SEARCH RESULTS
 
Showing 1-10 of 30 records
 
Expand article

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle
 
...violations, read access violations on EIP, /GS and NX related access violations and read access violations where any one of the following was true The access violation happens on a rep assembly instruction (on an Intel processor) where the count register (ecx) is large The access violation happens on a mov instruction where the result is used...
 
Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions
 
 
 
 
Expand article

Web 2.0 SecureD. DelivereD. :)

2007-10-13 09:29:44 by RaviC in Musings on Information Security
 
...Violations: I don't have to say much about this. Web 2.0 provides a platform for such violations and magnifies the impact [Record label sues Napster, Viacom sues Google over YouTube clips 5. Other Social Problems: People can interact on-line in ways that was not possible before. These new interactions create new set of social problems and...
 
Tags: web, web based technologies, call web, upload personal information, personal information, security, users, security awareness education, ensure users
 
 
 
 
Expand article

A breach that hits home with 2008 presidential candidates

The Article has images
2008-03-22 13:16:50 by Evan Francen in The Breach Blog
...violations of McCain and Clinton's passport files were not discovered until Friday, after officials were made aware of the unauthorized access of Obama's records and a separate search was conducted Evan] Are we safe to assume that the unauthorized access to McCain and Clinton's passport files would have gone unnoticed without the discovery of...
 
Tags: stanley subcontractor employees, subcontractor employees, subcontractor, confidential information, information, information security, stanley, personal information, employees
 
 
 
 
Expand article

Not 'who you gonna run to" but "who you gonna call"?

The Article has images
2008-05-30 20:50:26 by HASH0x8b41b20 in StillSecure, After All These Years
...violations because "thatd make the Council responsible for acting on those reports. And thats something they really, really dont want." So are the PCI regs toothless. I wouldn't exactly go that far. I think we have to draw a distinction about having the power to act versus actually exercising that power. Mike is right, so far the PCI council...
 
Tags: pci regs toothless, pci regs, pci, pci council, mike, mike fratto, report violations, report, martin
 
 
 
 
Expand article

Security - Passive versus active response

2008-06-03 16:52:01 by HASH0x84718b4 in StillSecure, After All These Years
 
...violations to actively blocking such violations For me the active versus passive mode of security is one that transcends different layers of security. Whether we are talking about IDS passive response versus IPS active response, vulnerability scanning passively assessing and reporting to NAC testing and blocking access, to now database...
 
Tags: security, security conference, security technology, security solution, time database security, security vendors, database security, data access violations, violations
 
 
 
 
Expand article

Security - Passive versus active response

2008-06-03 17:51:52 by ashimmy in StillSecure, After All These Years
 
...violations to actively blocking such violations For me the active versus passive mode of security is one that transcends different layers of security. Whether we are talking about IDS passive response versus IPS active response, vulnerability scanning passively assessing and reporting to NAC testing and blocking access, to now database...
 
Tags: security, security conference, security technology, security solution, time database security, security vendors, database security, data access violations, violations
 
 
 
 
Expand article

Dems were for Web 2.0 before they were against it

2008-07-15 20:57:29 by Gunnar Peterson in 1 Raindrop
 
...violations, and then bring in draconian enforcement of enough violations to have a chilling effect. This will also allow the Rules Committee to wield enforcement selectively as a stick. Representative Capuano, who has described the internet as a necessary evil, would be one of the enforcers and he is part of a larger Democratic House...
 
Tags: house, house regulations, house project, internet, web, internet adapt, select official newspapers, long-defunct fairness doctrine, representative capuano
 
 
 
 
Expand article

Segregation of data protection duties

2007-12-17 10:12:06 by Jen Albornoz Mulligan in Security & Risk Management
 
Business Week recently published a profile of Usama Fayyad , the chief data officer of Yahoo!. In this profile they highlight that his responsibilities are make both sense and money from the vast amounts of information Yahoo collects on the doings of 500 million people who visit its site every month Fayyad... [is] engaged in a major battle over...
 
Tags: protect information, information, business, information yahoo collects, additional business risks, yahoo, chief privacy officer, business week recently, usama fayyad
 
 
 
 
Expand article

10 things you should be doing to protect your company against email risks

2007-11-02 23:30:15 by Administrator in Email security & compliance blog
 
...violations and determine which rules are being violated and by which users. On the basis of this information you can adjust your email policy, tweak your email filtering software, or schedule further trainings to re-iterate certain email policy rules
 
Tags: policy, email policy violations, email-policy, email policy rules, rules, email policy, risks, email risks, email
 
 
 
 
Expand article

Spamhaus litigation: Will spammers get a second wind?