How Your Business Can Avoid Being Collateral Damage In A Cyber War


All around the world, governments declare they are gearing up for cyber war. The term “Cyber war” seems to be on everyone’s lips again.

Read the rest of this entry »

Russian spy ring needed some serious IT help


The Russian ring charged this week with spying on the United States faced some of the common security problems that plague many companies — misconfigured wireless networks, users writing passwords on slips of paper and laptop help desk issues that take months to resolve. Read the rest of this entry »

USB coffee-cup warmer could be stealing your data


Are you sure that the keyboard or mouse you are using today is the one that was attached to your computer yesterday? It might have been swapped for a compromised device that could transmit data to a snooper. Read the rest of this entry »

What if the smart grid has stupid security?


In the past, the security of the grid was based on isolation and obscurity. In the future, the ubiquity of Smart Grid elements will make physical and electronic isolation impossible.

Read the rest of this entry »

Eavesdropping Detection Audits


As the saying goes, “Sometimes the paranoids are right.” You never know when you might need Technical surveillance counter-measures (TSCM).

Read the rest of this entry »

Survey: Business continuity, not data breaches, a top concern for tech firms


A new “risk factors” list from consultancy BDO finds security worries about data leakage are not top of mind – at least as expressed in their SEC filings.

Read the rest of this entry »

Study: Cost of data breach in U.S. is highest world wide


A global study of data breach costs conducted by the Ponemon Institute finds notification laws have dramatic impact on the price tag.

Read the rest of this entry »

Study: Disaster Recovery Plans Shift Away from IT and Data Security


The emergence of the H1N1 virus and several severe weather-related events have shifted disaster recovery planning emphasis away from IT and data security threats toward pandemic planning and disaster recovery efforts, according to an annual study conducted by Varolii Corporation, a provider of on-demand business continuity communications.

Read the rest of this entry »

Featured InfoSecurity Policy – Telecommuter Working Environments


Reducing risk associated with a new technology often requires a combination of overlapping management and technical policies. For example, simply publishing a policy that restricts peer-to-peer networking software may not be sufficient to protect against data leakage if the organization has not defined any controls around computing environments for remote workers. Since many data leaks occur through home-based networks, protection involves a blend of policies including desktop configuration control, acceptable use and physical and environmental controls. As an example, consider this sample policy for Internet Telecommuter Working Environments.

Read the rest of this entry »

Preparing Your Enterprise For Cyberwar


Is your organization ready for a cyberwar?

Read the rest of this entry »

Size doesn’t matter: SMBs are now a major target of cyberattacks


Finding more resistance than ever from large businesses, hackers are customizing their malware ploys for SMBs.

Read the rest of this entry »