Sister CISA CISSP:

March, 2009

1

March 30, 2009  3:04 AM

“Penetration Test” Terms



Posted by: Arian Eigen Heald
Penetration testing, understanding security terms

There are some really terrific pieces of software out there for running a vulnerability scan. I have a lot of respect for all of them. The vendors are working hard to find as many vulnerabilities as possible in order to protect businesses and organizations that need to find and fix those...

March 28, 2009  1:45 AM

When a “Pentest” is not a Pentest



Posted by: Arian Eigen Heald
"How Do You Know?", information security

There are as many definitions of pentest and penetration testing as there are google search results. (Some 10,700,00 or so). The problem is, there doesn't seem to be a standard definition of what constitutes penetration testing. As a result, there are hundreds of companies...


March 26, 2009  8:39 PM

Hijacking Your Website



Posted by: Arian Eigen Heald
Data Breaches, information security

With all the publicity going on about the Heartland breach, not much attention has been paid to what happened to CheckFree last December. The event is also much more challenging to explain to the...


March 26, 2009  2:16 PM

Sweet Contest this month



Posted by: Arian Eigen Heald

Check out the contest for an XBOX this month here on the IT Knowledge Exchange. It made my mouth water!


March 17, 2009  2:13 AM

The Emperor Has No Clothes



Posted by: Arian Eigen Heald
Data Breaches, PCI DSS, Start Laughing Now, Tearing My Hair Out

Visa is in a difficult position: it has said that merchants must be compliant, and the ultimate threat is to pull processing permissions from non-compliant merchants. But if one of the merchants turns out to be a payment processor that generates huge profits for Visa, do they cut off their nose...


March 12, 2009  8:50 PM

You May Not Want to Know, But…..



Posted by: Arian Eigen Heald
Data Breaches, PCI DSS

If you are wondering if your banking institution has been affected by the Heartland breach, you can visit bankinfosecurity.com's web page (updated daily) tracking the number of institutions announcing they have been affected by the...


March 9, 2009  11:59 PM

ATM Heists Grow in 2007 and 2008



Posted by: Arian Eigen Heald
Automatic Theft Machines, Data Breaches, PCI DSS

A story on Wired came out recently about a $9 million ripoff of RBS WorldPay. Further reading on Wired led me to articles about, variously, a cracking of an ATM network in 7-Eleven stores that linked to


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: