August 2007 Archives

Listen to or download the 8:43 min. podcast below: Download file What follows is a transcript of my discussion with Joshua Block, Vice President of North American Operations for Cyberoam, where we discuss the attack on Monster.com -- what happened,... Read More..

While the news and bloggers seems to continually focus on the newest threat (you could almost say in terms of security, if the corporate brand bleeds, it leads), according to Dark Reading, what worries CSO's most is creating and enforcing... Read More..

More news keeps coming out about Monster.com's data hack, and the most questionable info is that Monster waited five days to release the news about their attack; waiting, in fact, until after Symantec had already released the info. According to... Read More..

Some bloggers have recently delved into the issue of whether or not Security as a Service, or on demand security, is more or less secure than end-user security. This will become a crucial issue as the scale of attacks increase... Read More..

Listen to or download the 8:02 min. podcast below: Download file What follows is a transcript of my discussion with Bill Bartow, the Vice President of Marketing for Tizor Systems, where we discuss how to protect data against breaches from... Read More..

Just noticed my blog from yesterday was completely nonsensical, as I left a quote open in a link and that ate up pert near fifty percent of yesterday's blog. So if anyone was starting to wonder if the summer sun... Read More..

Found an interesting article at PC World about Thomas J. Holt, an assistant professor in the Department of Criminal Justice at UNC (go Heels!), where for the past year they’ve been gathering information on the burgeoning online black market for... Read More..

The data breach by TJX that exposed the credit and debit card information of more than 45 million customers to fraud continues to add up, and has currently cost the company more than 10 times what the company spent in... Read More..

According to Errata Security, the United Nations website was recently hacked using a simple SQL injection bug. And while this vulnerability might seem surprising for a site as well known as the UN, numerous sites all over the internet have... Read More..

Since last October, when it was discovered a crack dealer had nuclear weapons data on a USB stick (you think they were trying to smoke it?), Los Alamos has had two more high-profile data losses. The Los Alamos lab was... Read More..

Listen to or download the 11:01 min. podcast below: Download file What follows is the transcript of my podcast with Dr. Jose Nazario, Security Researcher for Arbor Networks, where we discuss the first computer virus, how it compares with today’s... Read More..

As often happens with revolutionary new products or services, different standards and technologies often vie for market dominance. An easy example of this could be the battle between VHS and Betamax. In terms of SOA and security, there seems to... Read More..

Consumer Reports came out with a report on the State of the Net that determined consumers lost 7 billion dollars to viruses, phishing, and spyware in the last two years. The study also put the medium cost of $200 dollars... Read More..

Ajax -- or Asynchronous Javascript and XML-- has come to dominate Web 2.0, but it is coming at a price: security. According to Information Week, SPI Dynamics demonstrated at Black Hat last Wednesday several ways to break a web site... Read More..

Listen to or download the 11:09 min. podcast below: Download file What follows is a transcript of my podcast with Dave Locke, the Director of Offerings Marketing at IBM Rational, where we discuss application lifecycle management and how that relates... Read More..

While the folks gather at Black Hat and dig into the depths of security's dark side, I'll just have to keep to the sunny side of the Internet street and keep wearing my white hat proudly. According to Core Security... Read More..