pertaining to human social behavior. This new paradigm of data mining makes possible the modeling of conversation context, proximity sensing, and temporospatial location throughout large communities of individuals.

Swatting Exploits Use Technology To Harm

December 1, 2009 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Swatting is an attempt to trick an emergency service into dispatching an emergency response team. Caller ID spoofing technologies are used to send law officers on bogus calls along with social engineering and phone phreaking techniques. Most people trust caller ID and are unaware of caller ID spoofing. This is obviously a flawed system ripe for fraud.

Comcast Homepage Hackers Indicted

November 23, 2009 by ADMIN · 1 Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

The hackers ages 19 and 20 at the time known as Defiant and EBK from a group calling themselves Kryogeniks. Where they screwed up during their stunt was when they changed the contact information for the Comcast.net domain to Defiant’s e-mail address. Brilliant hackers yet not so smart.

Online Money Mules Aide Theft and Fraud

November 20, 2009 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Shipping scams are a common tactic criminals use in which they employ mules to receive goods bought with stolen credit card numbers, who then ship to people who buy them in online auctions. The mules in this process are essentially facilitating selling hot goods and money laundering.

Effective Security Policy Messaging Important

November 19, 2009 by ADMIN · 1 Comment

By Christopher Burgess, Senior Security Adviser

Clearly communicate that, in fact, there are secrets. Once employees understand that they have a responsibility to protect the enterprise, the chasm between the security professional and the rest of the staff not only shrinks, it disappears. Far too often, security policies arrive as a reaction, as opposed to a proactive management of risk. Through this process, the enterprise will acknowledge security as forethought, not an afterthought.

ATM on Craigslist Loaded with Card Data

November 18, 2009 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

I started looking on e-bay and found plenty of new and used ATMs ranging from $500-2500 but quickly determined I didn’t want to pay $300 for shipping. Next was Craigslist, where I quickly found an ad from a bar north of Boston. They were selling pool tables, Budweiser neon signs and an ATM for $750.

Increase Your Information Security IQ

November 15, 2009 by ADMIN · Leave a Comment

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

People who generally have to much time on their hands read my posts. Or they simply enjoy my train wreck world view. Anyway there are some fantastic resources that I draw from that help me to break down the complicated issues revolving around how to keep the bad guy from draining your bank account. The following make me look good (not to insult them):

What Could Possibly Be Worse Than A Virus?

November 13, 2009 by ADMIN · 2 Comments

By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com

Once a predator uses your Internet connection to go to into the bowels of the web, your Internet Protocol address, which is connected to your ISP billing address, is now considered one that is owned by a criminal. If law enforcement happens to be chatting with that person, who’s using your Internet connection to trade lurid porn, then someone may eventually knock on your door at 3 AM with a battering ram. And in freakish and relatively new twist, hackers can use a virus to crack your network and gain remote control access, and then store illicit porn on your hard drive.

Next Page »