Enterprise Penetration Testing In The Palm Of Your Hand

Posted by:

Pwnie Express Unveils Next Generation State-of-the-Art Pwn Phone 2014.

pwn phone penetration testingEarlier this week, Pwnie Express revealed the next generation of its  game-changing Pwn Phone, a cutting edge sleek phone that doubles as a powerful penetration testing device making it incredibly easy to evaluate wired, wireless and Bluetooth networks.

The leader in vulnerability assessment and penetration testing devices, the Pwn Phone 2014 is ...

Read More →
0

SEC Provides Guidance on CyberSecurity Exams

Posted by:

SEC Cybersecurity ExamsIn an April 15, 2014 Risk Alert, the U.S. Securities and Exchange Commission’s Office of Compliance Inspection and Examinations (OCIE) announced that it would conduct examinations of more than 50 registered broker-dealers and registered investment advisers, focusing on areas related to cybersecurity.

The OCIE Alert includes a sample request for information and documents that will be used in the initiative. This sample ...

Read More →
0

Is Dropbox Leaking Your Sensitive, Personal Information?

Posted by:

If you’re storing personal information in a cloud service like DropBox or Box, even Google Drive we have to ask, what are you thinking?  If you somehow have been convinced that these are secure platforms for sharing personal information you might think again after reading Graham Cluley’s piece below.

If you are using file-sharing systems like Dropbox and Box without proper care and attention, there is a risk that you could be unwittingly leaking your ...

Read More →
0

Covert Redirect Is Just a Flaw It’s Not Another Heartbleed

Posted by:

covert redirect is no heartbleedBut That Doesn’t Mean Its Not A Problem

On Friday, a PhD student at the Nanyang Technological University in Singapore, Wang Jing, published a report focused on a method of attack called “Covert Redirect,” promoting it as a vulnerability in OAuth 2.0 and OpenID. Yet Jing’s contention of security flaws in OAuth and OpenID has serious flaws of its own, according ...

Read More →
0

Microsoft Releases Patch For Zero Day Vulnerability (CVE-2014-1776) Including Patch For XP

Posted by:

LATEST INTERNET EXPLORER ZERO-DAY VULNERABILITY (CVE-2014-1776)IS IT SAFE YET?

Microsoft released a security update for its Internet Explorer browser Thursday to fix a the Zero-Day Vulnerability (CVE 2014-1776) for all versions of Windows including XP. This security update is rated Critical for Internet Explorer 6 (IE 6) thru 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 6 (IE 6) thru Internet Explorer 11 (IE 11) on affected Windows ...

Read More →
0

Compliance: Why You Can’t Afford To Stay With Windows XP

Posted by:

Now that there has been a Zero Day vulnerability identified in IE that will NOT be patched in Windows XP, we have to ask, “what will it take to get you off XP?” Perhaps the fact that you will not be able to meet your compliance requirements will provide the push you need to upgrade.

Many companies, large and small, have relied on Windows XP for years, and it hasn’t been an issue for compliance. However, ...

Read More →
0

Fix For Internet Explorer Security Flaw – Zero-day Internet Explorer Vulnerability (CVE-2014-1776)

Posted by:

do not use ie

You Have 5 Options

As a follow up to our earlier post, Microsoft Internet Explorer Security Bug Could Impact Millions of Users, we wanted to share what we’ve found out so far with respect to a fix for the latest IE flaw.

As of April 28, 2014, Microsoft has not provided a ...

Read More →
0

Microsoft Internet Explorer Security Bug Could Impact Millions of Users

Posted by:

internet explorer security flaw

It’s A Good Time To Change Browsers

Just when you thought things were starting to cool down a little after the Heartbleed Bug, Microsoft issued a security advisory on Saturday warning users of a vulnerability in its Internet Explorer web browser that could allow malicious “remote code execution.”

The vulnerability affects all versions of the browser and, as of this writing, there ...

Read More →
0

OCR Fines Two Organizations Nearly $2M Over Health Data Breaches

Posted by:

HIPAA Fines

Encryption Is Your Best Defense

Concentra Health Services and QCA Health Plan have agreed to pay HHS’ Office of Civil Rights settlements over separate data breaches, Health IT Security reports (Ouellette, Health IT Security, 4/22).
In November 2009, Concentra — a subsidiary of Humana — reported a data breach in Fort Worth, Texas, after an unencrypted laptop was stolen. Medical records of more ...

Read More →
0

2014 Data Breach Investigations Report Shows Some Alarming Trends

Posted by:

data breach reports 2014

This morning, Verizon issued its 2014 Data Breach Investigations Report (DBIR) that covers over 63,000 security incidents in 2013 from 50 global participating organizations spanning 95 countries. The top-line finding is that 92% of all security incidents in the past ten years fit into nine categories:  POS Intrusion, Web App Attack, Insider Misuse, Theft/Loss, Misc. Error, Crimeware, Payment Card Skimmer, Denial of Service, Cyber Espionage and Everything Else.

The 2013 DBiR featured breaches affecting organizations in ...

Read More →
0
Page 14 of 17 «...101213141516...»