InfoSec blog

Network Access Control and Security

DISC — Mon, 29 Dec 2008 02:24:14 -0600

The purpose of network access control is to protect and safeguard assets attached to network from threats of unauthorized users gaining access to organization’s assets. Network Access Control (NAC)...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Unstable economy and insider threats

DISC — Tue, 16 Dec 2008 00:42:00 -0600

Image by Pulpolux !!! via FlickrDuring the current unstable economy, organizations face increased threats from insiders during tough economic years ahead. During hard time organizations not only have...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Telcos and information privacy

DISC — Fri, 05 Dec 2008 12:26:28 -0600

Image via Wikipedia With the economy in the tank, breach of privacy is not going to be a priority in Obama’s administration to do list. It will be quite difficult to make it a priority when Obama has...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Cyber threats and overall security assessment

DISC — Wed, 26 Nov 2008 01:13:33 -0600

Image via Wikipedia In the past when senior management (execs) needed to understand the financial implication of cyber threats and their exposures, they turned their questionnaires toward IT for...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Harmful Spyware and their stealthier means

DISC — Mon, 17 Nov 2008 12:55:34 -0600

Spyware is utilized to gather information about a person with or without their consent and it intercept or record personal/financial information. Some spyware are capable of sending information back...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Open Network and Security

DISC — Tue, 04 Nov 2008 17:54:53 -0600

Open networks are heterogeneous environment where users like to use all the applications and systems at any given time. In a heterogeneous environment, each department run different hardware and...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Laptop and traveling precautions

DISC — Tue, 28 Oct 2008 23:58:47 -0500

Best practice emphasize the fact to backup the data if you can’t live without it, in the same way a traveler must avoid taking sensitive data on the road unless it’s absolutely necessary to do so. If...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

12 Phishing Threats and Identity Theft

DISC — Tue, 21 Oct 2008 18:22:30 -0500

Have you ever thought of losing something and you cannot live without it? Yes, that something can be your identity. Phishing is a practice of luring unsuspecting Internet users to a fake Web site by...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

SmartPhone and Security

DISC — Fri, 17 Oct 2008 00:53:41 -0500

Mobile spyware is malicious software which is used to spy and control mobile devices (BlackBerry, PDAs, Windows Mobile and Cell Phones). Mobile spyware will not only intercept the message between two...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

World Bank security breach and financial crisis

DISC — Mon, 13 Oct 2008 00:56:36 -0500

The World Bank controls the World’s banking system, creates plans and strategies to develop economies to protect countries from financial turmoil. This information is a treasure trove of data which...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

Skype and Information Privacy

DISC — Wed, 08 Oct 2008 00:00:32 -0500

According to an SF chronicle article by Peter Svensson (Oct 3, 2008, pg. c4) “A Canadian researcher (Nart Villeneuve) has discovered that the Chinese version of eBay Inc.’s Skype communication...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]

vsRisk and security risk assessment

DISC — Tue, 07 Oct 2008 14:18:24 -0500

The State of California has adopted ISO/IEC 27002 as its standard for information security and recommends other organizations and vendors to use this standard as guidance in their efforts to comply...

[[ This is a content summary only. Visit my website for full links, other content, and more! ]]