Comments for SecureThinking

Comment on Protecting Our Nation’s Most Critical Infrastructure and Assets by Is a hack into our nation’s domestic infrastructure possible? « SecureThinking

Thu, 22 Jul 2010 15:04:12 +0000

[...] Security Agency recently unveiled a program to help secure the networks of crucial domestic infrastructure, including the networks of electrical companies and nuclear power plants. Called “Perfect [...]

Comment on Keeping it Simple, Before You Drift into the Cloud by Kraken is Baaaaaaaack « SecureThinking

Kraken is Baaaaaaaack « SecureThinking — Wed, 14 Jul 2010 20:54:33 +0000

[...] mitigate risks. For BT Managed Security Solutions Group (MSSG) customers, the good news is that a botnet detection module is a standard Managed Secure Monitoring service available to all [...]

Comment on Cyberwar is a reality, but what exactly is it? by Kristin

Kristin — Mon, 21 Jun 2010 19:26:32 +0000

This is a very scary but real threat that we face today. Although it is imminent that some type of real cyber war will occur, there are ways we can avoid this. We can ensure we have PC and cloud backups of all our data, ensure our passwords are secure, encrypt data sent over the web, and ensure servers we keep our data on are complying to said security measures.

Thanks for the great post!

Kristin, Marketing Analyst, Backupify

Comment on Please, no sledgehammers – ensuring effective data destruction practices by Angie Singer Keating

Angie Singer Keating — Fri, 04 Jun 2010 11:22:16 +0000

Ben, thanks for making the proper destruction of data a task worthy of discussion. While we continuously see articles about complex threats and ever evolving attacks, this one very low level risk is very real. Sadly, it is not given the attention that it truly requires in most organizations. Companies that invest in some of the most extentensive and expensive security measures look at the disposition of IT assets as just an afterthought. Keep fighting the good fight!!

Comment on Securing your mobile devices by Paul Troisi

Paul Troisi — Wed, 02 Jun 2010 18:33:19 +0000

I completely concur with Stephen’s perspective. When you then add the complexity of layering the issues of enforcing policy and standardizing applications across multiple device OS, managing the need of employee’s to use their existing mobile devices, smartphones becoming more powerful and wireless data networks becoming faster and stronger (3G – 4G), organizations face an uphill battle to secure the mobile enterprise and end-point devices.

With the amount of applications being deployed for the iPhone, Android and other platforms, how does an organization protect itself against the threats that exist out there?

Lastly, with so many IT and IS organizations being asked to do more with less resources, there seems to be the need for companies to establish a mobility security division just to assist with enforcing the demands that both the executive community, as well as the newer generation of workers, place on the IT.

Comment on Securing your mobile devices by Joshua Marpet

Joshua Marpet — Tue, 01 Jun 2010 20:13:13 +0000

Mobile device security is a fascinating topic, including the forensic aspects of such devices as iPhones (which need to be jailbroken to forensically examine(normally)).

Of course, even a laptop can now be termed a mobile device, when you have “computer on a stick” items from companies like Moka5 or Becrypt.

So some devices have mobile wipe, or auto backup to a server. So where do you serve the subpeona?

And some devices have the capability to have local storage, like a USB stick. Truecrypt, anyone?

And then of course, the phone conundrum. Femtocell hacks? Naw, why would anyone care about my phone calls?

Well, Android is starting to have scrambler apps. Encrypted phone calls! Awesomesauce!!

It’s an interesting field, with a million forks, from carrier, handset brand, firmware version, and malware lists.

Looking forward to the book.

Joshua

Comment on Endpoint appreciation by Securing your mobile devices « SecureThinking

Securing your mobile devices « SecureThinking — Tue, 01 Jun 2010 15:13:55 +0000

[...] discussed many times on SecureThinking, it is important for companies to focus on securing their endpoints. We believe these issues provide an opportunity for CIOs and CSOs to help their organizations [...]

Comment on Wither VeriSign? Further Consolidation in the Security Marketplace by Marc Hausman

Marc Hausman — Fri, 28 May 2010 01:15:04 +0000

I agree 100 percent with Toby’s belief that global, market leading organizations have a responsibility to invest in innovation.

Yes…they have shareholders, customers, employees and other audiences they must be accountable to. Yet, no one is inspired by a staid organization that shuffles along with little in the way or risk.

Full disclosure: I run the social media consultancy that works with BT on the Secure Thinking program. Yet, I had no knowledge of or contributions to this post by Toby.

Comment on Wither VeriSign? Further Consolidation in the Security Marketplace by Tony Wilson

Tony Wilson — Thu, 27 May 2010 06:08:20 +0000

Interesting post. Surely referring back to 2000 when stock was incredibly overpriced is an odd way to look at the history of Verisign. A better figure to quote is the 21 Billion USD they paid to acquire Network Solutions. This is a much better number to quote as this shows the true absurdity of the times.

Comment on Howard A. Schmidt – the right man for the job by Key players in private cybersecurity « SecureThinking

Key players in private cybersecurity « SecureThinking — Thu, 20 May 2010 18:08:56 +0000

[...] Howard Schmidt — White House cybersecurity coordinator [...]