BH Consulting's Security Watch Blog
We may be in the middle of the summer but already the calendar for the autumn is starting to fill up. I will be presenting at Source Barcelona and also at BruCON in September. For both of these seminars I will be talking about the lessons learnt from when I set up IRISS-CERT and how [...]
The Irish Reporting and Information Security Service will be holding its first annual conference on Cyber Crime. The event looks to be pretty interesting especially as attendance will be free. The following is from IRISS CERT‘s website: IRISS will hold its first annual conference on the 19th of November 2009 at the D4 Berkley Court [...]
In life timing is everything and events often seem to conspire with each other. A few days after my poston Ireland not having a cyber security strategy the Department of Communications have issued a Request For Tenderfor the development of a national cyber security strategy. Lets hope that however wins that contract develops a strategy [...]
Ireland’s economy is now more than ever dependant on information technology and the Internet. Both have enabled consumers and businesses alike to better access and deliver services, create new markets, exchange information rapidly and process information in more efficient means. Technology and the “knowledge economy” are now seen as a strategic path by the Government to [...]
The next ISACA Ireland chapter meeting will be held on the 3rd of February in Deloitte & Touche’s offices on Earlsfort Terrace. I will be presenting to the meeting on why I founded the Irish Reporting and Information Security Service. During the presentation I will provide a background into why I felt it necessary for [...]
John Collins from the Irish Times has a piece in today’s paper on the setting up of Ireland’s first national CERT (Computer Emergency Response Team), IRISS.
Apparently the EU is proposing an Internet crime hotline so people can report online crimes to Europol. The Irish Justice Minister, Dermot Ahern, supports the move. While I support any moves to make the lifes of cyber criminals more difficult I do find it frustrating that our own government does not see fit to set [...]
Microsoft tonight released a critical patch, MS08-067, outside their normal patch cycle. For Microsoft to release a patch outside of their patch cycle indicates that this is a serious issue that we must pay attention to. I am obviously not the only one who thinks that as the Internet Storm Center‘s Infocon has turned yellow which [...]
The Estonian Government has released a strategy paperon enhancing cyber security. This is an interesting read as we can all learn from the lessons of the cyber attacks against Estonia last year. The report makes for interesting reading and yet it is still sad to see that governments and many organisations only take computer security [...]
It appears that CERT/CC helped US authorities in their case against the 11 people charged with hacking into the TJX network and stealing over 40 million credit card details. This is a great example of one of the benefits a CERT can provide the Internet community. Having professionals develop tools and skills in fighting cyber [...]