Archive | Security RSS feed for this section
Help Desk as a Cyber Threat Intel source
For many organizations there is a good source of cyber intelligence right under their nose. Few have have tapped into this resource. It’s your help desk / support desk / client services or what ever you call it. This is the place where users call when they are having computer issues. As it happens sometimes [...]
Continue reading...Cyber Intelligence Challenges
15. November 2012
I was on a discussion panel today at the Annual Advanced Cyber Security Center Conference. The discussion topic was Threat Sharing. We spent a good amount of time discussing challenges when wanting to share threat data, including Indicators of Compromise, outside of your organization. It was a great discussion and worthy of a blog post, [...]
Continue reading...New InfoSec positions open in Maine
11. May 2012
A friend of mine is hiring for several new Security positions in Maine. All positions can be within a 50 mile radius of Portland. $3 Dewey’s anyone??? These positions are: Senior Software Architect (1 opening) Secure Software Engineer (6 openings) Usability & User Interface Specialist (1 opening, 9-12 month temporary position with permanent placement option) [...]
Continue reading...Cyber Janitors? Really?
6. February 2012
DISCLAIMER: I work for the organization within EMC that provides Incident Response. Home sick today so I was catching up on some reading and came across “The Prolierfation of Cyber Janitors” by Jeff Bardin. I have to say that I had to re-read it a couple times to let it sink in. The gist of [...]
Continue reading...APT and attribution
6. October 2011
I read an interesting analysis of the malware involved in the March RSA breach. The analysis was done by J. Oquendo and posted over at Infosec Island. After his analysis of the malware involved he believes that “its inconclusive but points more to RBN than APT.”. Read through his analysis and see what you think. [...]
Continue reading...McAfee acquires NitroSecurity
4. October 2011
Congrats to the team at, NitroSecurity. They were acquired by McAfee according to this press release today: http://www.mcafee.com/us/about/mcafee-nitrosecurity.aspx Nice job guys and girls. It’s good to see a successful exit. –Chris
Continue reading...RIM fix your Blackberry S/MIME experience, please?
19. June 2011
From a mobile device in the enterprise standpoint RIM’s Blackberry devices are extremely popular. Also in the government and military circles it’s a very common platform. There is even a STIG (Security Technical Implementation Guide) published by DISA (Defense Information Systems Agency) to secure the Blackberry Enterprise Server. So why then is the experience so [...]
Continue reading...Some things to look for in your SecurID / Remote Access logs
15. June 2011
The RSA SecurID token has arguably been the defacto second factor authenticator for many years. Despite the recent breach at RSA I do not see many organizations moving to alternate vendors or other second factor technologies, like PKI / SmartCards or telephone based solutions. In the wake of the RSA breach most companies [...]
Continue reading...- Help Desk as a Cyber Threat Intel source
- Cyber Intelligence Challenges
- New InfoSec positions open in Maine
- Cyber Janitors? Really?
- APT and attribution
- McAfee acquires NitroSecurity
- RIM fix your Blackberry S/MIME experience, please?
- Some things to look for in your SecurID / Remote Access logs
- WPScan – WordPress Security Scanner
- Do you digitally sign email?
- Your favorite Mac apps? (8)
- Should I renew my CISSP? (7)
- NAC Panel Discussion: What is the state of NAC? (6)
- Is Data Leak Prevention the next “big thing” in security? (6)
- NitroSecurity files for IPO (5)
- Whitedust.net called it quits? (5)
- Over reliance on industry analysts (4)
- VA loses another PC…36,000 at risk (4)
- Stopping 100% of web proxies? (4)
- Juniper launches a switch line (4)
Latest Videos
InfoSecPodcast tweets
1 month ago
4 months ago
Reading now
17. November 2012
0 Comments