Home > IT Blogs > Sister CISA CISSP/

Sister CISA CISSP:

June, 2008

1
June 26, 2008  1:10 AM

Hack My Coffee – Please



Posted by: Arian Eigen Heald
Hardware & InfoSec, Security, Start Laughing Now, Stupid Technology, Tearing My Hair Out

From Craig Wright comes this riveting post: I have a Jura F90 Coffee maker with the Jura Internet Connection Kit. The idea is to: "Enable the Jura Impressa F90 to communicate with the Internet, via a...

  Bookmark and Share     1 Comment     RSS Feed     Email a friend

June 25, 2008  11:48 PM

Four Year Study – Part II – International CyberCrime is Increasing and WHY



Posted by: Arian Eigen Heald
Data Breaches, Identity theft, PCI DSS, Security

The study from Verizon had some interesting (and scary) information about the growing worldwide market for stolen data. For example, attacks from Asia, particularly in China and Vietnam, often involve application exploits leading to data compromise. - Folks over there know about coding,...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

June 23, 2008  6:17 PM

One More Acronym and I am Going to Scream



Posted by: Arian Eigen Heald
cloud computing, Cloud Security, data security, Security, Start Laughing Now, TCM (Truly Clueless Management), Tearing My Hair Out

I know I'm an IT Auditor, and we should eat acronyms for breakfast, but it seems as if the focus on "achieving compliance" has brought out the worst in us. "We're Compliant!" has become the holy grail of corporate management, and IT has jumped on the bandwagon because they can get funding for...

  Bookmark and Share     5 Comments     RSS Feed     Email a friend

June 19, 2008  1:03 PM

Verizon Four Year Study on Data Breaches – Well Worth Reading



Posted by: Arian Eigen Heald
Compliance, Data Breaches, Identity theft, Security

A Boston Globe article caught my eye. Although it's not news to me (or probably you), here is more than anecdotal evidence that many medium and small businesses are still not making...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

June 17, 2008  1:00 PM

Losing My Identity At the Drugstore Instant Photo Machine



Posted by: Arian Eigen Heald
Data Breaches, Identity theft, Security, Stupid Technology, Tearing My Hair Out

A few days ago I went with my partner to the local drugstore (all the big chains have these machines) to print out a jpeg to send with a card for Father's Day. The picture was on a thumb drive for easy transport, and I was along to provide technical support (I try to at least appear...

  Bookmark and Share     1 Comment     RSS Feed     Email a friend

June 12, 2008  7:18 PM

SAS 70 Reports – Are They Worthwhile?



Posted by: Arian Eigen Heald
Admins and Auditors, Compliance, IT audit, SAS 70

I noticed a recent post on the boards questioning the value of SAS 70 Reports. Given that I do about 15 a year, I thought I'd venture an answer to that question. First, it's important to understand what a SAS 70 is NOT: It's not a checklist; It's not a certification; It's not a...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

June 10, 2008  12:56 AM

Identity Theft and Your Tax Returns



Posted by: Arian Eigen Heald
Identity theft, Security, TCM (Truly Clueless Management)

Thieves continue to get more and more creative with personal information. Computerworld reports that so far 155 medical students from the University of California at...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

June 3, 2008  3:01 PM

Eigen’s 2008 InfoSecurity “Rules of Thumb”



Posted by: Arian Eigen Heald
Compliance, Eigen's Rules of Thumb, IT audit, Security, Steps to an Easy Audit, Tools & Tricks of the Trade, Tools for Auditing and Security

Rule #1 - You can pay now, or you can pay later, but if you choose to pay later, you will pay MORE. Rule #2 - You can outsource function, but you cannot outsource...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

1