Security Wire Weekly:

Security Wire Weekly


November 7, 2013  2:25 PM

PCI SSC’s Bob Russo, Troy Leach discuss PCI DSS 3.0



Posted by: Eric Parizo
encryption, Financial security, Information Security, PCI, PCI DSS, PCI SSC, pen testing, Security Wire Weekly, web application security

On the eve of the release of PCI DSS 3.0, SearchSecurity spoke with Bob Russo, SSC general manager, and Troy Leach, SSC chief technology officer, about the most important changes in the new version of the standard that debuts Nov. 7, 2013. Russo and Leach also offer their perspective on the most...

September 25, 2012  8:34 PM

Email attacks still highly successful attack vector



Posted by: Robert Westervelt
malware, Security Wire Weekly, spam

Ali Mesdaq a security researcher at FireEye Inc. explains why malicious file attachments are still a highly successful attack vector for cybercriminals. Automated attack toolkits, spambots and targeted attackers typically use the old standby technique because it works. FireEye has found a spike in...


August 8, 2012  2:38 PM

Adam O’Donnell on antimalware evolution at Black Hat 2012



Posted by: Robert Westervelt
Black Hat, malware, mobile security, Security Wire Weekly

Adam O'Donnell of Sourcefire talks about the future of antimalware. Malware analysis tools are improving, but enterprises need to invest in forensics teams to better understand emerging threats. Antivirus vendors face the daunting challenge of adapting mobile platforms, O'Donnell says. Mobile will...


July 13, 2012  4:15 PM

Trey Ford on Black Hat 2012 security conference



Posted by: Robert Westervelt
Black Hat, Security Wire Weekly

Security expert Trey Ford talks about the upcoming the Black Hat security conference. Ford is general manager of Black Hat 2012.


July 5, 2012  1:22 PM

Joe Stewart on Flame malware, botnet sophistication



Posted by: Robert Westervelt
botnets, Security Wire Weekly

Flame was designed as a monolithic framework to enable people to carry out attacks without having deep knowledge of software coding or the way malware works, said Joe Stewart, director of malware research at Dell Secureworks. //


May 8, 2012  7:11 PM

Costly business logic flaws require manual testing



Posted by: Robert Westervelt
secure software development, Security Wire Weekly, web application security

Business logic flaws are costly to detect but even more costly if they are exploited, says application security expert Dan Kuykendall, CTO of NTOBJECTives Inc. Manual testing can detect the issues before cybercriminals can take advantage of the flawed functionality.


April 25, 2012  8:40 PM

2012 Verizon DBIR lessons overshadowed by hype



Posted by: Robert Westervelt
Security Squad, Security Wire Weekly, Verizon DBIR 2012

In this edition of Security Squad, the editors discusses the 2012 Verizon DBIR findings that have been hyped and misconstrued and why only 8% of organizations make a breach discovery with internal technologies. Also, a discussion on how the message delivered at a recent conference by several...


April 12, 2012  8:11 PM

Mobile device security policy essential to BYOD security



Posted by: Robert Westervelt
mobile device protection, mobile device security, mobile security, Security Wire Weekly

Do you think you need a mobile device management platform? Think again, said Darrin Reynolds, vice president of information security at Diversified Agency Services. A formal policy should come first. Reynolds explains that security essentials can be done with existing systems.


April 3, 2012  12:47 PM

Expert advocates for more effective penetration tests



Posted by: Robert Westervelt
pen testing, security spending, Security Wire Weekly

Dave Kennedy, CSO of Diebold Inc. and a noted penetration tester talks about the need for enterprises to have more effective penetration tests and to stop buying the latest security technology. It doesn't work, he told attendees at the 2012 InfoSec World Conference and Expo. Kennedy said businesses...


March 29, 2012  2:46 PM

Is your firm reviewing your logs? SIEM’s second life



Posted by: Robert Westervelt
Log management, Security Wire Weekly, SIEM

Chris Petersen founder and CTO of LogRhythm talks about the SIEM market, the challenges for enterprises to get beyond compliance and shares his thoughts on the future of SIEM with deeper analytics. The interview was conducted last month at RSA Conference 2012.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: