HNS MAIN FEED
Saturday, 00:48 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
General Security
General Security: 10 most recent
(show all)
| Data leakage plan of action (General Security) Tiny computing and storage devices have revolutionized the way people carry information as they can stow the equivalent of millions of pages of data. Yet this benefit is also detrimental to an organization's data protection responsibilities as they offer hostile agents an easily concealable package for carting off sensitive or classified information. No organization can afford to leave sensitive data in an unprotected state on devices that can easily fall into the wrong hands. |
| Five best practices for mitigating insider breaches (General Security) Mismanagement of processes involving privileged access, privileged data, or privileged users poses serious risks to organizations. Such mismanagement is also increasing enterprises' vulnerability to internal threats that can be caused by simple human error or malicious deeds. |
| 7 tips for basic e-mail security (General Security) Simple to implement, these tips can be a good start to making sure your e-mail communication becomes more secure. |
| The threat within: Protecting information assets from well-meaning employees (General Security) Most information security experts will agree that employees form the weakest link when it comes to corporate information security. Malicious insiders aside, well-intentioned employees bear responsibility for a large number of breaches today. Whether it’s a phishing scam, a lost USB or mobile device that bears sensitive data, a social engineering attack or downloading unauthorized software, unsophisticated but otherwise well-meaning insiders have the potential of unknowingly opening company networks to costly attacks. |
| Best practices for keeping your data center secure (General Security) There are no reasons why virtualization and good security can’t go hand in hand. In fact, it offers a number of ways to overcome traditional security concerns, while also delivering the benefits of cost reduction and simplified management that are associated with virtualization. |
| Information security recruitment: How to move on in turbulent times (General Security) Not surprisingly given the economic backdrop, the information security recruitment market has slowed. The first obvious signs of this downturn were evident from the third quarter of 2008 in the financial services sector. It has subsequently spread with recruitment freezes and lower vacancy generation as fewer vacancies are back filled. Fewer security practitioners are voluntarily entering the recruitment market, fearful of moving jobs during an uncertain time. However, overall more candidates are registering due to threat of or actual redundancy. |
| The growth of keyloggers (General Security) Keyloggers are software or hardware modules primarily meant to steal passwords and other sensitive inputs as they are typed into a terminal. They have evolved from easy to detect resident programs, to more powerful rootkit-style kernel components, and finally to small hardware plugs, which are undetectable to the target system. |
| Security threats: A guide for small and medium businesses (General Security) This paper aims to help small and medium-sized businesses focus on threats that are likely to have an impact on, and affect, the organization. These threats specifically target small and medium-sized business rather than enterprise companies or home users. |
| Keeping Virtual Security Real (General Security) Remember the first time you drove a car on your own, and you’d get a kick from the sensation of sheer speed? Unfortunately, you also have to learn the mundane stuff like how to turn, stop and reverse safely. The same is true in organizations that deploy virtualization. |
| Applied Binary Code Obfuscation (General Security) An obfuscated code is the one that is hard (but not impossible) to read and understand. Sometimes corporate developers, programmers and malware coders for security reasons, intentionally obfuscate their software in an attempt to delay reverse engineering or confuse antivirus engines from identifying malicious behaviors. This paper explores the theory and practice of binary code obfuscation as well as a number of various techniques that can be used. |
General Security: most read articles