SecurityRatty: tag: demands

Virtual Kidnapping

2008-04-29 05:29:30 by schneier in Schneier on Security

...demands that might include cash or jewels dropped off at a certain street corner or a sizable deposit made to a local bank The twist is that little Pablo or Teresa is safe and sound at school, not duct-taped to a chair in a rundown flophouse somewhere or stuffed in the back of a pirate taxi. But when the cellphone call comes in, that is not...

Tags: cellphones owner, cellphones, extortion calls, ransom demands, telephone scams, scams, calls, government web site, demands

(Not Really) Stateful IT-GRC Inspecting Threat Management At Gigabit Speeds

2008-07-22 14:41:00 by Alex in RiskAnalys.is

...demands of our security budget, and the impact of those demands Now note that we would have a secondary risk to measure here. Im thinking that its not improbable that our PCI efforts may not be the most efficient use of or time and money. So if were spending money on what PCI says we must, and neglecting areas of our IRM landscape that would...

Tags: pci risk management, risk management, pci dss, pci dss compliance, risk, risk inherent, management, pci, pci concerns

Indianapolis Power and Light customer data exposed for up to four years

2007-12-06 09:27:41 by Evan Francen in The Breach Blog

...demands for answers. If IPL is going to collect personal information, what (exactly) do they plan to do to protect it? I suppose customers just assume that a reputable company would be doing the right thing. There is also no mention of whether or not IPL contacted the various internet search engines (Google, Yahoo, etc.) to have the...

Tags: ipl residential customers, ipl, residential ipl customers, information, collect personal information, customers, light customers, sensitive personal information, information affects

'Ransomware' extorts payment with phone call

2008-01-02 00:00:00 by HASH0x8470748 in Network World on Security

New "ransomware" that locks up a person's PC and demands $35 to return control to its user is on the prowl, a security researcher said this week IT Audit Checklists Advertisement Prepare for your next internal IT audit. Checklists cover security, risk management, PCI, and more

Tags: checklists cover security, audit checklists, audit, return control, risk management, security researcher, ransomware, advertisement, locks

Patrick Smith on Aviation Security

2008-01-11 13:47:35 by schneier in Schneier on Security

...demands not actual security, but security spectacle. And although a reasonable percentage of passengers, along with most security experts, would concur such theater serves no useful purpose, there has been surprisingly little outrage. In that regard, maybe we've gotten exactly the system we deserve

Tags: security, actual security, security zealots, security experts, security spectacle, expect street protests, airport security, expect, american public

Hacking Power Networks

2008-01-22 14:24:55 by schneier in Schneier on Security

...demands. We suspect, but cannot confirm, that some of these attackers had the benefit of inside knowledge. We have information that cyber attacks have been used to disrupt power equipment in several regions outside the United States. In at least one case, the disruption caused a power outage affecting multiple cities. We do not know who...

Tags: power, power companies, companies, cia actively, power outages, cia, cia rumor, disrupt power equipment, attacks

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle

...demands confidence that, even in close elections, the election result accurately reflects the voters intent. In theory, such precision can be improved by using computers and technology However, it seems that every recent election season brings stories in the media about security concerns regarding voting machine (and their software) security....

Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system

Economics of secure software

2007-01-21 10:13:02 by RaviC in Musings on Information Security

...demands Any fractional incremental effort by software vendor to make the product secure is worth an effort since it can make a signficant reduction in cost of ownership for the customer Below is a mathematical representation (not the basis!) for the above statement for the curious Price = Initial Purchase Price of the Product Life = Life...

Tags: software, secure, secure product, product, software vendor, software vendors, vendor, price, initial purchase price

Users continue to ignore security policies, while security organizations are overlooking non-technical controls

2007-12-13 12:37:00 by Ryan Shopp in practical risk management

...demands/challenges the users are trying to productively solve. Bottom line, you can't bypass making sure you have the right policies, procedures and education in place for your users (aka non-technical controls After reading this I decided to do some searching around for some type of survey numbers around technical vs. non-technical...

Tags: non-technical controls, technical controls, security, controls, aka non-technical controls, non-technical, quality, quality security controls, technical

Kids and Lying

2008-02-29 07:09:12 by schneier in Schneier on Security

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo