Knock, knock on the door… “Do you have a minute to talk about a report request?” asked the developer. Security awareness typically focuses on employees – the people working in support, the call center, or with business partners. What about developers? The people who receive requests from the company to execute something – be it…
DetailsThe greatest fear of anyone running a virtual machine especially in a shared hosting environment is that an attack against one VM could jump the wall and impact the other VMs on the same machine; a so called guest escape. CrowdStrike, a vendor of host-based security solutions, announced today that one of its Senior Security…
DetailsSecurity Current today named SentinelOne the winner of its inaugural Security High Stakes competition. The event was held at the RSA Conference in San Francisco and brought technology providers face-to-face with security experts. Six cutting edge security vendors were given 15 minutes each to get the attention of a panel of 20 CISOs from leading organizations. The…
DetailsSingapore is quickly becoming the country of choice for technology vendors seeking to establish a hub in Asia. Ranked first in Asia, and seventh worldwide, in the Global Innovation Index (GII) 2014, Singapore was noted for its business and regulatory environment, and for its knowledge absorption. The GII is published by Cornell University, INSEAD and…
DetailsThere are a number of lessons that we in security can learn from the world of economics. This isn’t an original observation on my part: in fact, there are a number of fantastic resources out there devoted to exactly that area of inquiry. Using economics as a tool to evaluate features of a security program…
DetailsAnyone who listened to Aleks Krotoski’s 5 short programs on Radio 4 in the UK titled Codes that Changed the World will have been reminded that applications written in COBOL, despite dating from the late 1950s, remain in widespread use. Although organizations are reliant on these applications they are often impossible to change as the original…
DetailsMany will be familiar with the term bot, short for web-robot. Bots are essential for effective operation of the web: web-crawlers are a type of bot, automatically trawling sites looking for updates and making sure search engines know about new content. To this end, website owners need to allow access to bots, but they can…
DetailsIn 1995 a small security reseller in Southfield, Michigan, introduced possibly the first “cloud” based firewall: Check Point FW1 running on Sun Netra boxes in their small data center. Netrex would configure T1 connections from their customers’ routers to their data center and manage all of the firewall policies for them. As they developed their…
DetailsThe gravity well of situational awareness has been pulling on us since the earliest days of information protection. The ever-increasing sophistication of threats and compounding complexity of our systems is accelerating us down that path and narrowing our options. As we approach this singularity the choice to continue flying blindly through cyberspace is rapidly becoming…
DetailsInfluence, it’s one of those things which some have mastered. In the business world influence can be used as an advantage in order to achieve the desired outcome. Many people in security get locked into the technical realm which is only natural. However, what about learning something new which has to do with people in…
Details