SEARCH RESULTS
 
Showing 1-10 of 149 records
 
Expand article

MUST-DO Logging for PCI?

2008-02-11 10:46:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Somebody asked me a few days ago: EXACTLY what logging we absolutely MUST do for PCI DSS compliance? Since this is a common question, I am broadcasting it here The honest answer to the above question is that there is no list of what EXACTLY you MUST be logging due to PCI or, pretty much, any other recent "compliance thingy" (as we all know, PCI...
 
Tags: pci, pci dss rules, pci dss compliance, pci dss guidance, compliance, log, must-log-this, pci book, log management
 
 
 
 
Expand article

A MUST Read From Rich: "11 Truths We Hate to Admit" About Security

2008-01-31 16:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Rich's "11 Truths We Hate to Admit" About Security is a must read (and think about Examples are 2. The bad guys beat us because they're agnostic and we're religious 4. Vendors are like politicians they lie to us because we ask them to 8. Network security is the result of a mistake, not an industry worth perpetuating 9. Disclosure is dead ...
 
Tags: security, network security, bad guys, admit, rich, industry worth, truths, politicians, dead
 
 
 
 
Expand article

Another Old Presentation: What Every Organization Must Log and Monitor

2008-05-15 15:11:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Finally, I decide to "liberate" this presentation as well: "What Every Organization Must Log and Monitor" circa 2004 This is still very useful and relevant; also, many people will appreciate my attempt to do the impossible i.e. give a simple answer to a very complex question (BTW, it rarely works So View | Upload your own About me:...
 
Tags: monitor, log, organization, presentation, simple answer, complex question, circa, rarely, relevant
 
 
 
 
Expand article

Obama Still Fighting For His Right To Blackberry

2009-01-08 12:45:00 by Associated Press in Wired Security
 
There aren't many people who can tell the president of the United States what to do, but Barack Obama acknowledges that he is still in "a scuffle" with the Secret Service (and his lawyers) over his beloved Blackberry, which they say he must give up. The president-elect hasn't used the "cold, dead hands" defense yet -- but it ain't over until...
 
Tags: barack obama acknowledges, blackberry, secret service, dead hands, president, president-elect, cold, lawyers, defense
 
 
 
 
Expand article

CEP/EP Reference Customers 2005-2007

2007-12-29 16:13:12 by Tim Bass in The Complex Event Processing Blog
 
On November 8th 2007, after compiling a list of CEP/EP reference customers fromthe open literature and public press releases, I issued a call for CEP reference customers in the Yahoo! CEP-Interest Group and on the professional networking site LinkedIn . During the past 7 weeksI provided an opportunity forall concernedto view and respond tomy...
 
Tags: cep, reference, cep blog event, cep reference customers, event, mention complex event, total cepep reference, criteria, sales criteria
 
 
 
 
Expand article

Call for Public CEP Reference Clients for 2008

2008-07-16 09:42:21 by Tim Bass in The Complex Event Processing Blog
 
Last year The CEP Blog conducted a survey of all public CEP/EP use cases by customers, based on a simple criteria.We asked the various CEP vendors to on various CEP discussion forums, social networking sites like LinkedIn, and mailing lists to review both the criteria and the list , comment and update. We published the resultsin CEP/EP Reference...
 
Tags: cep, cep blog, mention cep, cep vendors, criteria, simple criteria, software vendor, software, cep discussion forums
 
 
 
 
Expand article

Mobile Malware Scam iSexPlayer Wants Your Money

The Article has images
2008-07-09 07:42:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
A bogus media player ( iSexPlayer.jar ) targeting Symbian S60 3rd edition devices according to several affected parties, is currently being spammed through blackhat search engine optimization. Once infected upon confirming its execution since it's doesn't seem to be exploiting a specific vulnerability besides "bargain hunters" desire for free...
 
Tags: isexplayer, install, install isexplayer, access, internet access, isexplayer access module, phone, blackhat seo sites, sites
 
 
 
 
Expand article

New Year's Resolutions for choosing online retailers

2007-12-20 09:31:28 by Andras Cser in Security & Risk Management
 
With CardSpace and Higgins being in nascant and almost non-existent market adoption mode, you may wonder what authentication features you want to be looking for when shopping online. Usernames and passwords are a thing of the past: you can safely assume that you will use a computer to log in which has a keylogger or trojan capturing your...
 
Tags: user inconvenience, low user inconvenience, users desktop, users desktop software, software, medium user inconvenience, low, imagic software, user
 
 
 
 
Expand article

Reproductive Medicine Center doctor loses patient data on flash drive

The Article has images
2008-02-01 16:44:24 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 1/30/08 Organization University of Minnesota Physicians Contractor/Consultant/Branch Reproductive Medicine Center Victims Patients Number Affected 3,100 Types of Data Patient information including details of infertility treatments Breach Description A doctor with the University of Minnesota...
 
Tags: drive, flash drive, flash, drive holds details, lost drive, sensitive personal information, information, social security information, data