SecurityRatty: tag: would-be

Biometrics would not have prevented SocGen incident

2008-03-07 19:25:37 by Stuart King in Stuart King's Security and Risk Management Blog

An early contender for the biggest load of security tosh of the year comes within the report produced by Société Générale in response to the recent trading fraud scandal. The report identifies a number of actions "as part of a structured plan", and the very first one of those is described as follows: - Strengthening IT security through the...

Tags: controls, procedural controls, report, report identifies, audit controls, biometrics, security tosh, strong identification solutions, computer weekly think-tank

What would happen to you?

2008-06-19 14:22:44 by Doug Woodall in The Spyware Biz Blog

How are you protected if something like this happened? Interesting to think about huh? Maybe some investigating is needed on your employee computer usage guidelines clipped from www.pcworld.com A Misconfigured Laptop, a Wrecked Life Fiola: I will never go to work for them again. I would not work for a company that would not protect its...

Tags: protect, laptop, pcworld, sms, employees, fiola, computer, company, life

Why would anyone use standard WEP? Isn't it super easy to crack & sniff?

2007-01-19 16:01:12 by Editor in Endpoint Security: Translating Policy Into Reality

Using standard WEP is akin to using a pad-lock & chain for securing a bicycle. It keeps the honest people honest. The argument given that WEP is so weak that it's not worth using, isn't completely valid. Using the bike analogy, would you stop using a lock & chain simply because anyone with a set of bolt cutters can defeat them in a second?...

Tags: wep, standard wep, chain simply, chain, bike analogy, pad-lock, lock, completely valid, bolt cutters

Why would anyone use standard WEP? Isn't it super easy to crack & sniff?

2007-01-19 16:01:12 by Editor in Endpoint Security: Translating Policy Into Reality

Using standard WEP is akin to using a pad-lock & chain for securing a bicycle. It keeps the honest people honest. The argument given that WEP is so weak that it's not worth using, isn't completely valid. Using the bike analogy, would you stop using a lock & chain simply because anyone with a set of bolt cutters can defeat them in a second?...

Tags: wep, standard wep, chain simply, chain, bike analogy, pad-lock, lock, completely valid, bolt cutters

Is Technorati relevant anymore?

2008-02-28 22:42:22 by HASH0x8b05bac in StillSecure, After All These Years

I have been thinking more about the RSA Bloggers Meet up that I wrote about yesterday. That got me thinking about how bloggers are so socially interactive and probably explains why we are such suckers for things like Twitter, Facebook, etc. Than I started thinking (I know a lot of thinking going on here, where it goes I don't know) about how...

Tags: technorati, rankings, technorati rankings everyday, technorati tags, technorati anymore, bloggers, rsa bloggers, anymore, blogger

SDL and the XSS Filter, Revisited

2008-09-08 20:18:00 by sdl in The Security Development Lifecycle

Bryan here. Since Steve called me out in his post on the XSS Filter last week, I feel obligated to clarify my position. I believe that the SDL blog is mainly for development teams; after all, development is the D in SDL. Now, development teams are made up of more than just developers. Development teams include everyone involved in the...

Tags: xss, xss filter, persistent xss, server-side xss defense, development teams include, development teams, development, sdl, sdl requirements

Help me with my UTM+ research

2008-03-05 07:42:04 by HASH0x8b60558 in StillSecure, After All These Years

As we continue to develop Cobia here at StillSecure we keep peeling away layers of the onion in the UTM market. It really is a fascinating market. So many of the leading solutions have stressed taking open source security solutions and putting a pretty, easy-to-use face on them. Not that I think there is anything wrong with using open source...

Tags: utm, solutions, source security solutions, utm market, market, people, integration, true integration, waste time

Help me with my UTM+ research

2008-03-05 08:42:04 by ashimmy in StillSecure, After All These Years

As we continue to develop Cobia here at StillSecure we keep peeling away layers of the onion in the UTM market. It really is a fascinating market. So many of the leading solutions have stressed taking open source security solutions and putting a pretty, easy-to-use face on them. Not that I think there is anything wrong with using open source...

Tags: utm, solutions, source security solutions, utm market, market, people, integration, true integration, waste time

The Liquid Bomb

2008-04-03 17:11:11 by schneier in Schneier on Security

We finally have some actual information about the "liquid bomb" that was planned by that London group arrested in 2006: The court heard the bombers intended to use hydrogen peroxide and mix it with a product called Tang, used in soft drinks, to turn it into an explosive They intended to carry it on board disguised as 500ml bottles of Oasis or...

Tags: liquid bomb, food dye, disposable camera, power source, electric element, batteries, distinctive colour, actual information, 500ml bottles

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo