SEARCH RESULTS
 
Showing 1-10 of 43 records
 
Expand article

Threat Modeling Self Checks and Rules of Thumb

2007-10-22 21:04:01 by sdl in The Security Development Lifecycle
 
...thumb (lots of rules of thumb) about things we often see wrong in diagrams Don't have data sinks: you write the data for a reason. Show who uses it Data cant move itself from one data store to another: show the process that moves it Larry Osterman has some in his blog post, " Threat Modeling Rules of Thumb " I helped edit those, but want to...
 
Tags: thumb, threat, rules, people threat, data, people, data sinks, thumb encourage flow, actual software
 
 
 
 
Expand article

File Systems and thumb drives: Choosing between FAT16, FAT32 and NTFS to get a faster USB Flash Drive

2007-10-06 21:22:58 by Editor in Irongeek's Security Site
 
File Systems and thumb drives: Choosing between FAT16, FAT32 and NTFS to get a faster USB Flash Drive What file system should you choose to speed up your thumb drive? Read on
 
Tags: thumb, file systems, thumb drive, ntfs, fat32, fat16, file system, choose, speed
 
 
 
 
Expand article

Thumb Sucking: Automatically copying data off of USB flash drives

2007-10-16 01:10:32 by Editor in Irongeek's Security Site
 
New Script: Thumb Suck Just a quick script I wrote for pen-testing. Think of it as the reverse of Dosk3n's tutorial. By the way, two days till the Louisville InfoSec 2007 Conference , and three till PhreakNIC
 
Tags: script, quick script, till phreaknic, thumb suck, louisville infosec, days till, dosk3n, reverse, tutorial
 
 
 
 
Expand article

Iowa DNR loses personal information on 7,000

The Article has images
2007-12-19 14:22:00 by Evan Francen in The Breach Blog
...thumb (flash) drive containing sensitive personal information belonging to DNR waster water and drinking water permit and certification applicants Reference URL KCRG-TV News Story Radio Iowa News Story The Des Moines Register Report Credit Mike Wagner, Managing Editor with KCRG-TV News Response From the online sources cited above A...
 
Tags: iowa dnr, iowa, iowa dnr decides, iowa dnr lost, iowa department, dnr, computer flash drive, drive, information
 
 
 
 
Expand article

BJs Wholesale Club's noble intentions

The Article has images
2008-02-10 23:07:10 by Evan Francen in The Breach Blog
...thumb drive was in the midst of changing Social Security number-based records to employee identification numbers at the time of the loss Reference URL The New Hampshire State Attorney General breach notification Report Credit The New Hampshire State Attorney General Response From the online source cited above We recently undertook a...
 
Tags: breach description, breach, bjs wholesale club, security breach, wholesale club, sensitive personal information, personal information, security, security practices
 
 
 
 
Expand article

Nevada Department of Public Safety applicants exposed

The Article has images
2008-03-07 10:20:48 by Evan Francen in The Breach Blog
...thumb drive) that was owned by an employee of CSS The DPS is in the process of notifying the 109 applicants that personal information about them, including their social security numbers, addresses and background check information about them has been lost The DPS has ordered CSS to cease all background check activities and to return all...
 
Tags: personal information, lost personal information, sensitive personal information, nevada, confidential personal information, information, nevada payroll information, nevada department, nevada dps
 
 
 
 
Expand article

Stolen Wendy's laptop affects 1,092 employees

The Article has images
2008-01-03 14:08:27 by Evan Francen in The Breach Blog
...thumb drives, CDs, DVDs, laptops, etc.) without encryption (and other controls) is not in policy, it certainly should be! Information security training and awareness also appear to be lacking Past Breaches Unknown
 
Tags: sensitive personal information, personal information, information, information security, confidential information, information security policies, wendy, breach description, breach
 
 
 
 
Expand article

Missing memory stick turns up five months later

The Article has images
2008-01-23 16:44:36 by Evan Francen in The Breach Blog
...thumb drive and took it out of the office We would like to reassure all our customers that Specsavers patient records are kept confidential and are 100 per cent secure at all times and that these records were part of the Manchester Diabetic Screening Scheme, not Specsavers' customer records Evan] Say what? "100 per cent secure at all...
 
Tags: information security, information, information security assessments, memory stick, security, specsaver diabetic patients, patients, computer memory stick, manchester patients
 
 
 
 
Expand article

How My Wife Broke Her Crack Pipe and I Got a Sore Thumb

2008-02-06 13:45:43 by mcurphey in Mark Curphey - SecurityBuddha.com
 
On Sunday I woke up with sore thumbs (and a stonking hangover). The night before my wife smashed her crack pipe on the kitchen floor. Here is the story. My security friend Dave Cole (ex-Foundstoner and now product manager at Symantec) came to stay on Friday. Disco Dave from the security bullshit cartoons no less! My wife
 
Tags: wife, crack pipe, security bullshit cartoons, disco dave, sore thumbs, product manager, sunday, symantec, story
 
 
 
 
Expand article

Wrapping up Threat Modeling

2008-02-14 22:51:35 by sdl in The Security Development Lifecycle
 
...thumb to give people confidence theyre on the right trail. Weve talked a very little bit about how to customize the process for your own needs, and where that customization can be dangerous All of this has come out of looking at our threat modeling activity as a human activity, and asking how we can best shape it to help people get to the...