Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Jens on The Difference between Quantitative and Qualitative Risk Analysis and Why It Matters (Part 1)
- IT Security » Blog Archive » IT Sec Professionals–Will Automated Security Tools Affect Your Job Security? on So Why Do We Need Security Professionals, Anyway?
- Bouch on Who’s In Charge Here? The Problem of Information Security Governance
- SecurityExec on Who’s In Charge Here? The Problem of Information Security Governance
- dustin on Patent No. 7,124,197: ARP Poisoning Hack!
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC compliance Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG law leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk Risk Analysis risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Tag Archives: Security
The Difference between Quantitative and Qualitative Risk Analysis and Why It Matters (Part 1)
September 4, 2008 – 6:00 am
–
Many discussions of security risk analysis methodologies mention a distinction between quantitative and qualitative risk analysis, but virtually none of those discussions clarify the distinction in a rigorous way. The purpose of this 3-part series is to clarify that distinction and then show why…
How-To Easily Deploy Honeypots for Production Networks
June 10, 2008 – 6:00 am
–
When discussing honeypots, security folks typically think of the researchers out there who are doing their best to track the shadow networks that plague the Internet. Their deployments are to gain attention and keep the attackers interested based on the mentality of “the lower hanging fruit.”…
Lessons from “Don’t copy that floppy” ’90s Video Still Relevant
April 25, 2008 – 6:00 am
–
How many people remember the name of a short movie that is supposed to fight software piracy back in 1992 called “Don’t copy that floppy”? For the ones that do, the bad music, rhymes and situations have probably scarred us for life. Interestingly, there is a new message that one can take…
Wireless “Doom” Box
March 28, 2008 – 6:00 am
–
Please excuse me for a moment while I change into my “used cars salesmen” motif: “Welcome to the Wonderful World of Disposable Devices. You can reprogram these with relative ease and leave them behind to conduct the crime for you!” Hmm, I guess I’ll stick with the day job. Anyways, this…
Wi-Fu! Attacking the 802.11 Client
March 17, 2008 – 6:00 am
–
Wi-Fu! More than just a statement, it reflects you wireless security skill set from knowledge and practical experience. This covers everything from using the tools out there to profile and attack your wireless network, to checking the security of your client devices yourself. If you feel your…
