October 2006

• October 31, 2006 31 Oct'06

  Quiz: Countermeasures for malicious email code

  A five-question multiple-choice quiz to test your understanding of the content presented in Countermeasures for malicious email code lesson of SearchSecurity.com's Messaging Security School.  Continue Reading

• October 31, 2006 31 Oct'06

  Countermeasures for malicious email code

  Today's malware continues to raise the security stakes. Enterprises are now facing numerous evolving threats like targeted and blended attacks, zero-day exploits, botnets and phishing schemes. The attacks aren't the only things evolving; so are ...  Continue Reading

• October 31, 2006 31 Oct'06

  Messaging Security School

  SearchSecurity.com's Messaging Security School has brought together some of the most knowledgeable experts in the messaging security field to offer you personal instruction on how to secure the information handled by your organization's knowledge ...  Continue Reading

• October 31, 2006 31 Oct'06

  Quiz: Essential practices for securing mobile devices

  A five-question multiple-choice quiz to test your understanding of the content presented in the Essential practices for securing mobile devices lesson of SearchSecurity.com's Messaging Security School.  Continue Reading

• October 31, 2006 31 Oct'06

  Quiz: Secure instant messaging

  A five-question multiple choice quiz to test your understanding of the content presented in the Secure instant messaging lesson of SearchSecurity.com's Messaging Security School.  Continue Reading

• October 31, 2006 31 Oct'06

  Taking the bite out of Bluetooth

  Bluetooth has become a ubiquitous short-range wireless protocol embedded in many mobile devices, but it has been plagued by security threats. In this tip, Lisa Phifer details those threats and explains how any organization can stay safe by following...  Continue Reading

• October 31, 2006 31 Oct'06

  Latest IM attacks still rely on social engineering

  In the age of email-borne superworms, email recipients would often become victims without any interaction or warning. However, as Michael Cobb explains, many of today's most dangerous instant messaging attacks require user interaction, meaning wary,...  Continue Reading

• October 25, 2006 25 Oct'06

  Steps in the information security program life cycle

  This article from our series on information security governance describes the essential steps to take when developing a security program life cycle.  Continue Reading

• October 24, 2006 24 Oct'06

  RavMonE virus (W32/Rjump)

  The RavMonE virus, also known as W32/Rjump, is a virus that opens a back door on a computer running Windows, creates a copy of itself in the Windows system directory and creates a log file containing the port number on which its back door component ...  Continue Reading

• October 24, 2006 24 Oct'06

  Boston Celtics face off against spyware

  One of the Boston Celtics' toughest opponents was spyware until the IT shop fought back. The team's IT chief explains how he gained the upper hand.  Continue Reading

• October 24, 2006 24 Oct'06

  What is the risk estimation model for SSL VPN implementation?

  Risk assessment is a common way to evaluate new technologies. In our SearchSecurity.com Q&A, network security expert, Mike Chapple, explains how to determine if SSL VPN implementation is right for your organization.  Continue Reading

• October 23, 2006 23 Oct'06

  Achieving Compliance: A Real-World Roadmap

  This session track from Information Security Decisions 2006 explains how to build an effective compliance program, defines metrics and ways to ensure business continuity.  Continue Reading

• October 23, 2006 23 Oct'06

  Enhanced Identity and Access Management

  From consolidating directories to automating provisioning and rolling out single sign-on, these sessions identify how leading organizations are strengthening authorization and enforcing access controls.  Continue Reading

• October 19, 2006 19 Oct'06

  CISO combines security, safety at DuPont

  Larry Brock uses team building to reduce risk and combine security and safety for managing sensitive chemical processes at DuPont. His work earned him a Security 7 award.  Continue Reading

• October 19, 2006 19 Oct'06

  How to secure an e-commerce Web site

  If you need to secure an e-commerce Web site, application security expert, Michael Cobb, has a place to start. In this expert Q&A, Cobb recommends the equipment that will secure your online business.  Continue Reading

• October 19, 2006 19 Oct'06

  Defensive measures for evolving phishing tactics

  From image spam to cross-site scripting, hackers certainly have a large arsenal of weapons to choose from. But as AT&T recently learned, hackers are putting a new twist on ever-dependable phishing schemes to gain access to confidential and sensitive...  Continue Reading

• October 19, 2006 19 Oct'06

  What tools are available to verify a patch's validity?

  Ever wonder about the source and integrity of a downloaded patch? In our expert Q&A, platform security expert, Michael Cobb, tells users about various management programs that can verify your patches.  Continue Reading

• October 18, 2006 18 Oct'06

  CISO focuses on enterprise risk

  Craig Shumard overhauled CIGNA's risk operations by appointing business unit managers as conduits between lines of business and security. His work earned him a Security 7 award.  Continue Reading

• October 18, 2006 18 Oct'06

  Privacy and your offshore operations

  Most companies are used to considering the implications of Sarbanes-Oxley and Gramm-Leach-Bliley on their domestic operations, but thinking about security and privacy offshore is just as important. Contributor Joel Dubin explains how to ensure ...  Continue Reading

• October 17, 2006 17 Oct'06

  Nmap Technical Manual

  By now, most infosec pros have heard of Nmap, and most would agree that even though the popular freeware tool is invaluable, installing, configuring and running it in the enterprise is no easy task. With that in mind, SearchSecurity.com, in ...  Continue Reading