Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Jens on The Difference between Quantitative and Qualitative Risk Analysis and Why It Matters (Part 1)
- IT Security » Blog Archive » IT Sec Professionals–Will Automated Security Tools Affect Your Job Security? on So Why Do We Need Security Professionals, Anyway?
- Bouch on Who’s In Charge Here? The Problem of Information Security Governance
- SecurityExec on Who’s In Charge Here? The Problem of Information Security Governance
- dustin on Patent No. 7,124,197: ARP Poisoning Hack!
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC compliance Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG law leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk Risk Analysis risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Category Archives: Privacy
Losing Friends on Facebook: A Privacy Story
May 22, 2008 – 6:00 am
–
Reconnecting with past friends and acquaintances, to me, is the primary value of Facebook. It is a simple way to establish ties to people you knew but lost touch with over the years. It’s a common experience on Facebook to befriend past best friends, people you’ve dated, and high…
Did Facebook Take My Advice on Privacy?
March 20, 2008 – 6:00 am
–
In late 2007, I wrote an article that a major issue with Facebook is that one could not control what one’s friends see after you authenticated them to your profile. It was a boolean expression: if they were your friend they could see everything or you could block them. I wrote:
I know a…
Eliot Spitzer: The Primary Lesson for Information Security Professionals
March 13, 2008 – 6:00 am
–
Amidst the resignation of Eliot Spitzer, there is one primary lesson to be learned from the scandal (as it relates to our field). For those who do not know, as Attorney General of NYS on of Spitzer’s roles was to prosecute prostitution rings. It is most likely the case that he knew how the…
Data Tracing: Proposal for a Privacy and Data Security Law
January 9, 2008 – 6:00 am
–
My recent Equifax issue (here, here) lead me to wonder about my personal data.
Consumers should be able to find out the following:
1. What a given company is doing with one’s personal information (processing / data mining)
2. Which third parties are privy and have access to their…
Slashdot Post On Security Ethics Demonstrates Professional Naiveness