Sister CISA CISSP:

December, 2008

1

December 28, 2008  3:14 PM

Securing the Security Devices

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

OK, so you've bought the glow-in-the-dark, meets all the compliance requirements and looks really shiny "security solution" from a vendor (one or many). Or maybe your management has bought it and presented it to you as a fait accompli. (Hope I'm spelling that fancy French right!) And of course...

December 24, 2008  7:14 PM

Getting What You Pay For…..2008

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

In my travels as an auditor this year, I've visited 15 states and seen approximately 20 different networks, both LAN and WAN. I've audited hospitals, lotteries, racetracks, banks, small businesses, large online retailers, metal fabricators, telco service bureaus and health care service...


December 20, 2008  2:11 AM

Thank you, Federal Trade Commission…

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

For saying the blindingly obvious: "Companies and schools should find new ways to authenticate the identities of customers, employees and students that do not involve social security numbers, a U.S. consumer protection agency said on Wednesday as part of recommendations to fight identity...


December 17, 2008  4:46 PM

Nobody is “Too Small” to Get Hacked

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

It's been an interesting week in "Breachland," with reports of breaches in all sorts of places: eyewear companies,

  Bookmark and Share     0 Comments     RSS Feed     Email a friend


December 11, 2008  5:27 PM

More on ATMs – The Daily Store Owner Log

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

Did you know that a store that puts in an ATM for customer use also provides a daily log of transactions to the owner? The log includes the Bank name, last four numbers of the account, the customer name, and the transaction. So if I do an account balance request, that comes up in the log. ...


December 9, 2008  9:27 PM

Check out the New PCI Standards

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

The new PCI (Payment Card Industry) Data Security Standards, Release 1.2 came out in October, and are worth taking a look. They've added some updated recommendations (like getting rid of WEP entirely by 2010), and I especially liked some of the following features: Compensating...


December 2, 2008  11:48 AM

“Selling It”

Arian Eigen Heald Arian Eigen Heald Profile: Arian Eigen Heald

Information about consumer purchases, habits and history have become multi-billion dollar treasure troves for businesses to sell and mine for others. Specialized, targeted information from consumer databases held by banks and other financial institutions are being used to develop business...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: