Archives

Archive for July, 2010

2 Ways to Get the Most Out of Security Awareness Training

( End-user Focused andGeneral InfoSec andInformation Security Training )

A good security training and awareness program is one of, if not the most important part of any effective information security program. After all, people are the ones that cause security problems in the first place and, ultimately, people are the ones that have to deal with them. Not to mention the fact that people [...]

(to view associated entry please click here)

Using Honeypots to Track Attackers: Eric Romang’s FileAve.com Report

( General InfoSec )

One of MSI’s Twitter friends, Eric Romang, recently wrote a deep dive about PHP RFI attacks that used the fileave.com service. The write-up was based on a large set of honeypot data that dates back several years! The data is interesting and compelling and goes a long way to show value derived from the use [...]

(to view associated entry please click here)

An Explanation of Our HoneyPoint Internet Threat Monitoring Environment #HITME #security

( HoneyPoint )

One of the least understood parts of MicroSolved is how the HoneyPoint Internet Threat Monitoring Environment (#HITME) data is used to better protect our customers. The engineers have asked me to drop this line into the newsletter and give you a “bees knees” perspective of how it works! First, if you don’t know about the [...]

(to view associated entry please click here)

A Quick Word on LiveCD’s and Bootable USB for Consumers

( End-user Focused )

I gave a quick interview today for a magazine article to be printed in late July. The topic was pretty interesting; it revolved around consumer fears about online banking. The key point of the discussion was that financial organizations are doing a ton of work on securing your data and their systems from attack. The [...]

(to view associated entry please click here)

Review of Puppy Linux 5.0

( End-user Focused andGeneral InfoSec andHoneyPoint )

Lucid Puppy Linux 5.0 was released back in May of 2010, but as one of my favorite distros, I have been playing with it heavily since then. I have been so impressed with the new version that I wanted to take a moment and write a quick review of this release. You can find the [...]

(to view associated entry please click here)

Fighting Second Stage Compromises

( 80/20 Rule for Information Security andEmerging Threats andGeneral InfoSec andHoneyPoint )

Right now, most organizations are fighting a losing battle against initial stage compromises. Malware, bots and client side attacks are eating many security programs alive. The security team is having a nearly impossible time keeping up with the onslaught and end-user systems are falling left and right in many organizations. Worse, security teams that are [...]

(to view associated entry please click here)

New Information Security Blogroll Added

( General InfoSec )

We just updated our blogroll to include some of the best information security blogs in blogosphere. Take a look on the left to discover them!

(to view associated entry please click here)