Archive | Featured
A Worm is a Worm by any Name
While Conficker uses a variety of methods to reach new heights of evil, the methods themselves are not new. As with most viruses and worms, the process for escalating privileges, exploiting hosts, and gaining unauthorized access remains much the same: exploit a weakness, stop the services that may prevent the nefarious deed, and then spread the love via email, network shares, peer to peer communications, or removable devices.
Continue reading...I LOVE THE MID MARKET!!
3. February 2009
I yelled that to a crowd of over 300 at last year’s Gartner MidSize Enterprise Summit while I was accepting an award on behalf of TriGeo for “Best of Show” – where, by the way, we beat out HP. At conferences like the Gartner MidSize Enterprise Summit and CIO Decisions, I get the pleasure of spending a lot of time with midmarket executives who always voice their frustrations with vendors who simply, “don’t get them.”
Continue reading...
Slow And Silent Targeted Attacks On the Rise
3. February 2009
This headline from a recent Dark Reading article is important. The reality is that stealing identity and credit card data is big business. Thieves aren't interested in attracting attention. Their goal is simple – steal as much money as they can without being detected. Unfortunately, the article suggests that the solution for dealing with this threat is keeping log data for longer periods of time to provide a broader set of historical data for analysis.
Continue reading...
INDUSTRY SHAKEUP
29. January 2009
High Tower Software was the first to fall, closing their doors in November. The company chose to not provide any notice to customers -- before or after it ceased operations. How long will the VC’s continue to fund companies with products that customers don’t want?
Continue reading...
Wanted: United States Chief Technology Officer
22. January 2009
The hunt for the nation's first CTO has begun. There's no shortage of names being considered, nor tasks that this superhero should be asked to perform. A visit to www.obamacto.org is a revealing and somewhat frightening look into the technical psyche of thousands of people who are suggesting and voting on hundreds of proposals. Given the disparate backgrounds, interests, and political affiliations, it's no surprise that the suggestions include topics like Broadband Everywhere, Mass Transit, Space Mining and the very popular Open Government Data.
Continue reading...Government Data Loss: Double Standard
16. November 2008
Will the federal government be held to the same security and compliance standards that it has mandated for corporations or that states impose on businesses operating within their borders? It seems unlikely, so we're faced with a serious dilemma. How can we be sure as citizens that the ever-growing volume of citizen and visitor data being compiled by the government will be “secure”?
Continue reading...Economic Uncertainty? Maybe it’s a Good Thing…
6. November 2008
It's likely that the downturn will lead to the disappearance of many of the marginal SIEM and log management products on the market – a bit of 'Natural Selection' in action. This is the best possible news for consumers. They'll get better products for better prices.
Continue reading...Governator Vetoes Bill
18. October 2008
Clearly, the most meaningful consumer data protection comes from taking responsible and prudent steps to prevent data loss. Even under the best of circumstances, no one can guarantee that a loss will never occur and that's where California led the way in disclosure legislation. In my opinion, this legislation was ill-conceived and I hope it won't be back.
Continue reading...Blackhat Update: State of Insecurity
1. September 2008
Network security is often viewed as an arms race, and Black Hat is one of those venues where the arms merchants gather to display their wares, and people on opposite sides of the conflict evaluate claims and counter-claims and challenge both.
Continue reading...NEW! Superglue Security - Only $4.95
14. August 2008
Apparently, Countrywide's USB policy was to glue the ports to prevent their use, and they missed one...but let's be honest - the glue, or lack thereof, was not the problem - not on one PC, not on a thousand.
Continue reading...
1. April 2009
0 Comments