Proposed Data Security Breach Code of Practise
As someone who has been campaigning for mandatory data breach disclosure laws in Ireland for a number of years I am pleased to see the proposed Data Security Breach Code of Practise from the office of the Data Protection Commissioner. I have long argued that organisations need to realise that the data they hold on […]
Brian Honan Meets InfosecCynic
I had the pleasure of finally meeting Javvad Malik, otherwise known as the infoseccynic, at the recent Infosec show in London. Javvad takes a refreshing look at the issues we face in the information security profession and you should visit his site or follow him on twitter to get his view on things. Javvad kindly took the […]
Google WiFi Sniffing SNAFU
Recent investigations by German authorities discovered that the Google street car was recording information about Wireless Access Points it detected during its journeys. More seriously it was revealed that the system recording that data was also gathering any data being transmitted over any unsecured wireless networks it detected. Google claims that this was a mistake and […]
Next ISSA Ireland Event – May 27th
The next ISSA Ireland chapter event will be a lunchtime meeting (noon to 2:30) on Thursday May 27th at the Radisson Hotel, Golden Lane, Dublin 8. This event is free to members and while it is open to non-members it should be noted that non-members will have to pay a cash entrance fee of €10. […]
ISO 27001 In a Windows Environment
I am delighted to see that the revised version of my book has now been released. The book is “ISO 27001 In a Windows Environment” and has been revised to include the security features in Microsoft’s Windows 7 operating system. It is available to buy from the IT Governance’s website. As the overview on the […]
Issue With McAfee VirusScan Update 5958 DAT
An issue with the DAT 5958 update to the McAfee VirusScan Enterprise product causes PCs running Microsoft Windows XP Service Pack 3 to crash. The DAT 5958 update incorrectly identifies the system file svchost.exe as containing malicious code belonging to w32/wecorl.a. When the McAfee software tries to clean the mistakenly identified malicious code from the […]
The Cost of Privacy
I got an email today pointing me to this story in Time magazine, Trying to Escape the Surveillance State, where a journalist tries to live for a month without his privacy being impinged. It led to a conversation about privacy and whether or not there is privacy on the Internet or will people pay the […]
Implementing ISO 27001 in the Real World
SC Magazine UK recently published an article I wrote on “Implementing ISO 27001 in the Real World” on their blog today. The article is an interview with three people who have experience in implementing and achieving certification against the ISO 27001:2005 Information Security Standard in organisations. The people who kindly agreed to be interviewed were; […]
Annual Report from Data Protection Commissioner Released
The 21st annual report from the Data Protection Commissioner’s office has been released. As usual it makes for some very interesting reading. The report notes that the number of breaches reported to the office has doubled since the previous year. Most of these reported breaches are from organisations within the public sector. While the first […]
Data Breach – What Next?
The above is the title of the talk that I gave at this years Data Protection Conference run by the Irish Computer Society. It was a great event with some excellent speakers ranging from practitioners, to legal experts and the Data Protection Commissioner Billy Hawkes. Bruce Scheier also addressed the conference via a video link. […]