PDA

View Full Version : IT Security RSS

  1. They call it Cyber Monday (but Tuesday’s just as bad)*
  2. SecLists Archive
  3. Data sanitization
  4. DataLossDB
  5. Pig hackers
  6. Botnets? Not a problem...
  7. US cyber policy review
  8. Social armour
  9. Psych and sec
  10. California Shakeout
  11. Security awareness video
  12. US online fraud
  13. Avoiding a Project Ambush
  14. Free licence
  15. OnguardOnline.Gov
  16. DHS cybertips
  17. What Is The "Best" Password Policy?
  18. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  19. Cartoon AES
  20. Another "Cat and Mouse fight" or... Tracking down a botnet
  21. It Takes an (ISC)² Member
  22. Improving the Quality of the (ISC)² Blog
  23. Weekly Summary of the "DHS Daily Open Source Infrastructure Report
  24. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  25. Weekly Summary of the "DHS Daily Open Source Infrastructure Report
  26. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  27. Microsoft Security Essentials
  28. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  29. Ant Security
  30. DoD IA Policy Chart
  31. Some Background Notes on the Consensus Audit Guidelines (CAG)
  32. Cloud Computing - My concerns
  33. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  34. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  35. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  36. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  37. Bundling Security with the OS
  38. Should the CISSP CBK be improved to place greater emphasis on “human factors” in info
  39. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  40. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  41. Add "human factors"? No.
  42. Should the CISSP CBK be expanded to cover "human factors" in security?
  43. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  44. Part 1: Identify and Reduce Attack Surface in Applications
  45. Defending Information Assets by Reducing the Attack Surface
  46. Are federal agencies receiving mixed messages on information security?
  47. Treating risks
  48. Videos from Team Cymru
  49. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  50. Security Maxims
  51. TCP covert channel
  52. DOCSIS introduction
  53. Praxiom ISO 27001
  54. Guidelines for social media
  55. Enigma simulators
  56. Economics against security
  57. Social network de-anonymizing
  58. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  59. Calabrese’s Razor Metric
  60. Passwords Re-examined
  61. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  62. Viruses Revealed online
  63. Are policies mandatory and guidelines optional?
  64. Primary Lessons Learned from the TSA Laptop Mess (Part 2)
  65. Some Background Notes on the Common Audit Guidelines (CAG)
  66. Guessing SSNs
  67. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  68. CERT-in-a-box
  69. ENISA CSIRT guide
  70. Security Economics
  71. Tempest
  72. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  73. Passwords are dead - long live passwords
  74. A Hidden Danger in Cloud Computing
  75. The folly of annual "awareness training"
  76. Reflections on the Comprehensive National Cybersecurity Initiative
  77. Bandwidth Caps Means Bad Security
  78. Expectations for Computer Security Incident Response
  79. US Cybercrime site
  80. Open Source Computer Forensics Manual
  81. Don't Sue Me, Sue the Auditor
  82. Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
  83. Managing Information Security in an Economic Downturn
  84. Sifting Through the Chaff to Find the Wheat
  85. You're overqualified
  86. Iso 27000
  87. Paying it Forward
  88. Is U.S. ICE the New FISMA?
  89. The Missing Vials
  90. The Promises and Peril of Twitter
  91. Proceeds of crime
  92. Childnet International
  93. Impact of Economic Downturn
  94. Telefônica Brasil hit by a massive DNS attack
  95. Twitter feed
  96. IT Security Essential Body of Knowledge (EBK)
  97. Building Security In Maturity Model (BSIMM)
  98. Diagramming a Secure Connection
  99. Information Technology Infrastructure Library (ITIL)
  100. US Congress PCI hearings
  101. The Insecure Air Freshener
  102. GhostNet
  103. Security- Beyond Compliance
  104. Computer Re-use Optimisation Project
  105. NIST SP800-16 - revised draft security training standard
  106. Understanding the Web browser threat
  107. Data Normalization
  108. Spellcheckers creating disaster
  109. Secure data erasure
  110. DHS Cybersecurity help/resource
  111. Presenting risk
  112. The BBC's Botnet
  113. Moving from Compliance to Measurable Security
  114. The New Federal CIO Announced
  115. Sumitomo scammers guilty
  116. Consensus Audit Guidelines - What is the consensus?
  117. You Oughta Know Better!
  118. Ethical Dilema
  119. Revising Enterprise Telework and Remote Access
  120. Initial report of the Fast Flux Hosting Working Group of the GNSO
  121. Resources and references
  122. Injecting the Common into Security
  123. How to spot the next big thing that spots next big things
  124. Disaster Management Canada
  125. BC (Canada) Provincial Emergency Program Hazard Plans
  126. Read it and weep that you don't have a larger training budget ...
  127. NIST Special Publication (SP) 800-53 Rev. 3 (Initial Public Draft)
  128. The crypto hamster wheel
  129. My CISM exam result
  130. Google's Self-Inflicted Denial-of-Service Attack
  131. In-Session Phishing
  132. A Mistaken Conviction Based on Digital Forensics – Part 2 – The Trial, Day 1
  133. What Determines an "Excellent" Security Model?
  134. Common sense and separation of systems
  135. A Mistaken Conviction Based on Digital Forensics – Part 1.5 – On Good Morning America
  136. Fighting Against Phishing Scams
  137. Using SIEM tools for Fraud Detection
  138. Phishing attack disguised as message from FDIC
  139. Where is the Security in Depth?
  140. More resources ...
  141. Laughter - the best medicine
  142. Interview with an adware author
  143. A Mistaken Conviction Based on Digital Forensics – Part 1 – Pretrial
  144. Keeping Up-to-Date on a Daily Basis
  145. Disk encryption driver hole exposes encryption key
  146. Mitre/SANS Top 25 Programming Errors
  147. Rootkit detection and protection products and sites
  148. Mailing lists, news feeds, and similar resources
  149. Software Security Top 10 Surprises
  150. Shouting at hard disks
  151. Cambridge Computer Laboratory security conference database
  152. Obfuscation: The Art of Creating Undetectable Malware
  153. Google Browser Security Handbook
  154. Future of Malware Defense
  155. The Changing World of Digital Forensics
  156. Alternate Data Streams
  157. Fake certificates on the Internet
  158. Cyberspace: The Greatest Cybersecurity Threat for 2009?
  159. Microsoft Learning Paths for Security
  160. SAFECode practices for secure software development
  161. The Duhs of Security video from Virginia
  162. Autorun
  163. The Duhs of Security video from Virginia
  164. Hacking Congressional media
  165. Hacking Congressional media
  166. Apparently Milgram is still right
  167. Phone fraud
  168. Bell-LaPadula model - original papers
  169. Human Redundancy
  170. CIA triad versus Parkerian Hexad
  171. On the Internet, nobody can tell you are an Absolute fraud and cheat
  172. CSIS Cybersecurity Report - FISMA
  173. Ensuring Member Benefits Beyond Certification
  174. Fools at the Gate
  175. Fools at the Gate
  176. Detection Theory: Signature Versus Anomaly Detection
  177. Data Loss Prevention: Is really necessary to record all IP Traffic?
  178. Proxy Caches and Web Application Security
  179. Process Coloring
  180. Each One, Teach One
  181. AMTSO: Testing Standards Revisited
  182. FISMA 2008 - What is it and what will change?
  183. Cross Organizational Collaboration - Securing the World with Cooperation
  184. Information Security During Economic Uncertainty
  185. Securing Software Through Professionalism
  186. Visualization for Command and Control of Cyberspace Operations
  187. Contingency planning for Information Security
  188. DRP and BCP Step 1: Establish Communications
  189. SSH Keys
  190. Interpreting the Law
  191. PCI-DSS v1.2 - My thoughts, concerns and questions
  192. The most vulnerable device in the network
  193. The $700bn question for security professionals
  194. Proxy Caches are a Challenging Threat to Internet Security
  195. Prioritizing Security
  196. Password Reset Services Can Weaken Authentication
  197. Funding security awareness programs
  198. A Different Kind of DoS Attack
  199. A New Security Breach in Google Docs Revealed
  200. The value of online professional discussion fora
  201. Event Correlation
  202. Shredded Checks
  203. Fraud Detection and SMS-Based Transaction Notification Services
  204. Securing DNS Servers
  205. Proving the Value of a Qualitative Risk Assessments
  206. The Looming Dangers of Security Vulnerability Sensationalism
  207. Firefox's Bold Move
  208. Processes Matter
  209. A message from the Executive Director
  210. Security metrics: more is not better
  211. CNN phishers trawl for victims
  212. Cybersecurity Law in Thailand Criminalizes Noncompliance with Archiving Requirements
  213. Malware trends
  214. Primarily Lessons Learned from the TSA Laptop Mess
  215. Making the phishers' job easier
  216. The Cautionary Tale of the San Francisco Network Lockout
  217. Your Social Security Number (SSN) - Shouldn't you Control It?
  218. Advice for the Newbie IA Professional (Part 1)
  219. Security Certification – Standards for the Government IT Workforce
  220. Introduction to Lawful Interception Systems
  221. Are we crying wolf?
  222. On the Internet, No-one Knows you're a Hog...
  223. FISMA – Is Something Missing?
  224. Dare We Outsource Trust?
  225. A Matter of Integrity
  226. Reducing Risk Versus Eliminating Risk
  227. Using Deep Packet Inspection
  228. Wikipedia: Trust but Verify
  229. What Is Measuring Security Improvements?
  230. CISSP mythology
  231. Hello, good evening, and welcome...
  232. Risk paralysis
  233. Combating Spyware and Adware with Defense in Depth
  234. Cybersecurity in the Fifth Dimension