Sister CISA CISSP:

December, 2009

1

December 29, 2009  7:58 PM

Just in Time for the Holidays…..



Posted by: Arian Eigen Heald
Automatic Theft Machines, cloud computing, Cloud Security, information security, SQL Injection, Start Laughing Now, TCM (Truly Clueless Management)

There are a bunch of year end studies coming out, predicting various sorts of rises and decreases in criminal activity on the Internet. ("cybercriminal" sounds way too glamorous for me.) So I thought I'd offer up, in the spirit of the season, my two cents: Under the Category of Bad...

December 22, 2009  7:09 PM

The Forest or The Trees – Part 2



Posted by: Arian Eigen Heald
Admins and Auditors, Tearing My Hair Out

In a previous article, I talked about the issues faced by IT Security and financial auditors, in trying to come together. Financial auditors only care about financial systems and...


December 18, 2009  2:30 PM

Second Annual “One More Acronym & I am Going To Scream”



Posted by: Arian Eigen Heald
Eigen's Rules of Thumb, Start Laughing Now, Stupid Technology

From the wilds of South Dakota, it seems like I have too much time to think. Once again, in time for the holiday season, the Ad campaigns (which is where so many of these things ((heck, where ALL of these things)) come from) spread the same acronyms like the "I Love You" virus. Late last night...


December 15, 2009  2:41 AM

iFrame Attack is Growing Very Fast



Posted by: Arian Eigen Heald
Add new tag, information security, SQL Injection, Web Security

According to Dark Reading, and the original article from a security researcher from Scan Safe an attack that started in November using SQL...


December 8, 2009  8:21 PM

“Social Media” and Business



Posted by: Arian Eigen Heald
etc, information security, information security policy, TCM (Truly Clueless Management), Twitter

My sister-in-law asked me yesterday about getting her company on Twitter and other social media sites like Facebook. She said that they would need to disable blocking functions in the office firewall to make it work. She also said that their IT department was very much against the idea, and she...


December 4, 2009  10:46 PM

The Forest or The Trees; Why Can’t We Have Both?



Posted by: Arian Eigen Heald
Admins and Auditors, Tearing My Hair Out

It often seems as if IT Security and auditors will never meet in the middle. As a person with one foot in either side of the fence, I'm often amazed how two groups with fundamentally the same goals can't seem to agree. Usually, when this happens, I'm an auditor sitting with IT Security people,...


1

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: