January 29, 2010
Creating a Culture of Awareness
In his article on Network Security Edge , Top 10 Information Security Threats of 2010 , Kevin Prince, CTO of Perimeter, talks of two specific employee-related security threats: malicious insiders (... More >
January 28, 2010
Happy Data Privacy Day
January 28 is always marked on my calendar because it’s my sister’s birthday, but now the calendar square shares space with another event – it’s Data Privacy Day . According to the official Web sit... More >
January 27, 2010
Report: Dangers of Cyber Crime on the Rise
A lot has been written this past month about security risks to watch out for in 2010 . However, the results of the 2010 CSO Cyber Watch Survey, a cooperative effort between the U.S. Secret Se... More >
January 26, 2010
Don't Get Caught by Spear Phishing
The attacks on Google in China were part of a spear phishing campaign . Now, several U.S. oil companies report being victimized by spear phishing . According to a report in The Christian Sc... More >
January 25, 2010
Google and China: Looking Forward
A lot has been written about the recent attacks on Google . So what does the Google experience teach us about the future? During my conversation with Scott Crawford, research director of secu... More >
January 22, 2010
Why HTML 5 Could Present Web App Security Risk
In my post about the potential security problems with Google’s Chrome OS , I added a quote that says that Chrome’s use of HTML 5 may be a target of hackers. So, what’s the issue with HTML 5? For a l... More >
OAuth WRAP Security Skeptics Speak Out
Earlier this week, I began a discussion on security flaws in OAuth . OAuth WRAP is supposed be more simple than OAuth. But that doesn't necessarily mean that it's better, as Ben Adida wrote ... More >
January 20, 2010
Addressing OAuth Flaws
A few days ago, my colleague Loraine Lawson suggested some reading material on OAuth and security issues . For those of you unfamiliar with OAuth , it’s “an open protocol to allow secure API author... More >
January 19, 2010
Do You Know What Is on Your Employees' Computers?
When it comes to IT security, your company’s biggest threat is likely on your payroll – employees who forget to log off from password-protected databases or who lose flashdrives with confidential inf... More >
January 14, 2010
Changes Needed in Reporting Data Breaches
The Identity Theft Resource Center released its latest data breach information, and the information, to say the least, is confusing. According to the ID Theft Center: “In 2009, the Identity... More >
January 12, 2010
CMS Security Could Be Your Company's Weak Spot
Content Management Systems (CMS) have been a boon to businesses and managing data . However, it is easy to underestimate the security risks that come with CMS. I spoke with Tony Byrne, founde... More >
January 8, 2010
Cyber Protesting on the Rise
A trending story caught my eye today – around the world, protestors are hacking government Web sites. On the European Union site, instead of a photo of the Spanish Prime Minister, there was a... More >
January 7, 2010
Be Smart with Smartphone Security Policies and Practice
With all the fuss this week about the release of Google’s new smartphone , this is a good time to remember that smartphones operate more like a computer than a phone and they need the same care as t... More >
January 6, 2010
Google Chrome's Troublesome Weaknesses
When the Google Chrome Web browser was released at the end of 2008, a number of my IT acquaintances advised me to make the switch, especially since it would be more stable and secure than IE. ... More >
January 4, 2010
Security Theater: The Latest Buzz Phrase
The term “security theater” may have been around for a while, but it seems to be on everyone’s lips since the failed terrorist attack on Christmas Day. Security theater is the intention to m... More >
