Posted in best practices CSO deep thoughts

The Practitioner’s Perspective on Cybersecurity – June 2015

On June 16th, 2015, I was privileged to participate in a panel entitled “The Practitioner’s¬†Perspective on Cybersecurity” at the SmartBrief…

Posted in best practices CSO deep thoughts malware online security social engineering

no, it’s not the end user’s fault

According to a survey released by endpoint security solution vendor Bromium, 79 percent of surveyed information security professionals view end…

Posted in best practices hacks malware useful stuff

quick and dirty malware analysis

There are a number of web based tools that allow you to safely analyze the behavior of potentially malicious files…

Posted in awareness best practices online security

video: how to pick a proper password

When your co workers or family members ask what to do about passwords, have them watch this brief, easy to…

Posted in best practices CSO

racing the patch clock

When previously undisclosed vulnerabilities in the Drupal web content management system used by many large companies to manage their web…

Posted in best practices cloud computing

dropbox sharing flaw exposes personal documents and (unencrypted) cloud risks

A security vulnerability in the way that online storage provider DropBox (and possibly rival Box) handles links to shared files…

Posted in best practices online security worst practices

apple security fail leaves email attachments unprotected

One of the nice things about Apple’s iOS platform is the “hardware level encryption” that protects “all of the information…

Posted in authentication best practices

a new, saner approach to password policies

In this article over at Ars Technica, we get the scoop on Standford University’s new password policies which vary the…

Posted in best practices hacks online security

heartbleed attack on ssl vpns

Heartbleed strikes again… according to respected security consulting firm Mandiant, one of its corporate customers’ SSL VPN appliances was compromised…

Posted in awareness best practices CSO

Keep your users informed with SANS’ OUCH! newsletter

  SANS recently published the latest edition of their “OUCH!” security newsletter for end users – this month’s topic is…