Archive for the ‘Corporate Stupidity’ Category

Geo-tagging photos can lead to cyberstalkers finding you

Posted: 4th February 2011 by admin in Corporate Stupidity, Hacking News, malware, Security Policy, social media, Social network, Web Security
Tags: , , , , , ,
0

A new threat could be giving up your location when you post a picture from inside your house. A team of scientists dicovered that with some smartphones, a user’s latitude and longitude can be attached tothe picture you post in the metadata.

Facebook’s new security features and the Zuckerberg hacking incident

Posted: 28th January 2011 by admin in Compliance, Corporate Stupidity, Hacking News, Identity theft, Security Policy, social media, Web Security
Tags: , , , , , , ,
0

Facebook’s new security features and the Zuckerberg hacking incident

What are the challenges with protecting electronic documents?

Posted: 29th March 2010 by admin in antivirus, Compliance, Corporate Stupidity, risk assessment, Security Assesment
Tags: , , , , ,
0

Image via Wikipedia We have seen a lot of problems with Adobe vulnerabilities. Adobe has been getting beat up with all the negative publicity in the past few months. Apple is restricting access to Adobe on their devices. Has anyone tried their remote desktop sharing? I wonder if some vulnerability will be release in that [...]

Ponemon Institute Cyber megatrends – Some Additions Needed

Posted: 28th November 2009 by admin in Compliance, Corporate Stupidity, Could Computing, Outsourcing, Unstructured Data, Web 2.0
Tags: , ,
0

Ponemon Institute recently released their  Cyber megratrends as listed below. While I agree with these I think there were a couple that could easily be added to the list. First, I would either add or modify Web 2.0 into Web 3.0. Lets look to what is going to happen versus what is happening. Incremental change [...]

Credit Card Theft Put Miami on the Map

Posted: 19th August 2009 by admin in Compliance, Corporate Stupidity, Government Security, Hacking News
Tags: , , , , , , ,
0

Miami is a fun place to live and work (there are actually people who work here). Its a great vacation spot, people enjoy the nightlife and now we have something else to crow about. The largest credit theft ring was based here! According to Bloomberg, “Albert Gonzalez, a 28-year-old Miami resident, and two hackers living [...]

Stolen laptop with employee information- yet again

Posted: 7th August 2009 by admin in Corporate Stupidity, Identity theft
Tags: , , , , , ,
0

Stolen laptop with employee information- yet again The Associated Press reported that a Williams Cos. Inc. laptop containing personal and compensation information was stopen from a workers vehicle. The laptop had over 4,400 current and former employees records. Information like names, birth dates, Social Security numbers and compensation data was on it. How many times [...]

Forget Information Security, someone work on airport delays

Posted: 30th July 2009 by admin in Compliance, Corporate Stupidity, Government Security, Travel
Tags: ,
0

Forget Information Security, someone work on airport delays My posts are all usually information security related. Some interesting things on web security, vulnerability assessment, risk assessment, all that good stuff. Well today I cannot blog about that. As much as I love it, get a probably un-natural excitement about it, I can’t do it. I [...]

Web Security Testing has come of age

Posted: 20th July 2009 by admin in Compliance, Corporate Stupidity
Tags: , , , ,
0

Website security is the one of the most dangerous places for a company. If you look at a layered security approach, we start out with the internal network. There we have host security, patch management, host IDS and other server based technologies. Next we have the network security layers, network intrusion detection, network monitoring and [...]

Data Breaches are still misunderstood

Posted: 19th July 2009 by admin in antivirus, Compliance, Corporate Stupidity, Security Assesment
Tags: , ,
0

The Ponemon Institute and Ounce Labs (www.ouncelabs.com) released a study on the view CEOs have regarding data protection in their environment. In the study of 213 CEOs and other senior executives, CEOs did not share the same view on how secure their organization is with their executives. 92 percent of respondents said they were attacks. [...]

US to set out cyber security plan -Baha to the rescue

Posted: 29th May 2009 by admin in Compliance, Corporate Stupidity, Government Security
Tags: , , , , ,
0

Why did it takes us over 2 decades to really approach the cybersecurity topic. When I started in informatio security in in 1994, it was the wild west. People were creating processes, developing security frameworks and growing a whole new industry. I like to think I played some part in being on the early team [...]

Buying Malware rather than getting it for free

Posted: 22nd May 2009 by admin in Corporate Stupidity, malware
0

This kind of incident (see article below) seems to be happening every few months. So you purchase a product (netbook) and it comes infected. No longer do you just have to worry about it working, or if the OS will behave nicely or the drivers will work with your printer. If the manufacturer can not control malware, [...]