SecurityRatty: tag: outsider

Presbyterian Hospital admissions rep allegedly steals patient information

2008-04-14 16:04:54 by Evan Francen in The Breach Blog

...outsider approached an employee for personal information. I have read about breaches where the employee approached and sold information to an intermediary or outsider (i.e. Fidelity/Certegy and William Sullivan), but not the other way around. This is interesting Mr. McPherson appears to have used his legitimate user account to access records...

Tags: information, sensitive personal information, personal information, records, access records, dwight mcpherson, mcpherson, patients, male patients

Is Risk-Based Security Really Possible?

2007-07-26 20:42:00 by Bryan in practical risk management

...outsider, or fell victim to a disgruntled employee, or made a simple mistake and exposed a bunch of sensitive information on a website, chances are you never saw it coming, and sure couldn't have sat at your desk six months ago and said "there's a 20% chance that this will happen in the next year So, with ALE hopelessly wrong for information...

Tags: security, information security, information security decisions, security management, security breach, breach, risk, wrong, ale hopelessly wrong

Harvard University warns graduate students about web hack

2008-03-14 00:25:51 by Evan Francen in The Breach Blog

...outsider and compromised in a way that the data on the server could have been viewed or copied Reference URLs Harvard University Gazette The Boston Globe The Boston Herald Bloomberg Report Credit Robert Mitchell and Joe Wrinn, Harvard University Gazette Response From the online sources cited above Harvard University notified students at...

Tags: university, harvard university, harvard university gazette, harvard, gsas administrators, gsas, information, personal information, gsas site

The Other Side of Life

2008-03-21 16:06:00 by sdl in The Security Development Lifecycle

...outsider, and it is absolutely impossible to understand the system to the degree as the people who built it. Nonetheless, youve got to find a way to ask hard, probing, impolite and sometimes even uninformed questions without being threatening or insulting, or undermining your own credibility Be polite, be firm, put your ego in a box, and ask...

Tags: team, product team, engineers, security engineers, security, balance security, security professional, test managers, test

A Page from Gregs Diary: Nerwana Software

2008-03-25 12:21:42 by Greg Reemler in The Complex Event Processing Blog

...outsider, now from aninsiders perspective Oneof the interesting challenges that surfacedat Nerwana was the lets export our cultureand business model to the world mantra, maybebetter referred to as if it sells in New York,thenwemustsell it the same way in Tokyo or Bejing Also, I really was surprised to find out how dependentNerwanawason the...

Tags: software, software packages, software companiesare, innovative software, software sales guys, view analysts, operational solutions, analysts, solutions

Customers of 14 Advance Auto Parts stores are victims of intrusion

2008-03-31 21:45:18 by Evan Francen in The Breach Blog

...outsider attack. Why these 14 stores Stay tuned Past Breaches Unknown

Tags: advance auto, advance, confidential financial information, information, financial information, stores, information security, customers, account information

The insider threat - jobs at risk!

2008-05-01 21:51:00 by Manu Namboodiri in Data Protection, Management and Leakage

...outsider threat depends a lot on luck to get to this

Tags: valuable, valuable data, data, sensitive data, sensitive, car seat, access controls, outsider threat depends, access

"Walking" with the SDL - Part 4

2008-07-25 20:49:00 by sdl in The Security Development Lifecycle

...outsider separate from the product team who understands the security requirements as well as the measurements used to validate them. This person along with a project manager can probably perform the bulk of the FSR with development or test leadership providing input as needed What is needed to do an FSR? All threat models should be revised to...

Tags: team, product team, requirements, define requirements, security requirements, security, final security report, threat models, re-review threat models

Top NSA Scribe Takes Us Inside The Shadow Factory

2008-10-14 20:37:00 by Noah Shachtman in Wired Security

No outsider spends more time tracking the labyrinthine ways of the National Security Agency than James Bamford. But despite three books on the U.S. government's super-secret, signals-intelligence service, even he gets lost in the maze

Tags: national security agency, outsider spends, james bamford, government, super-secret, time, maze, service, books

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo