RSS Alerts
Home
The Magazine
Alternative Editions
Related Publications
Magazine Subscription
Advertising
Contacts
Links
E-Newsletter
Sign-Up
Latest Issue
Virtual Conference
Podcasts/ Newscasts
Webinars
Downloads/ White Papers
Blog
News
Application Security
Biometrics
Business Continuity and Disaster Recovery
Cloud Computing
Compliance and Policy
Data Loss
Encryption
Identity and Access Management
Internet and Network Security
IT Forensics
Malware and Hardware Security
Public Sector
Security Training and Education
Wireless and Mobile Security
Events & Training
Latest News
Black Hat: General Michael Hayden unsurprised at cyber warfare
In his keynote at Black Hat, 29th July 2010, retired General Michael Hayden, who served as director of the CIA and deputy director of National Intelligence, says cyber warfare was inevitable considering the internet has not been built with defense in mind.
Black Hat: Google knows more about citizens than Kim Jon-il
In his thought-provoking session, entitled ‘Changing threats to privacy: From TIA to Google’, Maxie Marlinspike, researcher with the Institute for Disruptive Studies, declared that surveillance is at an all-time high, and privacy is at an all-time low.
Black Hat: Sixty percent of information security professionals believe they’re underpaid
In a session entitled ‘How to manage your infosec career’ at the Black Hat conference in Las Vegas, 29th July 2010, Lee Kushner, president of L.J.Kushner & Associates, executive recruitment, and Mike Murray, managing partner, Mad Security, shared with the audience their advice on how to effectively manage a career in information security.
ISF shares its security risk predictions
Rather than consulting a crystal ball, the Information Security Forum (ISF) looked to experts in the field – including those from its member organizations – to develop a set of security risk predictions for 2012 and beyond.
BlackBerry faces ban in India
Research In Motion's (RIM) BlackBerry service may be banned in India if the company does not resolve government concerns over security.
view more
Podcasts
The True Task of the New Federal Cyber Czar
Danny Bradbury, Infosecurity's Bureau-Chief, participates in this discussion on the task of the new Federal cyber czar
view more
Webinars
Networking Data Archiving – it’s a whole new data retention ballgame
Organizations around the world are using social networking to better their customer relationships (Facebook), prospect for new business (LinkedIn) and promote their events (Twitter) but what about the archiving and retention of these business communications? You don’t archive? So why bother archiving your email? It’s all about legal and regulatory issues. And then there’s the problem of litigation.
Social Networking: Roadblocks, Risks, Rewards
Facebook and Twitter usage in the workplace is going through the roof, causing major security headaches at all levels, both inside and outside the boardroom. The security issues that Web 2.0 services create are far from simple - managers need to understand not just the IT risks of data leakage, malware propagation, but also the compliance and legislative requirements.
How email archiving ‘in-the-cloud’ can benefit your organisation: The evolution of the archiving market
Email use has exploded and is now the primary means of communication for organisations. Vital documents and information are passed to and from employees and the current regulatory environment means that this content needs to be archived.
Solving the PCI Security Puzzle: Putting the Access Control, Privilege Management, and Server Protection Pieces Together
Complying with PCI regulations in heterogeneous environments can be a complex and costly initiative. Leveraging your existing IT infrastructure offers a simpler and cost-effective way to address the sections of the Payment Card Industry’s Data Security Standard (PCI DSS) that matter most to IT managers – and without sacrificing manageability and productivity. Join our panel of experts for an informative webinar to learn how you can address the regulatory requirements of the PCI standards by linking all your access rights, privileges, and audit logs into a single, definitive Active Directory identity.
view more
Blogs
Microsoft and Adobe: Collaboration Against Threats
Posted by
Roger Halbheer
• 28 July 2010
You know my opinion on collaboration between countries, on public-private-partnerships, as well as on collaboration between companies. For quite a while we have been running a program calle...
tags: Vulnerabilities
rated:
WPA2 Exposed with 'Hole 196' Vulnerability
Posted by
Ajay Gupta
• 23 July 2010
Until now, the WPA security version known as ‘WPA2 (AES encryption) with 802.1x authentication’ was considered as one of most secure WiFi deployments by most wireless security experts...
tags: WiFi, WPA2, Hole 196, TKIP, WiFi Security
rated:
It's all about WHO
Posted by
Geoff Webb
• 08 July 2010
“I KEEP six honest serving-men (They taught me all I knew); Their names are What and Why and When And How and Where and Who.” – Rudyard Kipling As I look at t...
tags: Security, identity, access management
rated:
Cloud Computing: Benefits and Risks of Moving Federal IT into the Cloud
Posted by
Roger Halbheer
• 06 July 2010
July 1st: Scott Charney, Corporate Vice President Trustworthy Computing was testifying at a hearing of the House Committee on Oversight and Government Reform. Basically the hearing was on the benefits...
tags: Cloud, Governments
rated:
Secure WiFi Networks: WiFi Alliance and Legal Authorities Coming Forward
Posted by
Ajay Gupta
• 05 July 2010
WiFi, today, has become a near ubiquitous technology, used by most of us, with our WiFi enabled gadgets, while we are at offices, homes, public places or while traveling. However, awareness ab...
tags: WiFi Security, WiFi Alliance, WiFi, WEP, WPA, WPA2, Ad hoc
rated:
view more
Features
Comment: Raising the security standard
Comment: Raising the security standard
Idappcom CEO Ray Bryant discusses how to step up your security defenses by measuring current effectiveness and enhancing your security solutions.
Members' Content
Running the Right Risks
Running the Right Risks
Standards cover much of the field of information risk management, but there is an art to the rational understanding and mitigation of risk that is more about skill than knowledge. Brian McKenna uncovers how the discipline can be practiced with a cool head and a calm stomach
Members' Content
Comment: A logical shortfall for the ‘complete CSO’
Comment: A logical shortfall for the ‘complete CSO’
Meridian’s Paul Johnson examines the differences between CSO and CISO and makes the case as to why small and medium-sized organizations must consider logical security training if they choose to employ an all-encompassing CSO, rather than separating logical security responsibilities out to a CISO.
Members' Content
Information Security: Read All About It
Information Security: Read All About It
Ill news travels quick and far, or so the saying goes. But how well is security-related news covered in the press, and what are people writing about? Danny Bradbury investigates
Members' Content
view more
Downloads
Application Whitelisting Puts HIPS in the Recycle Bin
This analyst-authored whitepaper outlines how Application Whitelisting protects against new advanced persistent threats, automates real-time visibility of actual application usage and more.
Desktop Software Lockdown: Prevent Targeted Attacks
Preventing the installation and execution of unauthorized software should be a high priority for any IT security conscious organization. Allowing users to install or execute unauthorized software can expose an organization to a variety of security and legal risks, not to mention the burden of increased support costs. This paper will compare and contrast a variety of techniques for detecting and preventing unauthorized code.
Cloud Application Security
Cloud computing promises to deliver IT infrastructure services via the Internet on an “as-needed, pay-per-use” basis. Cloud resources can be provisioned on-the-fly to support specific project needs, or they can be leveraged on a longer-term basis to add capability to an existing IT infrastructure. For some companies, cloud resources even serve as the entire IT infrastructure because of the ease and speed of deployment and cost-effectiveness compared to deploying an in-house infrastructure.
The Challenges of Automated Application Assessments in a Web 2.0 World
This white paper, written by two security experts from Stach & Liu, Rob Ragan and Vincent Liu, describes the challenges of automated penetration testing or application scanning of Web 2.0 applications.
Database Security and Compliance - Preparing for 2010 (Annual Study)
This study reveals some eye-opening database security and compliance trends based on research from 175 enterprise organizations.
view more
Members' Login
Email Address
Password
Forgotten login?
Not a member?
close
Filter Content by geographic state
Select a state by clicking...
select a state:
Please choose
Alabama
Alaska
Arizona
Arkansas
California
Colorado
Connecticut
Delaware
Florida
Georgia
Hawaii
Idaho
Illinois
Indiana
Iowa
Kansas
Kentucky
Louisiana
Maine
Maryland
Massachusetts
Michigan
Minnesota
Mississippi
Missouri
Montana
Nebraska
Nevada
New Hampshire
New Jersey
New Mexico
New York
North Carolina
North Dakota
Ohio
Oklahoma
Oregon
Pennsylvania
Rhode Island
South Carolina
South Dakota
Tennessee
Texas
Utah
Vermont
Virginia
Washington
West Virginia
Wisconsin
Wyoming
Current state : Not selected.