Free Web Application Security Testing Tool from Microsoft
One of the highlights of the RSA Europe Conference was meeting with a very interesting gentleman who works for Microsoft. Simon Rose Femerling works with the Microsoft Ace Team. We had some really interesting conversations about security, including research conducted in the hotel bar at 3 a.m. to try and determine the motivation of the average […]
Why Should I Care if Some Piggybacks my Wireless Broadband?
Further to my post regarding the recent Eircom WEP issue, WEP of Mass Disruption, a number of people asked me what is the worst thing that could happen if someone piggybacked on their wireless connection? I was about to write a post covering the issues myself but came across Robert McArdle’s Blog recently where he posted quite a […]
Corporate Security Supplement in Irish Independent
The Irish Independent newspaper included a supplement on Tuesday the 23rd of October. The theme for this supplement was “Corporate Security”. I was quoted within two articles in the supplement; “Cell Phones Pose New Risks to Businesses” where I highlighted the threat mobile devices can pose to information security. “Policy is Paramount for Security”, in this […]
IT Industry Launches SAFECode Initiative
I attended the announcement today at the RSA Conference Europe where Microsoft, Symantec, Juniper, SAP and EMC Corporation launched the SAFECode initiative. SAFECode is an industry initiative founded by the above companies to develop and promote better software assurance practises amongst the world’s developers. Each of the above companies will make available their expertise and experience […]
ISF Releases The Standard of Good Practise
The Information Security Forum have released the latest version of the Forum’s “The Standard of Good Practise”. This is an excellent resource for anyone tasked with identifying controls to improve the security of the information and systems in their charge. “The Standard of Good Practise” is broken down into the following key sections; Security Management […]
Keeping Secrets Secret
News broke today about a civil servant working in the Department of Family and Social Affairs who used his access to the department’s computer systems to get sensitive personal information on a number of individuals. This information was then passed onto his criminal brother who subsequently allegedly used that information to burgle one individual and […]
Microsoft Security
Today I was the keynote speaker for Microsoft Ireland’s IT Professional Security Training Event. It was an interesting event for me from many aspects. Firstly it gave me a chance to get up to speed on a number of Microsoft Technologies such as their Intelligent Application Gateway Server 2007 and also to get an update on the […]
Do SMEs Really Trust IT?
A business colleague who runs a IT company was lamenting to me as to why do SMEs distrust IT so much. She pointed out to me that SMEs claim in one breath that IT brings them many benefits but with the other do not see the value in investing in technology. She continued to point out […]
Microsoft – We Share Your Pain Program
Ever wonder what happens when you click on the “send” button when the dialogue box appears after an application crashes? This spoof video from Microsoft on the “We Share Your Pain” program may shed some light on that question.
How to get a free Risk Assessment
During last week’s COSAC conference I had an interesting discussion with one of the other delegates regarding the state of information security. We lamented the fact that the various options tried by the industry to improve security have failed. Technology is failing us, as soon as we have a solution in place the bad guys […]