SEARCH RESULTS
 
Showing 1-10 of 183 records
 
Expand article

Communicating about risk - part 1

The Article has images
2008-05-05 18:12:14 by JonesJ in RiskAnalys.is
...significant When these conditions exist, the low loss event frequency is driven solely by the low threat event frequency. In other words, were not actively managing loss event frequency; were just trusting to luck. If threat event frequency changes (or an event occurs at all), then significant impact will likely occur. An example might be an...
 
Tags: risk, effective, cost-effective risk management, fragile condition exists, condition, unstable condition, risk qualifiers, risk condition, risk chart perspective
 
 
 
 
Expand article

CollegeInvest external hard drive goes missing

The Article has images
2008-04-30 14:10:46 by Evan Francen in The Breach Blog
...significant technical expertise and specialized software tools Evan] We have read statements like this before. Who is to judge The company has not received any calls from clients saying their identities have been stolen The lost data were stored on an external hard drive used to back up files CollegeInvest discovered the drive was missing...
 
Tags: external hard drive, drive, hard drive, college savings, college savings program, computer hard drive, data, lost data, loan
 
 
 
 
Expand article

Verizon Business has a new report on data breaches

2008-06-12 20:21:39 by Chris Wysopal in Zero in a bit
 
...significant computer security failures. While it is interesting to see counts of malware infected computers from Symantec and vulnerability counts from CVE, this report gets to the actual attacks that organizations need to prevent with their security programs Digging into the full report they say that 59% of the breaches involve hacking. Of...
 
Tags: data breaches, breaches, attacks, layer attacks, vulnerability counts, vulnerability, report, exploit unknown vulnerability, actual attacks
 
 
 
 
Expand article

Logging Poll #5 "Top Logging Challenges" Analysis

The Article has images
2008-02-08 11:06:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
...significant. Still, we can draw some fun conclusions from the data First, what are the top challenges? It is with great regret :-) that I report that the #1 challenge is exactly the one I thought it would be: We collect logs but don't have time/resources to look at them. Yes, automated "analysis challenge" has only become more of a challenge...
 
Tags: enable log collection, log, log management, log analysis tools, collect logs, logs, log security, poll, log volume
 
 
 
 
Expand article

NAC - virtually impossible?

2008-03-18 08:48:40 by HASH0x8b66dc0 in StillSecure, After All These Years
 
...significant problems that virtualization poses for NAC. While there has been a bit of the sky is falling over this, the fact is that today virtual environments are being seen more in server and data centers than on desktops and endpoints. However, make no mistake about it, virtualization is coming to a desktop near you! How is your NAC going...
 
Tags: nac, nac appliance, nac solution, server, virtualization, virtualization poses, virtual machine, virtual machine vendors, physical server
 
 
 
 
Expand article

University of California Irvine students are hit with mysterious breach

The Article has images
2008-04-10 12:14:10 by Evan Francen in The Breach Blog
...significant number of identity theft crimes occurring nationwide, and it is possible that UC Irvine is the victim of one of those criminal enterprises the universitys financial aid office is arranging emergency loans in appropriate amounts for current students who face financial hardship by the delay in receiving their income tax refund...
 
Tags: irvine, irvine police department, police, students, contact campus police, credit agencies, credit, irvine police, medical students
 
 
 
 
Expand article

A Critical Time for Critical Infrastructure: Some Utilities Step Up

2008-03-17 18:07:36 by Posted By: Earl Perkins, Research VP in IT Leaders - Security and Risk Management
 
...significant market with significant vendors, concerns about project scope, business requirements and technology standards, particularly in security, worry some. Concerned utilities have taken a leadership role in those standards efforts, and not just in technology standards. Key processes for developing an AMI program, documenting an...
 
Tags: critical infrastructure, critical, critical infrastructure protection, ami security requirements, ami security, critical infrastructure services, ami, infrastructure, ami-sec
 
 
 
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
...significant point was Does your non-IT management really care about the deliverable? This thought came to me after seeing a few too many emails into the ISO27001 mailing list asking How can I get management to fund ISO 27001 certification? Of course, the value of implementing the ISMS and the value of certification are two separate business...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management
 
 
 
 
Expand article

Laptop stolen from a Quest Diagnostics employee

The Article has images
2008-06-17 12:09:12 by Evan Francen in The Breach Blog
...significant enough to warrant further protection such as encryption coupled with strong authentication. I presume that the laptop was not protected with encryption due to the fact that there is no mention of it. To me, the risk seems significant enough The personal data includes the name, address and social security number At this time we...
 
Tags: information, personal information, sensitive confidential information, identifiable information, breach arose, breach, confidential information, breach description, security breach
 
 
 
 
Expand article

"many of Colt's clients" affected by breach, CNET included

The Article has images
2008-06-25 11:25:20 by Evan Francen in The Breach Blog