Email Address:
Phishers are re-working old attacks and coming up with some variations on past attacks as they continue to try to scam social networking site users. This isn't new, but as Symantec points out, the attacks are on the rise.
Consolidating account information in a single service is appealing - log into one place and get a snap shot of your financial state. Sounds good in theory, but the practice went wrong for Rudder, a free personal financial service.
Denial of service attacks that flood a site with requests can be blunted by blocking users sending large number of requests. More advanced techniques send a small number of resource intensive requests. Researchers at IBM and Georgia Institute of Technology have created a way to deal with these attacks, too.
Continue reading New Technique for Denying Denial of Service Attacks...
An interesting quote in a USA Today story on security company acquisitions speaks to the increasing level of concern about current levels of information security.
Continue reading Business Needs to Get Out Ahead of Security Regulation...
Symantec has been following the trends in Facebook phishing and the current wave of attacks looks similar to previous ones. Of course no one goes to this much trouble to vandalize Facebook pages, there is money to be made (stolen) at the end of the game.
BusinessWeek asks what's Holding back Google Apps?. The answer is the same thing that always kills deals to move corporate data to the cloud: control.
Continue reading Key to Online Apps Success: Control, Control, Control...
The New York Times has a cybersecurity-with-a-human-interest-angle story well worth reading. It covers some of the work of Rafal Rohozinski, a social scientist turned cyber-investigator.
Continue reading Open Source Intelligence and Cyberspying...
Adobe has released patches for Adobe Reader on multiple platforms to correct vulnerability that could allow attackers to take control of a machine.
Continue reading Critical Patch Available for Adobe Reader, Multiple Platforms...
Dan Sullivan is a systems architect with 20 years of IT experience that includes engagements in enterprise security, application design, and systems architecture. His experience includes a broad range of industries, including financial services, manufacturing, government, retail, gas and oil production, power generation, and education. Dan’s security-related project work has ranged from requirements analysis for enterprise information security to designing and implementing security for database applications and enterprise portals. Dan has written about information security and other enterprise information management topics for Business Security Advisor, DM Review, Intelligent Enterprise, and E-Business Advisor. You can contact Dan at: dan_sullivan@realtimepublishers.net
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine