- Follow this blog:
- RSS
- Email Alert
IT Security
Selena Frye
TechRepublic Staff
Selena Frye
-
Is uncovering digital vulnerabilities doing more harm than good?
A noted virtual-reality technologist and author views "security through obscurity" as the only true way security can exist. Michael P. Kassner looks at what this uniquely divergent viewpoint means.
Posted by Michael Kassner | March 25, 2013, 8:48 AM PDT | Latest comment by wdewey@...
-
Stolen credit reports: What you can do to protect yourself
Patrick Lambert follows up on the stolen celebrity credit reports. You don't have to be famous to be at risk. What can individuals and businesses do for protection?
Posted by Patrick Lambert | March 19, 2013, 5:30 AM PDT | Latest comment by JCitizen
-
Rootkit coders beware: Malwarebytes is in hot pursuit
Anti-malware heavy-hitter Malwarebytes is now laser-focused on eliminating rootkits. Michael P. Kassner asks the creators of MBAM how they approach this particular threat.
Posted by Michael Kassner | March 18, 2013, 7:12 AM PDT | Latest comment by Michael Kassner
-
Making online payments safe from fraud: Conversion rate vs. security
Patrick Lambert looks at the vulnerable area of online payment fraud. Is there a way to make payment forms both convenient and secure?
Posted by Patrick Lambert | March 15, 2013, 8:00 AM PDT
-
Ask potential cloud vendors these 10 security questions
Dominic Vogel offers his list of ten questions you should be asking cloud vendors about their security practices. Make sure you get the proof to back up their claims.
Posted by Dominic Vogel | March 12, 2013, 5:30 AM PDT | Latest comment by 120529-000107
-
CISPA pits privacy against security: A closer look at the issues
The United States Congress is once again considering a bill that could forever change how we as individuals use the internet. Michael P. Kassner looks at what those changes are.
Posted by Michael Kassner | March 11, 2013, 7:24 AM PDT | Latest comment by Michael Kassner
-
How passwords can wreck your two-factor authentication
Patrick Lambert shares a friend's experience with having his iCloud and Gmail accounts compromised. Make sure you know the gaps in two-factor authentication and app-specific passwords.
Posted by Patrick Lambert | March 7, 2013, 6:00 AM PST | Latest comment by leissoo
-
High-tech home security products: Who are they really helping?
Easy and convenient, wireless home security will keep your home safe. Michael P. Kassner looks at why bad guys might like them as well.
Posted by Michael Kassner | March 4, 2013, 7:43 AM PST | Latest comment by Michael Kassner
-
In the post-PC era, information security must adapt to new realities
Alfonso Barreiro identifies some fundamental changes that infosec personnel need to make to their approach in order to operate effectively in their organizations.
Posted by Alfonso Barreiro | March 4, 2013, 6:00 AM PST | Latest comment by Tony Hopkinson
-
How to check and configure your browser plugins
Patrick Lambert offers some basic tips on how to check web plugins in four major browsers.
Posted by Patrick Lambert | February 27, 2013, 1:00 PM PST | Latest comment by lehnerus2000
-
Redirection and decryption of mobile traffic: Is your browser a MitM?
By design, certain mobile web browsers send HTTPS-encrypted traffic to their home servers first. Michael Kassner finds out why, and what it means to each of us.
Posted by Michael Kassner | February 25, 2013, 7:21 AM PST | Latest comment by HAL 9000
-
What the Mandiant report reveals about the future of cyber espionage
Mandiant reported on an overwhelming campaign of organized hacking from China against US and other Western targets. Cyber espionage is ramping up and security pros must be aware of the risk.
Posted by Patrick Lambert | February 25, 2013, 6:00 AM PST
-
Insider threats: Implementing the right controls
Tom Olzak describes the signs that an employee might become an insider threat and recommends the various controls and monitoring that can be implemented to mitigate such threats.
Posted by Tom Olzak | February 22, 2013, 7:00 AM PST
-
Chinese cyberattacks and a Presidential executive order: What does it mean for you?
A wave of cyberattacks originating from China have been revealed and a new Presidential executive order pertaining to network security standards is in the works. Patrick Lambert takes a look.
Posted by Patrick Lambert | February 19, 2013, 11:15 AM PST | Latest comment by JCitizen
-
The end of antivirus software? Not so fast
The value of antivirus software is controversial. Michael P. Kassner asks an AV-testing expert why, and if it needs to be this way.
Posted by Michael Kassner | February 18, 2013, 6:00 AM PST | Latest comment by JCitizen
-
Manage insider threats: Knowing where the risks are
Tom Olzak details the insider threats that an organization should be prepared to defend.
Posted by Tom Olzak | February 13, 2013, 6:00 AM PST | Latest comment by apotheon
-
What's with Generation Y and online privacy?
Depending on whom you ask, members of Generation Y either have online privacy figured out, or they haven't a clue. Michael P. Kassner looks at who's right.
Posted by Michael Kassner | February 11, 2013, 8:09 AM PST | Latest comment by aidemzo_adanac
-
Cybersecurity challenges in 2013
Dmitriv Ayrapetov describes the threats that Dell SonicWall has identified as the top challenges for companies to prepare for in 2013.
Posted by Guest Contributor | February 8, 2013, 8:10 AM PST | Latest comment by HAL 9000
-
Governance, risk, compliance: Four things to ponder about GRC initiatives
Dominic Vogel highlights four issues to consider if your organization is adopting a GRC framework to manage security and compliance requirements.
Posted by Dominic Vogel | February 6, 2013, 6:00 AM PST | Latest comment by Aruvio
-
Guess what? Your favorite websites are more likely to serve malware than p0rn sites
A new report may change your perception of websites and malware. Michael P. Kassner ferrets out what Cisco is excited about.
Posted by Michael Kassner | February 4, 2013, 10:49 AM PST | Latest comment by arun@...
-
List open ports and listening services
You should turn off any services you don't actually need so that they will not become avenues of attack for security threats. Different systems will have different services running by default,...
Posted by Chad Perrin | April 15, 2008, 8:47 PM PDT | Latest comment by jackhard
-
Hackers: From innocent curiosity to illegal activity
Researchers asked why talented youth skilled in "computerese" evolve into criminal hackers. Michael P. Kassner explains their unexpected results.
Posted by Michael Kassner | May 6, 2013, 7:59 AM PDT | Latest comment by mattohare@...
-
Cloud-service contracts and data protection: Unintended consequences
There are things your cloud-service (Facebook, Amazon, Google, Dropbox, etc.) contracts aren't telling you. Michael P. Kassner interviews an attorney concerned about what's not being said.
Posted by Michael Kassner | May 13, 2013, 11:52 AM PDT | Latest comment by Michael Kassner
-
DropSmack: Using Dropbox to steal files and deliver malware
Michael P. Kassner interviews a digital forensic scientist who uses Dropbox to compromise targeted networks -- something the bad guys probably figured out as well.
Posted by Michael Kassner | April 15, 2013, 7:46 AM PDT | Latest comment by Michael Kassner
-
Battling the Google Redirect virus
Consultant Bob Eisenhardt recounts his frustrating experience trying to track down and get rid of a client's search-redirect virus. Here's how he finally ditched it.
Posted by Bob Eisenhardt | January 2, 2013, 10:56 AM PST | Latest comment by Jane3344
-
Understanding what motivates Chinese hackers
Michael P. Kassner, with the help of a noted academic and author, looks at what motivates Chinese hackers. It may not be what you think.
Posted by Michael Kassner | April 22, 2013, 10:16 AM PDT | Latest comment by HAL 9000
-
BoxCryptor vs. DropSmack: The battle to secure Dropbox
Can DropSmack malware be stopped? Michael P. Kassner asks the creators of BoxCryptor if it is up to the task of securing the Dropbox file-synchronization service.
Posted by Michael Kassner | April 29, 2013, 10:30 AM PDT | Latest comment by Michael Kassner
-
How to spoof a MAC address
MAC address filtering for wireless networking isn't real "security". Anyone who pays any attention to current trends in wireless security at all should know that MAC filtering is less effective...
Posted by Chad Perrin | January 22, 2008, 1:28 PM PST | Latest comment by Doug Vitale
-
Running the gauntlet: Tips for achieving your CISSP
One of the most highly regarded security certifications is the CISSP. Dominic Vogel offers these nine tips for becoming certified based on his own experience.
Posted by Dominic Vogel | April 23, 2013, 5:30 AM PDT | Latest comment by JCitizen
-
The basics of using a proxy server for privacy and security
Patrick Lambert goes over the basics of how proxy servers work and why they are used to add security and privacy.
Posted by Patrick Lambert | December 5, 2012, 6:30 AM PST | Latest comment by Tony Hopkinson
-
Aaron Swartz legacy lives on with New Yorker's Strongbox: How it works
Strongbox was Aaron Swartz's final project. Michael P. Kassner explains why The New Yorker requested a way to keep sources and their information secret.
Posted by Michael Kassner | May 20, 2013, 7:17 AM PDT | Latest comment by tylerpitchford
-
DDoS attack methods and how to prevent or mitigate them
Patrick Lambert covers the various methods attackers use to launch distributed denial of service attacks, and the precautions you can take to prevent or at least, mitigate these types of events.
Posted by Patrick Lambert | October 15, 2012, 11:24 AM PDT
-
Software-Defined Networking: How it affects network security
SDN technology is set to rewrite the book of networking. Michael P. Kassner looks into how SDN will improve security, and where it's vulnerable.
Posted by Michael Kassner | April 8, 2013, 7:13 AM PDT | Latest comment by Michael Kassner
-
Use PuTTY as a secure proxy on Windows
Last month, I wrote about using OpenSSH as a secure Web proxy on UNIX and Linux systems. This time, I'll show you how to do the same thing on Microsoft Windows using PuTTY -- probably the single...
Posted by Chad Perrin | March 10, 2008, 4:30 PM PDT | Latest comment by abaabaa
-
Dropbox: Convenient? Absolutely, but is it secure?
A potential security lapse and possibly misleading statements are plaguing Dropbox, a hugely popular file-syncing app. What are the issues and is concern justified?
Posted by Michael Kassner | June 13, 2011, 8:03 AM PDT | Latest comment by kprivigyi@...
-
Security lessons from the 2013 Verizon Data Breach Report
Verizon's latest report on data breach statistics offers security pros a guide to the most persistent threats and where attention should be focused to defend against them.
Posted by Alfonso Barreiro | May 15, 2013, 6:00 AM PDT
-
The future of IT security compliance: 201 CMR 17.00
Why should you be concerned about a security rule that is part of the State law of Massachusetts -- especially if you aren't in business there? Donovan Colbert explains how compliance regulations...
Posted by Donovan Colbert | April 30, 2013, 6:00 AM PDT | Latest comment by dcolbert@...
-
Hacker vs. cracker
The word "hacker" gets used in a pejorative sense by journalists an awful lot. Some people think this is perfectly reasonable; others find it offensive, and recommend an alternative term for that...
Posted by Chad Perrin | April 17, 2009, 1:20 PM PDT | Latest comment by wizard57m-cnet
-
New McAfee patent hints at a more walled-off online world
A McAfee patent hints at content filtering at the user level in order to block sites that offer pirated content.
Posted by Patrick Lambert | May 3, 2013, 9:00 AM PDT | Latest comment by public_domain
-
10 services to turn off in MS Windows XP
As I pointed out on 19 October, in point number four of the article 10 security tips for all general-purposes OSes, an important step in the process of securing your system is to shut down...
Posted by Chad Perrin | November 7, 2007, 10:02 AM PST | Latest comment by JonB2008
