The Top 10 Things To Do While Under DDoS Attack by Barret Lyon
Security
Latest entries to this category....
What to Do While Under a DDOS Attack
January 26th, 2010 · No Comments
Tags: Security
How to Pick a Password
March 9th, 2009 · No Comments
Simple tips for better web password security from Sophos Labs on Vimeo. Sophos’ Graham Cluley explains how to choose a memorable password that is hard to crack. He also recommends using software to help you out: 1Password This is what I use. KeePass Free and open source.
Tags: Security
PhishGuru Training System
August 29th, 2008 · No Comments
PhishGuru PhishGuru is an email-based anti-phishing training system in which training messages are designed to look like phishing messages.
Tags: Security
Take the DoS Survey
August 18th, 2008 · No Comments
Computer Defense has a Denial of Service Survey to research people’s perception of it.
Tags: Security
Our Job Is Threat Reduction
August 15th, 2008 · No Comments
A computer crimes agent from the FBI told Richard Bejtlich that a company can reduce vulnerabilities, but it is up to the FBI to reduce threats. In other words, it is beyond the legal or practical capability of most computer crime victims to investigate, prosecute, and incarcerate threats. Richard points out this CDT press release [...]
Tags: Law and Economics · Natural Law · Security
Firefox Auto-Update Leads the Pack
July 2nd, 2008 · No Comments
Some interesting new research out of ETH Zürich showed that Firefox’s Auto-Update mechanism works the best at keeping users updated with the latest and safest version compared to all other major browsers. The report, Understanding the web browser threat, used Google’s browser data from the last 18 months to figure out a lower bound on [...]
Tags: Firefox · Security · Web · Web Filtering
Top 5 Concepts Every IT Security Professional Must Understand in 2008
March 20th, 2008 · No Comments
Top 5 Concepts Every IT Security Professional Must Understand in 2008
Tags: Security
Don’t Regulate Cyberinsurance Markets
October 3rd, 2007 · 3 Comments
Any such security regulation can only reduce the amount of wealth and comfort the economy produces because it is foisting one man’s values upon another – “for the public good”. At Bejtlich’s recommendation, I read with great interest Cyberinsurance in IT Security Management by Walter S. Baer and Andrew Parkinson. The bulk of the paper [...]
Tags: Economics · Free Markets · Risk · Risk Management · Security · insurance
Jericho Forum Moves Us Closer to Ideal Security
September 25th, 2007 · 4 Comments
The ideal state of security would be when a threat agent gets inside your domain, or gets access to your secrets, property etc., but it doesn’t matter.Hoff kicked off quite the discussion on the Jericho Forum (follow up here with links to the blogs that discussed JF). This slide deck (pdf), by Andrew Yeomans, Chairman [...]
Tags: Frameworks · Jericho Forum · Security · Standards
Newby in the WSJ
August 15th, 2007 · 1 Comment
Rob Newby is my hero today. He got a mention in the WSJ, my favorite paper, (even though I canceled my subscription a couple months ago). He submitted an article to Vauhin Vara after she asked him for “tips that employees can use to do a better job using IT without violating company policies”. She [...]
Tags: Security