Teaching a dead dog new tricks about stronger passwords

Some time ago I enjoyed a cartoon where a family was eulogizing their recently deceased pet. The caption was something like, “Rex, you were a good dog, and though you may be gone from this life, you will live on forever as our computer password.” The cartoon amused me, but it also made me uneasy because I realized I was guilty of...

Read more

Securing communications to reduce online fraud

The last decade has seen huge growth in the number of U.S. households that use online banking and online bill paying services. Some  72.5 million households participate in online banking, with 36.4 million using the Internet to pay bills, according to the Fiserv 2010 Consumer Billing and Payment Trends Survey. Those numbers represent a an 84%...

Read more

Better secure your code: Web application attacks are on the rise

Web attacks are on the rise, up 30% in six months, according to security vendor Imperva. The second edition of Imperva's Web Application Attack Report (the first report was issued in July) identifies cross-site scripting (XSS) as the attack vector of choice (29% of the attacks reported), followed by directory traversal (DT), accounting for...

Read more

Deploy Red Team to root out excess privilege — or end up red-faced

I have been working on fleshing out the duties of an internal Red Team. Many organizations use outside firms to perform periodic attack and penetration tests. Some, like Stratfor, do not — much to their chagrin when they become the target of an attack. While outside pen testing is important, it does not address the bigger problems facing the...

Read more

Twitter acquisition of web security firm Dasient protects its growing ad business

Twitter’s acquisition of Web security company Dasient is good news for the social network giant and its millions of users, though, on the down side, it takes the security vendor off the general market. The acquisition is apparently focused on protecting Twitter’s growing advertising business, leveraging Dasient’s...

Read more

More Posts