Loading ...-
-
-
BlogInfoSec.com Sponsors
-
BlogInfoSec.com Partners
Category Archives: Information Security News
Should the US Military Create a DDOS Botnet?
May 15, 2008 – 6:00 am
–
Absolutely. The military should have both defensive and offensive capabilities in electronic warfare, just as in traditional warfare. DDOS capabilities to knock attackers off-line should certainly be a priority. If one believes that it should be policy to “walk softly and carry a big…
Intentional Security Blindness
April 29, 2008 – 6:00 am
–
In previous columns I talked about two types of employees, contractors, and the like who could cause your organization harm through poor security practices resulting in loss of data, money, or trade secrets, etc. The first type were people who caused such losses inadvertently through security…
Our Polymorphic Fluid Field of Information Security
March 27, 2008 – 6:00 am
–
Several years ago, I witnessed the first meeting of a newly-minted Director of Information Security with his supervisor, the CIO of a major insurance firm. The CIO carefully drew a large circle on a whiteboard and proceeded to inscribe the word “SECURITY” in the center of the circle. Then,…
Did Facebook Take My Advice on Privacy?
March 20, 2008 – 6:00 am
–
In late 2007, I wrote an article that a major issue with Facebook is that one could not control what one’s friends see after you authenticated them to your profile. It was a boolean expression: if they were your friend they could see everything or you could block them. I wrote:
I know a…
The core truth of risk
March 11, 2008 – 6:00 am
–
Welcome to the inaugural “The Risk Rack” column. Being the first column I thought it would a good idea to use it to start simply and slowly. First I wanted to note that this column is intended for information technology risk management professionals, information technology auditors,…
