Tech Stocks Week in Review Featuring iPad

March 7, 2010 by ADMIN · Leave a Comment

From Trefis.com

Apple Stock: iPad Business More Valuable Than Mac Desktops - We estimate that Apple’s iPad business accounts for 4% of the $267 Trefis price estimate for Apple’s stock compared to about 3% for Apple’s Mac desktop business…

Tech Stocks Week in Review Featuring Dell

February 28, 2010 by ADMIN · Leave a Comment

From Trefis.com

Trefis Analysis: Notebook PCs 17% of Dell’s Stock on February 25, 2010 Dell shipped an additional 1.2 million notebook PCs in 2009 over 2008. We expect growth in the global notebook market to drive Dell’s notebooks sales in the future…

Advantages of Data-Focused Risk Assessments

February 2, 2010 by ADMIN · Leave a Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

The detailed reasons why people fail at DLP implementations merits a separate post – but it’s a lot like why over 50% of the content management implementation from vendors never made it to production in the 90s – the root cause was that there was no real business case for the technology. Unlike business processes – data risk cannot be outsourced.

DLP is Short for Disturbing Lack of Process?

November 12, 2009 by ADMIN · 1 Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

The question is not lack of process but whether or not security is being used to help enforce business process in the relevant areas of product safety, customer service, employee workplace security and information protection in business-to-business relationships.

PCI Compliance Does Not Equal Security

October 28, 2009 by ADMIN · 8 Comments

By Danny Lieberman, Security Expert and Founder of Software Associates

I recently saw an article entitled Compliance is the New Security Standard. The basic thesis of the blog post was that since companies have to spend money on compliance, they might as well spend the money once and rename the effort “security”. This is an interesting notion – although perhaps “placebo security” might be a cheaper approach. Compliance is not equivalent to security for several fundamental reasons…

Software Defects Still Key Factor in Data Loss

October 7, 2009 by ADMIN · 1 Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

The root cause of application security vulnerabilities is usually design bugs, and often there are implementation defects. The empirical data showed that software bugs accounted for over 55% of the contributing vulnerability to the event (see the Business Threat Modeling study).

Industry Should Share Data Loss Information

September 23, 2009 by ADMIN · 1 Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

People and their employers are unwilling to discuss the details of security events that happened, their security vulnerabilities, the damage in dollars was actually caused, how the events were discovered, how the threats that exploited the vulnerabilities were mitigated and most importantly – how well their current security products perform.

Fragmentation of Knowledge Spurs Breaches

September 15, 2009 by ADMIN · 1 Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

It’s almost a cliche to say that the security and compliance industry has done a poor job in preventing data breaches of over 245 million personal records in the past 5 years. Fragmentation of knowledge leads to waste and duplication, as well as frustrating, expensive and sometimes dangerous experiences for companies facing a data loss event.

Information Security in a Post 9-11 World

September 11, 2009 by ADMIN · 1 Comment

By Danny Lieberman, Security Expert and Founder of Software Associates

This is the 8th anniversary of the Al Queda attack on the US in New York on 9/11/2001. The world today is more connected, more always-on, more accessible…and more hostile. There are threats from Islamic terror, identity theft, hacking for pay, custom spyware, mobile malware, money laundering and corporate espionage. For those of us working in the fields of risk management, security and privacy, these are all complex challenges in the task of defending a business.

ISR News: “NetBook Web Surfers Beware”

March 3, 2009 by ADMIN · 2 Comments

Excerpts From eweek.com

Since their introduction less than two years ago by Taiwan’s Asustek, nearly all major PC makers, including Hewlett-Packard, Dell, Acer and Lenovo, have jumped on the netbook bandwagon. But their no frills nature, combined with low computing power and relative lack of sophistication among their users could combine to create the perfect storm for hackers and virus creators looking for easy targets, analysts say.

Categories
- Anthony M. Freed (25)
- Bill Brenner (2)
- Bob Violino (1)
- Bozidar Spirovski (23)
- Breach (539)
- Britt Womelsdorf (5)
- By Dr. InfoSec (2)
- Cara Garretson (7)
- CCCNews (1)
- Chorey Taylor & Feil (8)
- Christophe Veltsos (2)
- Christopher Burgess (7)
- CIOZone (26)
- Class Action Lawsuit (111)
- Cloud computing (103)
- Coby Royer (5)
- CTO Forum (9)
- D&O Liability (591)
- Daniel Wallace (5)
- Danny Lieberman (11)
- DataLine (10)
- David Alexander (2)
- Derek Crawford (1)
- Doug Pollack (7)
- due diligence (300)
- Fame Foundry (1)
- FEATURE ARTICLE (427)
- Financial (577)
- Fred Leland (7)
- Gene Kim (3)
- Government (363)
- Greg George (5)
- H1N1 (15)
- hackers (529)
- healthcare (124)
- Heather Bourgoin (1)
- HomeATM (8)
- identity-theft (525)
- IDExperts (17)
- Ike Z. Devji (1)
- Infosec Island Network (28)
- Insider Threat (480)
- Internet Crime Complaint Center (1)
- Internet Security Alliance (61)
- ISR News (321)
- Jacqueline Herships (2)
- Jenni Hesterman (3)
- John M. Salomon (2)
- John Watkins (7)
- John-Patrick Skaar (2)
- Kaliber Data Security and Compliance Consultants (3)
- Kat Sanders (2)
- Ken Leeser (3)
- Kevin L. Jackson (10)
- Kevin M. Nixon (21)
- Larry Ketchersid (1)
- Laton McCartney (7)
- Lauren Taylor (1)
- Linda McGlasson (1)
- malware (491)
- Mark Smail (1)
- Mark Wright (1)
- Mel Duvall (3)
- Michael Eggebrecht (3)
- Michael Lohr (1)
- Michael O'Conner (4)
- MicroSolved (1)
- Mike Duncan (3)
- Mike Meikle (4)
- Mike Spinney (1)
- Military (201)
- national security (443)
- PCI (299)
- PCI Security Standards Council (32)
- Physical Security (11)
- privacy (542)
- Rachel James (10)
- reach (2)
- Rebecca Herold (16)
- Richard Stiennon (44)
- Robert Siciliano (34)
- Sarbanes-Oxley (492)
- ScamStop (2)
- Sean Wilkins (2)
- Semyon Dukach (1)
- Simon Heron (14)
- Software Associates (11)
- Steven Fox (19)
- SUPERAntiSpyware (3)
- Sybase (6)
- Symplified (5)
- The Jester (7)
- The Privacy Professor (16)
- Thomas R. Fox (8)
- Tom Groenfeldt (2)
- Tom McLain (2)
- Trefis (13)
- Tripwire (18)
- Uncategorized (620)
- virtualization (91)
- Webcast (48)

Copyright © 2008 To Present · Information-Security-Resources.com (Permissions and Disclaimers) You are welcome to use, for any lawful purpose, the information that WE write and post to this site, provided that you link to and attribute Information-Security-Resources.com and the author(s). Any 3rd-party material linked to or referenced on this site is subject to the rights of the owners of that material.

We provide business consulting services. We do NOT provide legal or financial advice. There is no attorney / client relationship, or any privilege associated with our services. Nothing expressed on this site, or in association with our services, should be taken as legal counsel or financial advice. The opinions expressed on this site are the personal opinions of the writer(s), not those of any other individuals or organizations.

Theme: Copyright © 2008 · Revolution Code Blue designed by Brian Gardner

Information-security-resources.com is part of the Infosec Island network.