SEARCH RESULTS
 
Showing 1-10 of 36 records
 
Expand article

XSS fortune cookie

The Article has images
2008-09-02 16:10:00 by Russ McRee in HolisticInfoSec.org
...fortune cookie 1) Ask the mighty Google oracle who might be able to tell you your fortune http://www.google.com/search?hl=en&q=tell+my+fortune&btnG=Search&lr=lang en 2) Select one of the sponsored links; in this case I chose SpritualExperts.com 3) Pick a variable. I settled for banid 4) Ask it if it has a cookie for you...
 
Tags: xss fortune cookie, cookie, fortune, google, mighty google oracle, extremely bad joke, compsychic readingpsychic, chose spritualexperts, play nice
 
 
 
 
Expand article

Embedding Malicious IFRAMEs Through Stolen FTP Accounts

The Article has images
2008-03-03 10:14:01 by HASH0x8b0b9bc in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...Fortune 500 companies, Russia. Nothing's wrong with that unless of course you're interested in the whole story and the big picture, which wouldn't be excluding the possibility for having a Fortune 500 company's servers acting as C&Cs for a large botnet. Why are Fortune 500 servers excluded as impossible to get hacked at the first place,...
 
Tags: ftp accounts, ftp, iframes, malicious iframes, web service, service, ftp account credentials, demand service, data
 
 
 
 
Expand article

Web Services and XML Security Training at OWASP

2008-08-28 08:55:59 by Gunnar Peterson in 1 Raindrop
 
...Fortune 10 enterprise The knowledge and transfer was a great baseline and with the additional resources Gunnar made available, made this one of the best one day classes I've taken IT Security Lead, Fortune 10 enterprise This class was a thorough and well-organized trek through the current Web Services Security landscape. Going beyond just...
 
Tags: security, soa security standards, security standards, soa security, soa, security critical environment, information security, information, application security principles
 
 
 
 
Expand article

IT GRC is the next evolution for the Enterprise Security Organization

2008-03-17 15:35:00 by Ryan Shopp in practical risk management
 
...Fortune 500 firms. Going around the room each was spending on average 5-6% of their IT budget this year on IT-GRC . A few were lower than this in the 2-3% range while one, who was significantly working on their IT-GRC strategy, was spending about 12% of their IT budget on IT-GRC snip Bottom line, the solutions in the IT-GRC space continue to...
 
Tags: grc, it-grc strategy, it-grc, it-grc space continue, grc guru, fortune, save fortune, security organizations money, significantly
 
 
 
 
Expand article

"High-level" vs Fluffy vs Dumb vs Irrelevant?

2007-11-28 14:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...fortune 100 or 500 companies can only comprehend at a 1st grade level Second : "While I agree with Jim and share his pain (I have given a few exec-level presentations in my time), I also think there is another underlying cause for this: basically, people do not want their execs to know what is going on Third : " ... executives at big...
 
Tags: executives, 1st grade level, fortune class executives, fortune, presentations, exec-level presentations, executive data presentation, blog discussion, dumb
 
 
 
 
Expand article

Dave Cowan of Bessemer says mid-market is the new battleground for security

2008-03-10 07:36:33 by HASH0x8b554d0 in StillSecure, After All These Years
 
...Fortune 2000 and large government accounts. He thinks the real opportunity is at the mid-market. Not surprising given his recent Perimeter investment From my perspective though, I have to agree. I think the mid-market is a much more dynamic marketplace for security. You know what they say about the Fortune 500? There are only 500 of them....
 
Tags: security, dave, dave cowan, mid-market, bessemer, security companies, dave speaks, security talk, brad
 
 
 
 
Expand article

Dave Cowan of Bessemer says mid-market is the new battleground for security

2008-03-10 08:32:03 by ashimmy in StillSecure, After All These Years
 
...Fortune 2000 and large government accounts. He thinks the real opportunity is at the mid-market. Not surprising given his recent Perimeter investment From my perspective though, I have to agree. I think the mid-market is a much more dynamic marketplace for security. You know what they say about the Fortune 500? There are only 500 of them....
 
Tags: security, dave, dave cowan, mid-market, bessemer, security companies, dave speaks, security talk, brad
 
 
 
 
Expand article

Chipotle Mexican Grill employee information on USi stolen laptop

The Article has images
2008-04-26 22:39:08 by Evan Francen in The Breach Blog
...fortune than it is to poor information security management? I don't fortune has all that much to do with it USi has reported the theft to Ohio law enforcement authorities and believes the theft was a random act At this time, we have no evidence that this information has been misused, and USi indicates that the laptop was password protected...
 
Tags: information, information security, confidential information, usi, information security improvement, chipotle, information security policies, chipotle information, evan
 
 
 
 
Expand article

Do people still fall for spam?

2006-10-28 19:14:06 by Administrator in Email security & compliance blog
 
...fortune? It turns out that spammers buy up stock before they send out the messages, then whilst people fall for the scam and buy the stock the spammers sell theirs at a profit. It sounds so simple (not to mention highly illegal) and yet people are falling for it. According to the survey, on days that no spam messages about the company stock...
 
Tags: spam, spam messages, stock, people, stock scams, company stock, messages, whilst people, lucrative spam practices