Category: best practices

attackers are doing their homework – are you?

Some spear phishing wisdom from Security BSides SFO today… Rohyt Belani of PhishMe told an interesting story highlighting just how much research attackers do when…

Continue Reading

java: threat or menace?

It has been a pretty bad few weeks for Oracle’s Java language – zero day vulns, followed by an out of band patch, with another…

Continue Reading

time to strengthen your human firewall

For the past few years, the Social Engineering Capture the Flag contest has been a highlight of the Defcon security conference.  The report from the…

Continue Reading

more (and better) social media guidance from the nlrb

A while back, I wrote about how US organizations writing social media policies need to beware of the National Labor Relations Board’s requirements that these…

Continue Reading

sec breach reporting requirements for publicly traded companies

If you are an information professional at a publicly traded company, I would strongly suggest reading a recent blog post by Richard Bejtlich about the…

Continue Reading

is your company’s social media policy legal?

As the line between work and personal life becomes thinner and thinner, employee use of social media sites has become a more and more important…

Continue Reading

apple’s java update addresses flashback – and more

Apple has been getting some grief over the past week or so for their handling of the “FlashBack” trojan which infected over 500,000 Mac users…

Continue Reading

your printers may not explode, but they might give hackers entree into your networks

So, remember a few weeks back, when the tech press got really silly, warning us that hackers could set our HP printers on fire remotely?…

Continue Reading

beware the thumb (drive) of doom

So, you just found a USB thumb drive that someone left behind on a bus/train/taxi/spaceship… read this article BEFORE you plug it in to your…

Continue Reading

stale java

I hate Java.  Not the country or the beverage, but the programming language.  Actually, not so much the language, but the way that it is…

Continue Reading