In the News
Thursday, November 10, 2011 | PenTest Magazine
This whitepaper presents background information about the Payment Card
Industry’s (PCI) Payment Application Data Security Standard (PA-DSS), and
discusses PA-DSS Validation by the Payment Application Qualified Security
Assessor (PA-QSA). Strong PCI experience, forensics expertise, and technical
writing skills are needed to perform PA-DSS Validation services for payment
application software vendors.
Wednesday, November 09, 2011 | Dynamic CIO
You probably are familiar with the classic security assessments: internal and
external penetration testing, security risk assessments, and PCI gap
assessments. You may not be as familiar with, or even aware of, other
assessments that may be just as valuable for strengthening your security
program. Some of these less familiar assessments are new, the result of emerging
technology and regulations, but others have been around for several years and
just haven't gotten the attention they deserve.
Monday, November 07, 2011 | PenTest Magazine
Establishing strong policies and procedures for access to an iPad is
absolutely critical to protecting sensitive information. Password enforcement is
the front line of defense against unauthorized access, and can be configured and
enforced over the air by using Microsoft Exchange. Additionally, there are
secure methods to configure the device to an environment where specific
settings, policies, and restrictions must be in place. These methods provide
flexible options for establishing a standard level of protection for authorized
users.
Wednesday, October 26, 2011 | CSO.com
In a February 2010 talk called "Social Zombies II: Your Friends Need More
Brains," security practitioners Tom Eston, Kevin Johnson and Robin Wood
explained how these applications are susceptible to malware pushers and those
looking to steal your personal information. It's not much of a stretch for
hackers to impersonate people you think are trusted, fellow players, as is the
case with a lot of online gaming.