SEARCH RESULTS
 
Showing 1-10 of 1000 records
 
Expand article

How Well "See Something, Say Something" Actually Works

2008-01-08 07:53:50 by schneier in Schneier on Security
 
I've written about the "War on the Unexpected," and how normal people can't tell the difference: All they know is that something makes them uneasy, usually based on fear, media hype, or just something being different If you ask amateurs to act as front-line security personnel, you shouldn't be surprised when you get amateur security Yesterday...
 
Tags: line, front-line security personnel, calls, hot line, calls led, people, suspicious people, browne, normal people
 
 
 
 
Expand article

Unauthorized Well Fargo Transactions Endanger Private Details Of 7000 Clinets

2008-08-08 21:35:58 by CyberInsecure in CyberInsecure.com
 
According to New Hampshire State Attorney General breach notification, a significant number of unauthorized transactions had been made using Well Fargos access codes. Wells Fargo Bank, N.A. has been advised by a reseller of consumer data, including consumer credit bureau data, of suspicious transactions made using Wells Fargo access codes. The...
 
Tags: transactions, fargo access codes, suspicious transactions, fargos access codes, breach notification, consumer data, fargo bank, significant, attorney
 
 
 
 
Expand article

It seems the calvary was held up at the Little Big Horn, oh well

The Article has images
2008-01-29 20:04:24 by HASH0x8b02400 in StillSecure, After All These Years
Just a little while ago I wrote about the Trend Micro - Barracuda Networks legal tussle where Barracuda is alleging Trend with patent trolling with its controversial patent '600. I made reference to the fact that why didn't Trend go after the big boys. I wanted to know where was the calvary coming to the rescue here, not leaving Barracuda to...
 
Tags: trend micro, trend, controversial patent, patent, barracuda, calvary, dean, dean drako claims, sued
 
 
 
 
Expand article

Security bloggers meet up recap

2008-04-09 20:51:14 by ashimmy in StillSecure, After All These Years
 
Well the RSA security bloggers meet up 2008 is in the books. The party was a smashing success! Before I go any further let me extend thanks to Jennifer Leggio of Fortinet for all of her hard work in putting together a great party. Also going over and beyond was StillSecure's Sonya Caprio. The organization of this party went far beyond anything...
 
Tags: security, bloggers, rsa security bloggers, rsa, individual bloggers, martin, martin mckeay, party, media type bloggers
 
 
 
 
Expand article

Coding Spyware and Malware for Hire

The Article has images
2008-07-22 03:52:14 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
What type of antivirus evasion do you want today? For the past several years, we have been witnessing the emerging customerization applied in malware and spyware for hire services. What used to be a situation where the malware authors would code and then start promoting a piece of malware including features that he thinks his potential customers...
 
Tags: malware, malware author, malware authors, malware binaries, malware attacks, ftp, ftp user, collects, malware industry
 
 
 
 
Expand article

ScienceLogics 5-Year Anniversary

The Article has images
2008-08-20 22:39:16 by Julia Lim in ScienceLogic
August 2003. The largest blackout in U.S. history darkens the Northeast and Midwest, the Blaster worm has been unleashed and Madonna and Britney create a stir at the 2003 MTV Music Video Awards . In the midst of this hot summer madness, ScienceLogic was founded To kick off our celebration of our first five years, we asked ScienceLogic founders...
 
Tags: em7 completely flips, em7, network management, network management tools, em7 meta-appliance product, sciencelogic team, team, front, product front-end
 
 
 
 
Expand article

Getting into the Flow With Threat Modeling

The Article has images
2007-10-11 23:25:00 by sdl in The Security Development Lifecycle
Adam Shostack again, with the third in our series on threat modeling. In this post, I want to explain one of the lenses that seemed to help us focus threat modeling, and how Ive applied it The concept of flow originated with Mihaly Csikszentmihalyi. It refers to a state where people are energetically involved with what theyre doing. Seeing this...
 
Tags: threat, people develop skills, people, challenge people, flow, sdl threat, entire threat model, threat model, guide people
 
 
 
 
Expand article

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle
 
Scott Lambert here. I work on the Security Engineering Tools team where we're responsible for researching, developing and publishing tools to internal product and service teams. These include fuzzing, binary analysis and attack surface analysis tools Previously, James Whittaker posted a blog entry on Testing in the SDL in which he mentioned that...
 
Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions
 
 
 
 
Expand article

Stiennon wants to know - it is all about execution

2008-03-21 01:15:44 by HASH0x8b48134 in StillSecure, After All These Years
 
As some of you may know Richard Stiennon and I have had our disagreements over the years around NAC. But say what you want about Rich, at least he had the stones to ask what many of you would probably like to ask but wouldn't. Here is Rich's comment and my reply Posted by Stiennon: OK, so one well regarded security company turns out not to be...
 
Tags: stiennon, nac, richard nac, ignorant, ignorant richard, richard, richard stiennon, top richard, nac companies