-
-
-
BlogInfoSec.com Sponsors
-
-
BlogInfoSec.com Partners
-
How to be a Software Engineer without Understanding Software
January 30, 2012 – 6:00 am
–
Imagine a world where the majority of people who claim to “do” software engineering do not know even basic concepts that are taught in computer science 101 classes, such as basic data structures and why they matter. A world in which most accountants didn’t know how to read a…
China Chamber Hack
January 23, 2012 – 6:00 am
–
Siobhan Gorman is back in strong form on the front page of the December 21, 2011 Wall Street Journal with her article “China Hackers Hit U.S. Chamber,” which suggests at first glance that hackers made from porcelain were successfully thrown into some U.S. person’s bedroom. However, the…
Printer Too Ready
January 9, 2012 – 6:00 am
–
In a December 8, 2011 post to CNET News, Elinor Mills writes, in a piece with the title “HP sued over security flaw in printers,” about how a Columbia University research team was able to compromise the embedded software in HP LaserJet printers.
First off, the photograph of a printer, which…
The Personalization of Risk
December 19, 2011 – 6:00 am
–
I realized when I received several comments regarding my September 12, 2011 column “Risk Mismanagement – Scoring vs. Monte Carlo vs. Scoring” from Doug Hubbard and others, that I hadn’t been clear enough in my description of what I had termed “subjective risk.” It also seems that…
Security in the Dark
December 6, 2011 – 6:00 am
–
I attended a roundtable recently at which someone mentioned that, in their experience, those familiar contractual requirements requesting third-party service providers to tell their customers about security breaches within a short time frame (within three hours, say) are often not conveyed to…