ENISA Publishes Paper on Securing USB Drives
ENISA(The European Network and Information Security Agency) has recently released an interesting whitepaper on securing USB devices. The paper is a good read highlighting the threats that USB drives pose and listing a number of recommendations to minimise these threats.
Take This Job And …
Recently I have been conducting our security assessment service for a number of clients. Now these clients ranged in sizefrom large enterprises to small SMEs and are spread across numerous sectors, but they all had one thing in common. They all had very poor staff termination processes for employees leaving the organisation under either amicable […]
Firefox 3.0 – Hackers 1
Mozilla released the latest version of Firefox on June 17th amidst much fanfare and hype. The major buzz about this release being the attempt by Firefox to break the Guinness Book of Records for the most downloads in a 24hr period for a single program. Well the launch has not gone so well for Firefox. Firstly due to […]
Are You A Computer Security Geek?
Roger A. Grimes has an amusing article outlining the main indicators that you are a computer security geek, although Roger is more polite in the title of his post “Are You a Computer Security Professional?” Have a look at the list and see if any of them apply to you<g> One that is missing; Despite not […]
Security Checklists
One of the problems many systems administrators face when securing their networks, systems and/or applications is knowing how to make them secure. Below are two useful resources for those of you looking for lists or guides on how to secure your network; Center for Internet Security US National Checklist Program
Disaster Recovery ala Dilbert
Hmm I wonder how many companies out there actually have a similar disaster recovery plan similar to this one on Dilbert.com? From bitter experience I reckon quite a few. So take this as a reminder to check your disaster recovery plan is up to date and accurate. Sure why not even schedule a test to […]
Adobe Flash Player 0-Day Vulnerability in the Wild
The Internet Storm Center has highlighted a 0-Day vulnerability in the Adobe Flash Player. Adobe’s Product Security Incident Response Team is investigatingthe issue. It is reported that versions affected are the current version 9.0.124.0 and earlier. Symantec have raised their Threatcon to Level 2. Attackers are apparently injecting redirections into legitimate sites to send users to hostile sites […]
A Tale from the Estonian CyberWar
Last year Estonia fell foul to a major DDOS attack that crippled many of that countries Internet infrastructure impacting on online banking, government and media websites. I posted about this particular attack in the post “Botnets – Digital Weapons of Mass Destruction?” Gadi Evron, who was involved in helping Estonia defend against these attacks has […]
Calling All Security Experts
So do you think you know it all about security? Have you earned your stripes in securing networks and ensuring your organisation’s key information assets remain secure? Have you over 15 years experience in information security with a relevant degree and the abilit to speak two European languages? If so and you are an EU national […]
Upcoming ISSA Events
ISSA Ireland will be hosting two events in the coming weeks. The first event “”Meeting Compliance and Audit Requirements while Minimising Effort” will be held at 12:30 p.m. on Friday the 23rd in the Westbury Hotel. The meeting is scheduled to finish at 2:00 p.m. This is an open meeting and anyone can attend. However […]