SEARCH RESULTS
 
Showing 1-10 of 33 records
 
Expand article

The reason behind the "We're sorry..." message

2007-07-09 11:54:00 by Niels Provos in Google Online Security Blog
 
...Overly aggressive SEO ranking tools may trigger this message, too. In other cases, we have seen self-propagating worms that use Google search to identify vulnerable web servers on the Internet and then exploit them. The exploited systems in turn then search Google for more vulnerable web servers and so on. This can lead to a noticeable...
 
Tags: web servers, vulnerable web servers, message, google, worms, google displays, worms pdf, queries, detect anomalous queries
 
 
 
 
Expand article

House committee issues report and finds fault with TSA web site

The Article has images
2008-01-15 09:35:53 by Evan Francen in The Breach Blog
...overly reliant on contractors for information technology expertise and had failed to properly oversee the contractor, which as a result, made TSA vulnerable to non-performance and poor quality work by the contractor Neither Desyne nor the Technical Lead on the traveler redress website has been sanctioned by TSA for their roles in the...
 
Tags: tsa, website, website contract, traveler redress website, tsa moved quickly, security breach, information security breach, security vulnerabilities, multiple security vulnerabilities
 
 
 
 
Expand article

Security talk on the radio

The Article has images
2008-01-20 19:12:00 by John Sexton in The Bullet Proof Blog
...overly advertise where you are from. There is of course a big difference between going to a beach in Cancun and a business trip to Caracas. If you are visiting a city or country where you may possibly be a target for terrorists or organized criminals, you should think twice about wearing baseball caps and sweat shirts that may signal the...
 
Tags: security, radio, security tips, would-be travelers, travelers, physical security, business, casual travelers, n-on
 
 
 
 
Expand article

See, they ain't that scientific either

2008-02-25 13:42:29 by Paul Stamp in Security & Risk Management
 
...overly complex approaches to risk management, and recent economic events have made me even less so There was a great article in the Economist about a conference for the Ameican Securitization Forum - the wonfderful people that brought us all these complex debt products that are giving banks no end of bellyache. Ironically the conference was...
 
Tags: risk management, information risk management, information risk, risk, information risk professionals, risk models, model risk effectively, direct hit, quote
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog
 
...overly lengthy document review cycles and possibly streamline handling procedures designed for classified information rather than open standards deliberation As my colleague Bob Blakley wrote in An Auditing Standard: Has this rough beast's hour come round at last? last July, Open Group revived prior work on a specification called X/Open...
 
Tags: common event standard, standard, event standards space, space, standards, common event standards, standards deliberation, cee, cee web site
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog
 
...overly lengthy document review cycles and possibly streamline handling procedures designed for classified information rather than open standards deliberation As my colleague Bob Blakley wrote in ???An Auditing Standard: Has this rough beast's hour come round at last???? last July, Open Group revived prior work on a specification called...
 
Tags: common event standard, standard, event standards space, space, standards, common event standards, standards deliberation, cee, cee web site
 
 
 
 
Expand article

SDL and Web 2.0

2008-02-28 22:26:00 by sdl in The Security Development Lifecycle
 
...overly permissive access lists like * or *.com. Its best to list specific domains wherever possible, or at least follow the same two-dots rule that HTTP cookies have to follow for their domain specifications. This helps to limit the sites that can perform request forgery attacks like the Flickr attack mentioned earlier. If no applications...
 
Tags: web, site, chriss web site, mashups, web mashups, site cookies, persistent cross-site, cookies, benefit anyones web
 
 
 
 
Expand article

Looking for a few good audio production assistants...

2008-03-07 12:59:40 by HASH0x8b438a4 in Blue Box: The VoIP Security Podcast
 
...overly time-sensitive. We want them up as soon as we can, but if it takes some time to do the post-production as you fit it in around other work, that's generally perfectly fine Obviously if you have experience with audio editing that's great. If it's something you've been interested to try your hand with, we're open to having you give it a...
 
Tags: audio production, audio, takes time, takes, time, overly time-sensitive, panel sessions, sessions, mp3 file
 
 
 
 
Expand article

OMG, Security ROI Comes Back - And It is Mad As Hell :-)

2008-03-11 00:58:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...overly restrictive view of the meaning of the word income. The avoidance of potential losses redounds to the bottom line, as does revenue, so that a cost saving is a return on an investment.' Read the whole pro-ROI counter-point here Previous "ROI War" is cataloged here . A new one is upon us? Unholster your handguns, charge the lasers,...
 
Tags: security, roi, security roi war, pro-roi counter-point, roi proponents, information security roi, roi war, issa journal, return
 
 
 
 
Expand article

Looking for a few good audio production assistants...