SecurityA very well written article (rather unusual, in USAToday) on corporate espionage and data theft caught my eye today. I'd highly encourage you to take a look, even though it may make you...
1 Comment
RSS Feed
Email a friend
Data Breaches, Security, WirelessThe word is out in InfoSec circles that a practical attack method against WPA - enabled wireless access points has been announced and is to be presented at PacSec in Tokyo this week. It used to be...
0 Comments
RSS Feed
Email a friend
DataCenter, DataManagement, SecurityPer my previous post, it seems that there is suddenly a lot of discussion in the security blogosphere about cloud computing and the security (or lack) thereof. Seems a number of people have taken note of Microsoft's entry (Azure) into Data Center business development. A lot of really good questions...
0 Comments
RSS Feed
Email a friend
Admins and Auditors, DataManagement, Development, Microsoft Windows, Security, Storage, VirtualizationI had a co-worker ask me yesterday what my opinion on "cloud computing" is, and whether it should be something they could recommend to clients. He had seen announcements about cloud computing from Microsoft According to a 2008 paper...
0 Comments
RSS Feed
Email a friend
Hardware & InfoSec, Mobile, Tools & Tricks of the Trade, Tools for Auditing and SecurityI'm having very mixed feelings, I must say, on what I've been reading about accessing information from cell phones. On the one hand, in my line of work, which occasionally includes forensics, I'm pleased to see new tools come out that make my job that much easier. The Cell Seizure Investigator...
0 Comments
RSS Feed
Email a friend
Admins and Auditors, DataCenter, Hardware & InfoSec, Security, Tools for Auditing and SecurityThe most secure Data Centers I've seen utilize electronic access cards of some type that have a good reporting mechanism, right down to which door. Of course, these systems don't do you a bit of good if no one looks at the logs, but that seems to be the exception, rather than the rule. Thank...
1 Comment
RSS Feed
Email a friend
Automatic Theft Machines, Data Breaches, Hardware & InfoSec, Security, WirelessFrom the Wall Street Journal comes the disturbing news that a high-tech wireless "bug" has been found in hundreds of grocery store ATMs in five different European countries. According to WSJ: Examining...
0 Comments
RSS Feed
Email a friend
Admins and Auditors, DataCenter, IT audit, Security, Tools & Tricks of the TradeWhen I do an audit, or a penetration test, I start by walking around the building, both inside, outside, and sometimes even on the roof. In my travels, I'll leave my business card where I can gain unauthorized access. How often am I successful? 95% of the time. I mentally catalog the exterior...
0 Comments
RSS Feed
Email a friend
Automatic Theft Machines, Data Breaches, Hardware & InfoSec, PCI DSS, SecurityIn a previous post about Automatic Theft Machines I commented on the worrisome rise in skimming with these machines. Now, to add to our pain, we should be concerned about gas station pumps,...
0 Comments
RSS Feed
Email a friend
Hardware & InfoSec, SecurityI came across a recent post from the Breach Blog reporting that a U.S. Naval Laboratory employee - the computer administrator - had stolen 19,709 pieces of computer equipment, worth up to $1.6 million. Did no one see this guy carting...
1 Comment
RSS Feed
Email a friend
