Last week we read about the case of a serious data breach at Gwent Police in the UK where a spreadsheet was mailed to a journalist by mistake. This has led to an investigation by the Independent Police Commission and a possible fine of up to £500,000 by the Information Commissioner's Office...
What's the value of a trade secret? That super secret special formula, recipe, design, or device that gives companies an edge against copy cats and competitors would appear to be priceless in some cases and extremely well-guarded...
At the time this post is being written, the dynamics of management's understanding of security issues and the valorization of security investments remain somewhat nebulous. Until this concept is fully interpreted and explored, this valorization is assigned to those in the company who deal with i...
DIB member networks are routinely exposed to hostile intelligence collection as a result of our adversary’s ability to exploit end users and basic network vulnerabilities to gain deep access to proprietary networks.
Perhaps in response to rather vocal criticism of his frantic warnings about cyberwar, Mike McConnell, retired Navy Admiral and one time Director of National Intelligence, published a position piece in The Washington Post. He draws on the Cold War to support his thesis that the US must do more ...
https://www.infosecisland.com/blogview/3717-An-Interview-with-David-Jones-CTO-at-ThreatMetrix.html
According to a recent Ponemon Institute study, nearly 1.5 million Americans have been victims of medical identity theft with an estimated total cost of $28.6 billion–or approximately $20,000 per victim. [1] Further evidence of the significance of the medical fraud problem is the allocat...
Nowadays, IT departments are trying to find out ways to strength their network security with limited budgets. Especially small companies, which have even less budget on network security. It is more important for them to know some tips on how to strength their network security with limited budget...
As a consultant, you get to view the grim expanse of industry regulation more than most. Sarbanes-Oxley (SOX), Health Insurance Portability and Accountability Act (HIPAA), Federal Information Security Management Act (FISMA) and of course the topic of this article, Payment Card Industry Data Se...
As the attacks on infrastructure become more complicated, the true nature of deep penetration attacks prove food for thought for all developers and operators. Consider this case - where the apache open source infratructure itself became significantly exposed by a simple XSS attack that utilize...