Interesting Information Security Bits for 03/06/2009

by kriggins on March 6, 2009

in Interesting Bits

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. Not exactly InfoSec related, but some very good advice for those who telecommute, even those who do so part-time.
    Tips for New Telecommuters Who've Been Laid Off or Fired - Network World
    Tags: ( telecommuting )
  2. Are your proxies doing their jobs? Are you sure all your users are going through them as they should be.
    Unauthorized Web Use On The Rise, Sneaking By IT - DarkReading
    Tags: ( proxy )
  3. Go ahead, try that new thing. To try and fail and learn from that failure is infinitely better than to never try at all!
    Fail Better : The Security Catalyst
    Tags: ( general )
  4. Hal shows us a situation we need to be aware of when using some command line tools for exploring text in forensics images.
    Missed It By That Much! << SANS Computer Forensics, Investigation, and Response
    Tags: ( forensics tips )
  5. Shack is asking our opinion on a few questions about changes we might be thinking about in our organization's security programs because of the economic environment's impact on staffing and resourcing. Drop by and give him your thoughts.
    ShackF00 >> Infosec Impacts from Understaffing
    Tags: ( general )
  6. Like the title says, the last of the Defcon 16 videos have been updated and await you viewing pleasure.
    Last of the Defcon videos uploaded | Security4all - Dedicated to digital security, enterprise 2.0 and presentation skills
    Tags: ( videos conference defcon )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Interesting Information Security Bits for 02/10/2009

by kriggins on February 10, 2009

in Interesting Bits

Good afternoon everybody! I hope your day is going well.

Here are today's Interesting Information Security Bits from around the web.

  1. This is always an interesting challenge. Not for the faint of heart.
    DC3 Challenge
    Tags: ( challenge dc3 )
  2. Looks like she has the chops for the job.
    Obama taps Bush aide Melissa Hathaway to review federal cybersecurity efforts
    Tags: ( general )
  3. Link pretty much says it all. Deadline is May 15th, 2009.
    DEFCON 17 Call For Papers
    Tags: ( cfp defcon 17 )
  4. Having been bitten in the past by exactly the same thing as Mr. Bump, I heartily suggest you heed his advice.
    BumpInTheWire.com >> Blog Archive >> Shootin Ducks On A Pond
    Tags: ( availability )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

{ 0 comments }

Interesting Information Security Bits for 01/15/2009

by kriggins on January 15, 2009

in Interesting Bits

Today's Bits consists of more risk assessment talk, biometrics and passports, secure code by demand, compliance vs security, builders and breakers in software security, DEFCON CTF, how SSL works, PCI and security, a good way to quantify risk and an argument that one pass data wipe is enough. Details below.

  1. Part 3 is up of Chris's assessment.
    Risk Scenario - Hidden Field / Sensitive Information (Part 3 of 4) << Risktical Ramblings
    Tags: ( risk assessment fair )
  2. Get ready to get your fingers inked when you apply for a passport in the E.U. (Okay, there are inkless methods bow. Not near as much fun to write scanned though.)
    Biometric passports agreed to in EU - Network World
    Tags: ( privacy )
  3. Folks, it just isn't this easy. Unlike Picard, we can't just "make it so."
    New York drafts language demanding secure code
    Tags: ( general )
  4. Compliance does not equal security. Never has and never will. Good thought in here.
    Using The Compliance Stick Actually Weakens You | RiskAnalys.is
    Tags: ( risk compliance )
  5. An interesting argument, which I happen to agree with, by Jeremiah about the need to both builders and breakers when it comes to software security.
    Jeremiah Grossman: Builders, Breakers, and Malicious Hackers
    Tags: ( general opinion )
  6. Ever wanted to run a CTF? Defcon needs to talk to you. Be warned, we are talking about a granddaddy of a CTF.
    DEFCON 17 CTF Call for new Organizers! - Defcon Forums
    Tags: ( defcon ctf )
  7. A real nice basic introduction to how SSL works.
    Security Workshop: How HTTPS/SSL works Part 1 - Basics
    Tags: ( ssl )
  8. A nice post by Anton that I found via Alex over at riskanal.is. Repeat "Security First."
    Anton Chuvakin Blog - "Security Warrior": Tales From the "Compliance First!" World
    Tags: ( pci compliance )
  9. Adam has a great post up on the Security Catalyst blog. The KISS principle in action.
    The Breach-Stamp Metric : The Security Catalyst
    Tags: ( risk communication )
  10. A nice article with some hard data on the effective of data retrieval off of a drive which has been effectively wiped. Effectively here meaning with only one pass.
    Overwriting Hard Drive Data << SANS Computer Forensics, Investigation, and Response
    Tags: ( data disposal )

That's it for today. Have fun!

Subscribe to my RSS Feed if you enjoy these daily Interesting Bits posts.

Kevin

Reblog this post [with Zemanta]

{ 0 comments }

Next Entries →