Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Viruses / Worms

Securing the Web – Dream On

– There are times when a reasonable person might have doubts about their views on a particular topic, especially when so few others appear to advocate the same drastic measures as oneself. So imagine my surprise and sense of validation when I attended a presentation by Roel Schouwenberg, who is a…

InformationWeek and Virtualization Security

– InformationWeek takes a cursory glance at virtualization security in the data center. In short they state: While tools exist to detect rootkits and other compromises on conventional operating systems, no tools exist to detect their presence in the hypervisor. For those in the security space for at…

bloginfosec.com Interviews Jeremiah Grossman on Web App Security

– One of the many blogs on which I keep a close eye is that of Jeremiah Grossman. His expertise is in web application security. I made his acquaintance at the 16th Annual NY Metro ISSA conference and had the good fortune to watch his Cross Site Request Forgery (CSRF) presentation. I had the chance…

Couldn’t Make it to RSA: Attended ISSA, New York Chapter

– There was a very interesting program at NYM ISSA today. Presentations included: * WINDOWS VISTA: DEFENDING NETWORKS AGAINST THE EMERGENT THREATS OF THE 21st CENTURY INTERNET * COMPLEX OF THREATS TODAY AND BEYOND * SHADOWSERVER * DETECTING ZERO DAY THREATS Here is a general link to today’s…

Security Awareness – Not Education – is the Answer

– Security awareness and security education are two different things. In my mind, awareness is a “lighter” version of education. To be educated means one has a deep understanding of something and acts upon that understanding. Awareness, or to be made aware of something, means that one…