All Entries Tagged With: "Identity Theft Protection"
The yin and yang of cybersecurity
The yin and yang of cybersecurity
December 21, 2009 10:00 AM
Howard (right) and Prince (below) say online peace can only come when corporations achieve “cyberbalance.” Photos: Perimeter
On the Internet, the good guys and the bad guys are inextricably connected. But what happens when one side gets the upper hand?
By Doug Howard, chief strategy officer, and [...]
2009 Breaches and Blunders
Kevin Prince, CTO of Perimeter eSecurity recently released a paper on the top 2009 breaches and blunders. See the full article here. There is also lots of talk about it on Twitter. See here.
—————–
Perimeter E-Security Exposes Top Ten Biggest Security Breaches and Blunders of 2009
MILFORD, Conn., Nov. 23 /PRNewswire/ — Perimeter [...]
Quaresso – Web Security Solution
I recently had the opportunity to review the web application security offering by Quaresso (www.quaresso.com). There is a flash presentation as well as a PDF that explains how the service works quite well.
Essentially the software controls the end user browser better forcing better security as well as removing any sensitive information such [...]
2009 Verizon Business Risk Team Findings
Key Findings of the 2009 Verizon Business Risk Team Cybercrime Report
This year’s key findings both support last year’s conclusions and provide new insights. These include:
* Most data breaches investigated were caused by external sources. Seventy-four percent of breaches resulted from external sources, while 32 percent were linked to [...]
Scams using Social Networking Sites
There is a blog post that discusses a couple of scams using social networking sites Facebook and Twitter. Good to be aware.
Retail Data Breach Study Analysis
Perimeter eSecurity released a retail data breach study several months ago. There was an insightful article posted that I thought made some very good points. Be sure to read the comments at the bottom as well.
Criminals Register Domains Like Yours
The Anti-Phishing Working Group (APWG) performed some analysis around the use of registering domains to be used for the purpose of Phishing attacks. What criminals do is register a domain name that looks similar to yours. For example, if your domain was myfinance.com they might register myf1nance.com (where the i has been changed [...]
Financial Data Breach Sources
Some good analysis from a post on Perimeter.
“In the study we just released on financial institution data breaches between 200 and 2008 we analyze the breach sources.
Hacking accounts for 42 percent of incidents but 55 percent of records compromised. This is the largest percent of incidents and records which is why financial [...]
Common Hacker Attack Pathways
In the 2008 Data Breach Investigations Report written by Verizon it discusses the most common methods of access (pathways) used to compromise networks. What they found from the 500+ caseload was the following:
Nearly half of all breaches exploited remote access and control systems. The report states that this is often remote access software [...]
Financial Services Companies Have The Data Hackers Want
In the newly published study on financail data security breaches between 2000 and 2008, it reports that 12 percent of data breach incidents come from financial services companies, but account for over one third of all records compromised.
Financial services companies are often targeted by criminals because that is where the “crown jewels” are. [...]