SEARCH RESULTS
 
Showing 1-10 of 19 records
 
Expand article

If politicians can imagine sniper fire, don't be surprised what people can imagine on their resumes.

2008-03-26 02:09:00 by John Sexton in The Bullet Proof Blog
 
...mis-speaking and mis-remembering? Shortly after Hillary Clinton's animated version of coming under sniper fire in Bosnia, she now tells us she "mis-spoke I first read about this story in last Saturday's Washington Post, in an article written by Michael Dobbs. Mr. Dobbs, who visited the Tuzla air base in Bosnia, much earlier than Senator...
 
Tags: sniper, sniper fire, clinton, senator clinton, tuzla air base, air base, dobbs, michael dobbs, real whopper
 
 
 
 
Expand article

RSA Day 2: Wednesday with JJ & the Engima

The Article has images
2008-04-14 01:35:30 by JJ in Security Uncorked
...mis-use of one-time-pads). They drew the line from Enigma to WEP and other algorithms that were okay, but mis-implemented There were a variety of other anecdotes, accompanied by audience-wide snickers, snorts and laughter. One story of tape backups, encrypted, with the key dutifully stick-noted to the case. Another of the secretary who...
 
Tags: security, inherent security risk, day, security bloggers party, dry session, session, enigma, enigma machines, fathers session
 
 
 
 
Expand article

TRICARE breach affects 4,700 households

The Article has images
2007-12-20 12:15:59 by Evan Francen in The Breach Blog
...mise of sensitive personally identifiable information belonging to beneficiaries located in Europe. EDS is an IT contractor for TRICARE and "had not appropriately secured a part of the system" they support Reference URL TRICARE TMA Website Announcement Air Force Times Story Report Credit TRICARE Response From the online sources cited...
 
Tags: tricare, information, personal information, code review, by-line code review, information security, tricare beneficiaries, beneficiaries, breach
 
 
 
 
Expand article

Larry Sutos Paper Drama

2008-01-02 14:53:30 by RSnake in ha.ckers.org web application security lab
 
...mis-read a quote from me regarding the tools I use for testing. The part he read was that I use NTOSpider. The part he either glossed over or failed to understand were these words A better question would be which ones dont I use This is by no means an authoritative list of all the things I use in fact, Ive written a number of tools that I...
 
Tags: paper, larry sutos paper, scanners, commercial scanners, test environment, environment, test, time, people
 
 
 
 
Expand article

The New Threat Modeling Process

The Article has images
2007-10-02 01:15:35 by sdl in The Security Development Lifecycle
...mis-conception we often see, which is that STRIDE is appropriate for use as a classification system. Its really hard to use STRIDE to describe attacksthe impacts blend together really quickly. The most valuable use of STRIDE is to help people think about how threats have impacted elements of a design in the past. That is, its a framework for...
 
Tags: process, threat, process validation entails, threat model, software process diagram, people, people trust boundaries, love threat, hamster wheel
 
 
 
 
Expand article

Cyberattack! Manipulation and Subversion of Financial Markets!

2008-01-08 11:55:09 by Tim Bass in The Complex Event Processing Blog
 
...mis)information to manipulate the market price of E*Trade ( ETFC ). This might have not been such an eyebrow raising event if the rumor (cyberattack) was by a disinterested third party. The attack wasby a direct competitor with their own subprime balance sheet problems On or about November 12, 2006, Citigroup Investment Research analyst...
 
Tags: etrade, etrade financial, etrade bank, etrade financialis, etrade stocks, cyberattack, etrade bankruptcy risk, market, free market
 
 
 
 
Expand article

Stockport Primary Care Trust flash drive goes missing

The Article has images
2008-01-21 09:44:46 by Evan Francen in The Breach Blog
...mis-understanding on information security roles and responsibilities Indeed the security of the information had been considered and the data was being carried personally to avoid being sent by e-mail Evan] So the sensitivity of the information was taken into account, and still not secured adequately. There are FREE programs and utilities...
 
Tags: senstive personal information, personal information, information, medical information, information security matters, information security, information security management, information line, management
 
 
 
 
Expand article

Report from InfoSec World

The Article has images
2008-03-11 08:23:19 by HASH0x8b066f4 in StillSecure, After All These Years
...MIS Institute. StillSecure has a booth but I have spent most of my time talking to old friends in the security world. Some of the folks I have seen are Ian Poynter, Jeremiah Grossman, Jordan Wiens, Bobby Dominguez, etc, etc. Another person I had a chance to catch up with and get to know much better is Ofir Arkin from Insightix. Ofir always...
 
Tags: security, security world, magazine folks, magazine, folks, security event, conference, infosec world conference, ofir arkin
 
 
 
 
Expand article

Report from InfoSec World

The Article has images
2008-03-11 09:23:03 by ashimmy in StillSecure, After All These Years
...MIS Institute. StillSecure has a booth but I have spent most of my time talking to old friends in the security world. Some of the folks I have seen are Ian Poynter, Jeremiah Grossman, Jordan Wiens, Bobby Dominguez, etc, etc. Another person I had a chance to catch up with and get to know much better is Ofir Arkin from Insightix. Ofir always...
 
Tags: security, security world, magazine folks, magazine, folks, security event, conference, infosec world conference, ofir arkin
 
 
 
 
Expand article

HNS Podcast: InfoSec World Conference & Expo