May 12 2014

Bestselling Books at Infosecurity 2014

Category: cyber security,Information SecurityDISC @ 9:36 am


by Lewis Morgan @ITG

It has now been a week since Infosecurity Europe 2014. This year was my first at Infosec, and I found it to be one of the most interesting and diverse events I have ever been to.

During my short time on the IT Governance stand, I spoke to several people who were showing a keen interest in our wide range of books. It was a common opinion that our range of books is one of the broadest in the industry – something of which we are very proud.

To demonstrate our range of books and their popularity, We have created the below list of the 5 bestselling books at Infosecurity 2014*. All of the following books are available in multiple formats.

PCI DSS Pocket Guide

    A quick guide for anyone dealing with the PCI DSS and related issues. Now also covers PCI DSS version 3.0.

ISO27001 / ISO27002 Pocket Guide

    Now updated for the 2013 editions of ISO27001/ISO27002, this pocket guide gives a useful overview of two important information security standards.

Governance of Enterprise IT based on COBIT®5

    A perfect introduction to the principles and practice underpinning the governance of enterprise IT using COBIT®5.

Penetration Testing –  Protecting Networks and Systems

    An essential guide to penetration testing and vulnerability assessment, which can be used as a preparation guide for Certified Penetration Testing Engineer exams.

Securing Cloud Services

    This book provides an overview of security architecture processes, and explains how they may be used to derive an appropriate set of security controls to manage the risks associated with working in the Cloud.


Tags: Certified Penetration Testing Engineer, Cloud computing, cloud computing security, London, Payment Card Industry Data Security Standard, Penetration test

Mar 18 2010

Casinos conned by IT hackers

Category: CybercrimeDISC @ 1:54 pm

Wheel of fortune. Shot wide open using 50mm/f1.
Image via Wikipedia
Casinos conned by IT hackers who printed false betting slips

Humans are the weakest and the strongest link to run computer operated machine. If these two people can create havoc, what do you think the mischief mind of a business owner can do? Think about it when you are back in casino and playing at computer operated poker or black jack machine. I’m sure there are regulations regarding this bamboozling behavior but the key is who is monitoring these casinos, whoever that might be should be totally independent.

“However, the scheme came unstuck after an alert cashier noticed a winning slip for £600 for a £10 bet at odds of 35-1.”

Andrew Ashley, 30, and Nimesh Bhagat, 31, stole more than £33,000 by infiltrating software controlling remote betting machines covering live roulette wheels at four Gala Casinos in London, a court heard.

The pair simply made the machines print out winning vouchers for sums of up to £600, whatever the outcome on the wheel.

But they were caught out when a cashier realised a payout was impossible as only £10 had been wagered at odds of 35-1, Croydon Crown Court was told.

Officials began an inquiry and quickly traced a string of suspicious wins back to the two contractors, who were employed as problem analysts.

Ashley, from south-east London, and Bhagat, from south-west London, were handed 12-month prison sentences, suspended for two years, after each admitting an offence under the Theft Act 1968.

The two men were ordered to undertake 200 hours of community service and pay back around £16,000 each, a police spokesman said.

The convictions are believed to be the first where people have been caught mishandling the computer technology behind Britain’s gaming industry.

They followed an inquiry by officers from Scotland Yard‘s clubs and vice unit into a series of transactions between July 2007 and September 2007.

The scam centred on remote betting terminals at casinos that enable customers to place bets without being at the roulette table.

Those who make winning bets are given a printed ticket with details of their credit that can then be cashed.

Detectives examined computers seized from the men’s homes and looked at CCTV footage that placed the men at the terminals when the offences occurred.

Detective Inspector Ann-Marie Waller said vigilant staff stopped the fraud before hundreds of thousands of pounds were lost.

She said: ”These men not only used their intimate knowledge of two complex systems to break the law and make these fraudulent claims, they also breached the trust of their employers and any semblance of professional integrity.”

Tags: fraud, Gala Coral Group, Gambling, London, Poker, Roulette, Scotland Yard, The Daily Telegraph