Jun 25 2008 10:54AM GMT
Posted by: SearchSecurity.com Staff
Security Wire Weekly
Mike Rothman, president and principal analyst of Atlanta-based Security Incite sheds some light on PCI compensating controls. He describes why companies choose a compensating control and how assessors determine if they meet the regulation’s security requirements.
Security Wire Weekly: PCI Compensating Controls [11:37m]:
Play Now |
Play in Popup
Jun 19 2008 10:52AM GMT
Posted by: SearchSecurity.com Staff
Threat Monitor
Recently, a security professional asked our application security
expert, Michael Cobb, “How are phishers using search engines like
Google to seek out and hack vulnerable PHP applications? What can be
done to protect those apps?”
As part of his monthly responses to readers, Cobb explains how to
keep phishers from finding your exposed servers and using them to
stash stolen data.
Threat Monitor [06:02m]:
Play Now |
Play in Popup
Jun 18 2008 4:46PM GMT
Posted by: SearchSecurity.com Staff
Security Wire Weekly
Jim Hietala vice president of security at the vendor standards consortium, Open Group talks about a project underway to develop risk management standards. Also, SearchSecurity.com Executive Editor Dennis Fisher discusses the state of secure software development and whether software vendors will ever certify their products as secure.
Security Wire Weekly [12:59m]:
Play Now |
Play in Popup
Jun 11 2008 1:47PM GMT
Posted by: SearchSecurity.com Staff
Security Wire Weekly
Peter Firstbrook, an analyst at Gartner Inc., explains why the email security market is saturated with vendors. Learn which vendors are thriving. Firstbrook also gives his take on email security vendor, Tumbleweed and its merger with managed file transfer software and services vendor, Axway.
Security Wire Weekly [9:16m]:
Play Now |
Play in Popup
Jun 5 2008 9:11AM GMT
Posted by: SearchSecurity.com Staff
Threat Monitor
The Windows registry can be used as a helpful tool for professionals looking to investigate employee activity or track the whereabouts of important corporate files. In this tip, contributor Ed Skoudis unveils several commands and explains how investigators and administrators can interact with the registry to analyze a compromised system.
Threat Monitor [05:45m]:
Play Now |
Play in Popup
Jun 4 2008 1:44PM GMT
Posted by: SearchSecurity.com Staff
Security Wire Weekly
Senior Technology Editor Neil Roiter interviews Brian Ahern, president and CEO of Industrial Defender, which specializes in the security of critical infrastructure systems.
The nation’s critical infrastructure providers have been called onto the carpet. Recently, a house subcommittee delivered a blistering appraisal of the deficiencies in power companies security posture. Coming on the heels of a GAO report that Tennessee Valley Authority power plants are vulnerable to cyber attack, the congressional tongue-lashing raised questions about what power, oil and gas, chemical, water and transportation companies are doing to secure their systems. In this podcast, we ask Brian Ahern, president and CEO of Industrial Defender, which specializes in the security of critical infrastructure systems, about the state of security in these vital sectors and the special challenges these companies face.
Security Wire Weekly [15:11m]:
Play Now |
Play in Popup
Greg Hoglund, a noted security researcher and author who specializes in Windows rootkits and exploiting vulnerabilities explains why software is just as vulnerable today as it was in 1999. Hoglund also talks about the rootkit threat and why online gaming isn’t all fun and games.
