Managing Information Security With ISO 27001
In partnership with the Centre for Software Engineering we are running a two day course on “Managing Information Security with the ISO 27001 Information Security Standard”. The course is scheduled to run on the 17th and 18th of June 2008 and you can book your place on the course by contacting the Centre for Software Engineering. The […]
Treat Data As A Liability?
One of the common core activities when designing an Information Security Management System is to identify all the appropriate assets within the organisation so that risks against those assets can be properly identified and managed. Part of this process is to also identify all you data assets such as customer databases, sales lists, intellectual property and other […]
Adobe Flash Player 0-Day Vulnerability in the Wild
The Internet Storm Center has highlighted a 0-Day vulnerability in the Adobe Flash Player. Adobe’s Product Security Incident Response Team is investigatingthe issue. It is reported that versions affected are the current version 9.0.124.0 and earlier. Symantec have raised their Threatcon to Level 2. Attackers are apparently injecting redirections into legitimate sites to send users to hostile sites […]
Latest Information Security News Roundup
Below is a round up of news stories relating to information security that we have collated from the past few days. For ease of use we have categorised the stories under the most appropriate headings. If there are other stories that may be of interest please let us know via the comments feature.
A Tale from the Estonian CyberWar
Last year Estonia fell foul to a major DDOS attack that crippled many of that countries Internet infrastructure impacting on online banking, government and media websites. I posted about this particular attack in the post “Botnets – Digital Weapons of Mass Destruction?” Gadi Evron, who was involved in helping Estonia defend against these attacks has […]
Irish Ways and Irish Laws
I am regularly asked by clients, training course attendees and contacts in non-Irish companies looking to expaned into Ireland what is the most relevant legislation relating to information security for organisations in Ireland. So here is my top list of legislation that you should be concerned about regarding information security and your business in Ireland; I hasten to point out that […]
Calling All Security Experts
So do you think you know it all about security? Have you earned your stripes in securing networks and ensuring your organisation’s key information assets remain secure? Have you over 15 years experience in information security with a relevant degree and the abilit to speak two European languages? If so and you are an EU national […]
Upcoming ISSA Events
ISSA Ireland will be hosting two events in the coming weeks. The first event “”Meeting Compliance and Audit Requirements while Minimising Effort” will be held at 12:30 p.m. on Friday the 23rd in the Westbury Hotel. The meeting is scheduled to finish at 2:00 p.m. This is an open meeting and anyone can attend. However […]
Deadline for Irish Cyber-Crime Survey Extended
The deadline for the Irish Cyber Crime Survey has been extended until May 28th. If you are based in Ireland and have responsibility for information security in your organisation and you have not yet completed the survey then do so now. This survey is one of the most valuable pieces of information we as Irish information […]
NIST Issues Draft Guidance for Securing Servers
NIST, the US National Institute of Standards and Technology, have released a draft version of their Special Publication 800-123 “Guide to General Server Security” for comments. The document provides guidance to those wishing to ensure their servers are secure. NIST provide an invaluable range of guidance documents to help you secure your network infrastructure and […]