Tuesday, December 29, 2009
How safe are your browser passwords?
Saturday, July 11, 2009
Interesting Post on Data Breaches
"I would estimate that payment cards represent as little as 1.2 – 1.5 percent of all data thefts. The remaining 98.x percent being occupied primarily by personally identifiable data (PII), then account credentials, company-proprietary data, and a few other categories in a distant fourth and fifth by incidence...When stolen, payment card data tends to lead to fraud. That’s the whole point of stealing it. The ensuing fraud is detectable and fraud analysis and detection tools have made it almost elementary to identify the likely source of a suspected payment card breach for almost 10 years."
The point is that compromises of payment card information are rarely detected by the company who breached the card information. Rather the breach is detected by the payment card industry and traced back to the company due to the fraud and tools utilized by the payment card industry.
No similar capabilities exists to trace the source of personally identifiable information, account credentials, intellectual property and other lost information.
Would you even know if your company was breached?
Sunday, May 17, 2009
Seth Godin on Tribes
Definitely worth a listen.
Wednesday, February 04, 2009
Mandiant Memoryze Review and other free Mandiant Tools
In followup to my ISC diary of January 2nd. Russ McRee of holisticinfosec.org has published his review of Mandiant's Memoryze tool. Russ was so impressed with Memoryze he awarded it the 2008 Toolsmith Tool of the Year!
For those of you who didn't read the first diary...Memoryze is a free tool from Mandiant to assist with Windows memory analysis. It is one small piece of Mandiant's Mandiant Intelligent Response (MIR) product, released for public consumption
Russ's review can be found at http://holisticinfosec.org/toolsmith/docs/february2009.pdf
Another outstanding free tool released by Mandiant in the last few weeks is Hilighter. Hilighter is a tool that assist in the viewing and analysis of log files and other text files. I have only played with it a little bit, but so far I am very impressed.
Mandiant has other free incident response tools available on their website as well:
Red Curtain - helps find and analyze unknown malware
Web Historian - assists with review of websites found in browser history files
First Response - incident response management software
If these first few releases are any indication it appears that the Mandiant folks are committed to providing top quality free tools to the incident response community.
Enjoy!
Friday, January 09, 2009
The Academy...Home!
Because of very persistent marketing most people in the security industry have heard of The Academy. Peter Giannoulous has done an amazing job of promoting his security video website in an almost viral way using all sorts of Web 2.0 from Linkedin to Twitter and everything inbetween.
Now Peter has gone one step further, launching The Academy Home. This site has the same general idea...videos on how to configure security...but the audience is much different. The Academy Home is aimed at the average computer user. Finally a good quality security website aimed at your parents and grandparents who are not savvy computer professionals and sorely in need of good quality, knowledge appropriate guidance.
So please help make this endeavour successful! Let all of your non-tech-savvy friends and relatives know about The Academy Home. Maybe you will even get a couple of nights off from tech-support. (-8
SANS Log Management Survey
SANS is surveying individuals on log management practices in their organizations. The more people who take the survey the more useful the results. so please give up 10 minutes of your time to complete the survey. Even if you have not yet started a log management project...please take the survey...your information is at least as important as those who have, if not more.
Thanks in advance!