Fighting Viruses; Defending the Net
There are a number of people in the infosec industry who can be classified as an industry leader. Mikko Hypponen, who works with the Finnish anti-virus company F-Secure, is one of those people. Mikko recently gave a talk titled “Fighting Viruses; Defending the Net” at the prestigious TED Conference held in Edinburgh last week. Have […]
Business Assurance in the 21st Century
As you may recall from my “Outlook is Cloudy” post I am the Chief Operations Officer for the Common Assurance Maturity Model (CAMM). I have been involved with CAMM for nearly two years and it has been a pleasure to work with some brilliant minds and excellent people on the project. Earlier this week the […]
Call for Papers for IRISSCERT Conference Closing Soon
The annual IRISSCERT Cyber Crime conference is due to be held on November 23rd this year. As usual the conference is an opportunity to learn about the latest threats in cyber crime and strategies to deal with those threats. IRISSCERT has has its call for papers open for the past few weeks and it is […]
"ISO 27001 In A Windows Environment" Book of the Year Award
I was pleasantly chuffed to find out at Infosecearlier this year that my book “ISO 27001 In a Windows Environment” came runner up in the IT Governance Book of The Year Award. The awards were based on a combination of the number of copies sold and the votes received in an online poll. Thank you […]
Team Cymru CSIRT Assistance Program
Team Cymru is a well respected computer security research organisation and provides a lot of high quality information to the community. One of the services they offer is the Team Cymru CSIRT Assistance Program (CAP) which is a service aimed at Computer Security Incident Response Teams at either regional or national level. The CAP provides […]
Importance of Log Files
The Sunday Times carries a story about the Fine Gael security breach back in January of this year. The paper states that the company, Election Mall, who were hosting the Fine Gael website at the time of the attack were not able/or would not provide the log files to An Garda Siochana and the Data Protection […]
Attrition.org Posts a Rebuttal to my Lulzsec Post
Subsequent to publishing my “Lulzsec Ups the Ante” post attrition.org and I had a very interesting discussion on my criticisms of Lulzsec using criminal methods to highlight the weak security used by the companies that were breached. Attrition.org has posted a rebuttal to my post and highlights issues that Attrition.org has with my post. The topic of how […]
Lulzsec Ups The Ante
There have been a string of breaches against various companies claimed by a hacking group called Lulzsec. They have attacked organisations such as Sony, the US Senate, the security company Unveillance, the Atlanta chapter of an FBI affiliate group called Infragard, Bethedsa Software, the British National Health Service, PBS and numerous others including many pornography sites. They […]
Outlook is Cloudy
Cloud computing has become an exciting evolution in how we deliver, access and use services over the Internet. The Cloud offers organisations many benefits and opportunities. However, these opportunities and benefits do not come without a number of security risks that need to be considered. Ireland is uniquely positioned to handle these issues. In an […]
RSA Breach, What You Should Do.
As most of you who read this blog will know by now RSA suffered a significant security breach on their network back in March. Since then there have been a number of other security breaches, most notably against Lockheed Martin, which have implicated the RSA security breach in some way. However, despite a lot of […]