A cute cartoon introduction to the Advanced Encryption Standard (AES, aka Rijndael) algorithm. Four sections, growing increasingly technical. Read more →
« September 2009 | Main | November 2009 »
Posts from October 2009
31 October 2009
Cartoon AES
Posted by Rob Slade on 31 October 2009 at 01:53 AM in Cybersecurity Training, IT Security | Permalink
|
Comments (0)
|
TrackBack (0)
30 October 2009
Another "Cat and Mouse fight" or... Tracking down a botnet
A while ago the company I work for was hired for a Telecom company to secure their data centers. During the initial gap analysis phase, the backbone was hit by a DDos attack and of course we were assigned to try to help. The interesting about this case is that we act on a "happening now" scenario instead of the regular "post mortem" case. The Evidence: This is a botnet!!! Just to baseline everyone Whats is a botnet? From Wikipedia: Botnet is a jargon term for a collection of software robots, or bots, that run autonomously and automatically. The term... Read more →
Posted by Alexandre Cezar on 30 October 2009 at 09:39 AM in Network Security | Permalink
|
Comments (0)
|
TrackBack (0)
29 October 2009
It Takes an (ISC)² Member
- Change the passwords I’ve told my friends - Change my Facebook privacy settings - Put a password on my computer - Put the Websites on my favorite list so I don’t mistype them - Download newest software on our computer These are some of the online safety tasks kids at Swanson Middle School in Arlington, Virginia said they plan to undertake as a result of attending the first (ISC)2 Safe and Secure Online presentation delivered in the Washington D.C. area yesterday. A local CISSP volunteer and father of three, Dan VanBellenghem of NCI Information Systems, Inc. spoke to 15... Read more →
Posted by Sarah Bohne on 29 October 2009 at 04:00 PM | Permalink
|
Comments (1)
|
TrackBack (0)
27 October 2009
Improving the Quality of the (ISC)² Blog
Dear (ISC)² Members, Here are my suggestions to improve the quality of the (ISC)² blog: Authors should post original content that is written by an (ISC)² member. Authors should not post “referral content” and “links” unless the links and referred content are a minor element of a larger, original, thoughtful story related to the security topic at hand. Authors should never post an article that is mostly a “cut-and-paste” from other web sources. When we first started writing for this blog the overall quality was higher because our blog posts were mostly original, thoughtful articles by our members. Since that... Read more →
Posted by Tim Bass on 27 October 2009 at 11:52 AM | Permalink
|
Comments (2)
|
TrackBack (0)
25 October 2009
Weekly Summary of the "DHS Daily Open Source Infrastructure Report
While this was the week where Windows 7 was released with much coverage in the trade press, only one item appeared in DHS reports regarding the “default user account”. Mobile cryptographic keys appear to be at risk as reported in addition to more aggressive activity in the marketing and delivery of fake anti-virus software. The DHS Daily Open Source Infrastructure Report (DHS) covers the publicly reported material for the preceding day(s) not previously covered. This weekly summary provides a selection of those items of greatest significance to the InfoSec professional. Should you not be aware of even one of the... Read more →
Posted by Bob Johnston on 25 October 2009 at 08:38 AM | Permalink
|
Comments (0)
|
TrackBack (0)
18 October 2009
Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
This week we learned of a critical Adobe Reader patch which should be promptly applied, collapse of the Internet in Sweden, Google’s efforts to identify compromised web sites and that workplace computer security is not all that it should be. The DHS Daily Open Source Infrastructure Report (DHS) covers the publicly reported material for the preceding day(s) not previously covered. This weekly summary provides a selection of those items of greatest significance to the InfoSec professional. Should you not be aware of even one of the items discussed below it would be wise to familiarize yourself with it. The headline... Read more →
Posted by Bob Johnston on 18 October 2009 at 06:23 AM | Permalink
|
Comments (0)
|
TrackBack (0)
10 October 2009
Weekly Summary of the "DHS Daily Open Source Infrastructure Report
The DHS Daily Open Source Infrastructure Report (DHS) covers the publicly reported material for the preceding day(s) not previously covered. This weekly summary provides a selection of those items of greatest significance to the InfoSec professional. Should you not be aware of even one of the items discussed below it would be wise to familiarize yourself with it. The headline above each entry will take you directly to the DHS report which presented the item for ten business days from the date of inclusion. The Source link will take you to the original source cited by DHS. A very quiet... Read more →
Posted by Bob Johnston on 10 October 2009 at 07:37 PM | Permalink
|
Comments (0)
|
TrackBack (0)
04 October 2009
Weekly Summary of the "DHS Daily Open Source Infrastructure Report"
The DHS Daily Open Source Infrastructure Report (DHS) covers the publicly reported material for the preceding day(s) not previously covered. This weekly summary provides a selection of those items of greatest significance to the InfoSec professional. Should you not be aware of even one of the items discussed below it would be wise to familiarize yourself with it. The headline above each entry will take you directly to the DHS report which presented the item for ten business days from the date of inclusion. The Source link will take you to the original source cited by DHS. This is a... Read more →
Posted by Bob Johnston on 04 October 2009 at 08:46 PM | Permalink
|
Comments (0)
|
TrackBack (0)
01 October 2009
Microsoft Security Essentials
Microsoft, having done a really bad job of it in the past, has decided to get back into the AV game. I've looked at their new, free product. It's provisionally all right, and probably good for most users. Read more →
Posted by Rob Slade on 01 October 2009 at 03:01 PM in Cybersecurity Training, IT Security, Malware, Operations Security | Permalink
|
Comments (1)
|
TrackBack (0)
Search
Categories
- (ISC)² Chapters (22)
- (ISC)² Events (159)
- Center for Cyber Safety and Education (52)
- Cloud Security (132)
- Cybersecurity Certifications (376)
- Cybersecurity Training (310)
- Cybersecurity Workforce (242)
- Digital Forensics (29)
- Ethics (52)
- Government (123)
- Insider Risk (56)
- IT Security (372)
- Legal (45)
- Malware (112)
- Network Security (175)
- Operations Security (140)
- Privacy (116)
- Ransomware (83)
- Risk (195)
- Software Development (44)
- Spotlight (71)