Sister CISA CISSP:

information security


October 8, 2009  10:50 AM

Malware on the Move



Posted by: Arian Eigen Heald
Data Breaches, information security

I was reading an article from Window Secrets this morning at 6:00 AM (in a hotel room, what else does a geek do?) and I wanted to pass along an excellent article in the newsletter. The folks there offer a free and paid version of their newsletter. I have...

October 2, 2009  3:35 PM

Your Electric Utility and The Privacy Impact



Posted by: Arian Eigen Heald
Data Breaches, information security, Privacy

You wouldn't think that the power meter in your basement could have anything significant to say about you, personally, would you? Well, you (and I) would be wrong, very wrong, on that point. We tend to have the mindset that only computers store and transport personal information, but there are...


September 25, 2009  3:41 PM

Things You Can Do to Help An Investigation



Posted by: Arian Eigen Heald
Admins and Auditors, Digital Forensics, information security

Sooner or later, you will be called upon, as an Admin or an Auditor, to assist or address a possible fraud or event pertaining to someone's computer, laptop, pda or smartphone. People can be very anxious and over-react when an event is happening. Or, just as difficult, proceed to do nothing,...


September 22, 2009  4:33 PM

Next Generation ATM Skimmers



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Data Breaches, Hardware & InfoSec, information security

I was over on identitytheft.info watching some video feeds when I came across this one. It's worth taking a look at not because the technique for attaching Bad Things is all that different, but...


September 17, 2009  9:07 PM

Pumping Gas and Losing Your Shirt



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Hardware & InfoSec, information security

I hadn't really thought about it, but it made perfect sense the first time I read about it: thieves are capturing credit card and debit card data at the gas pump. Given that the pump is acting as a big cash register, it makes perfect sense that skimmers could be attached the...


September 15, 2009  2:06 PM

Who REALLY Owns Your Data



Posted by: Arian Eigen Heald
cloud computing, Cloud Security, data security, information security

I had an up-close-and-personal experience today of "cloud computing." It's worth thinking about. I had just finished reading Bruce Schneier's essay on cloud computing, (which is a great read, by the way) and was considering the following point...


September 11, 2009  7:35 PM

Paying Attention to FTP



Posted by: Arian Eigen Heald
FTP, information security, Web Security

A newly discovered set of FTP flaws (a buffer-overflow) allows an attacker to install unauthorized software on an Internet Information Services (IIS) server or even to crash the box. The bad guys can plant code on your FTP servers or launch a denial-of-service (DoS) attack against your IIS website....


September 9, 2009  11:03 AM

New Aircrack Just Released



Posted by: Arian Eigen Heald
free tools, information security, Tools & Tricks of the Trade, Tools for Auditing and Security, Wireless

If you're like me, you're always hunting for the free tools out there you can add to your arsenal to keep (or in my case, test) the security of your network. Just out, a great addition to my toolset, is a new update to the well-known tool, aircrack-ng...

Bookmark and Share     0 Comments     RSS Feed     Email a friend


August 30, 2009  12:46 AM

Securing ALL Your Web Services



Posted by: Arian Eigen Heald
Admins and Auditors, information security, Tools for Auditing and Security

A number of commentators, notably IBM's Kris Lamb, have reported that malicious code is no longer limited, for the most part, to p0rn and other sleazy websites. Hackers are targeting the...


August 24, 2009  6:31 PM

By the Numbers



Posted by: Arian Eigen Heald
Data Breaches, employee theft, Identity theft, information security

I was reading through the list of 2009 reported data breaches/identity theft/etc over on Identitytheft.Info and pondering the patterns that might be visible with a little help of sorting/filtering in Excel. Part of the problem is that...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: