Many of us have become familiar with the idea of Secure Sockets Layer (SSL), even if you’re not aware of the fact that it’s called SSL. This is the protocol that encrypts much of your communication on the Internet, denoted with an “https” at the beginning of the URL as opposed to the standard “http.” [...]
Rafal Los has an excellent blog post up about how to plan for failure in your information security program. Rafal makes the excellent point that not planning for the (inevitable) failure of your organization’s security controls is, in fact, failure itself. As I mentioned above, the primary failure in a situation where an organization is [...]
Brian Royer, writing over at Dark Reading, hits on a subject that I’ve been talking about more and more lately. Since the release of Verizon’s 2012 Data Breach Investigations Report, I can’t help but thinking that in most cases it’s not IT that will keep users safe, it’s a combination of management and best practices. The [...]
No, this isn’t some super suspenseful crime story. Rather, it’s a conversation about one of the most common security problems in technology today: bot networks. Unfortunately, being victimized by malware or a virus today often times means much more than just frustration and lost data. Today, those with malicious intent are able to use those [...]
04-02-2012 (Anaheim, CA) – At the National Association for Information Destruction (NAID) annual conference today, Angie Singer Keating was elected to the NAID Board of Directors. Angie is the Chief Executive Officer of Reclamere, a Tyrone, Pennsylvania-based data security firm specializing in IT asset management, secure data destruction, incident response and risk management, as well [...]
It’s no secret that the things that you post on your social networking sites may be of interest to your employer (or potential employers), but some have taken the practice of perusing your online profiles to a whole new level. Facebook is now prepared to fight back: Facebook has taken a stand against what it [...]
CBS’ 60 Minutes last night highlighted Stuxnet as the first instance of a cyber weapon being used to create physical damage. For years, those of us that know something about cyber security have been warning that this day is coming – but few outside the information security world recognized the significance of the Stuxnet worm. [...]
This should be an eye-opener for everyone. (Emphasis mine) Even with widespread awareness of data storage and data deletion practices, the numbers from a recent Kroll Ontrack survey are eye-opening. The information management firm found that of the 49% of businesses that are systematically deploying a data erasure method, 75% don’t delete data securely, leaving them [...]
Dark Reading takes a look at ‘How (and Why) Attackers Choose Their Targets‘: There is no single method used to identify and compromise vulnerable targets. Much like rock stars and CEOs, each attacker has a unique style and process. However, some methods are simply more successful than others and thus tend to be used more [...]
This story serves to further highlight the necessity for ensuring that your manufacturer is actually destroying your data when you return devices. Motorola’s fall sale of refurbished Xoom tablets has gone about as wrong as it could possibly have gone. The company said today that 100 of the 6,200 it sold through Woot.com between October [...]
Reclamere RSS Feed