FireSheep, Sidejacking and Logging
I read a story today in eWeek about sidejacking and FireSheep. The headline read “Firesheep and Sidejacking Not Just a WiFi Problem”. Most of the articles I read on this security hole are very vague on how it all works. Whereas, the info on the FireSheep site makes it very clear what was happening. Essentially they are stealing someone else’s web session identity (sidejacking) - and it’s done VERY easily. After the fear passed, it also became clear to me that you could use LogLogic’s products to catch this merely by correlating the SESSIONID to the IP, and if those changed, to take note of it.
Read more.
Compliance for the Masses: Bloor/LogLogic Webinar
We’re holding a webinar on the challenges faced by companies who have to make changes to their business operations due to compliance issues. For IT departments, the pressure to deliver a secure IT infrastructure against a background of constantly changing compliance and regulatory demands is tough, and not helped by a reduction in budgets to achieve this everchanging goal. By attending this webinar you will have a chance to learn about the realities of achieving an acceptable level of compliance for you organization.
Read more.
Logging and PCI: Key Issues
Among other things, PCI DSS mandates creating system logs and reviewing them from all systems in scope for PCI compliance. One should always remember that log collection and review are also critical for good security operations and incident response. In this article, we will focus on operational aspects of logging and log management for PCI compliance.
Read more.
Win The Beatles' back catalogue!
Woohoo, it’s officially international Beatles day over at Apple. To spread the joy we’re giving away all 256 items that make up the Beatles Box Set over on iTunes.
Read more.
Cloud Expo: Way Cool Stuff, and Seven Versions of the Same Company
By Bill Roth
I have a love/hate relationship with trade shows. On the one hand, I love them. I love meeting customers and prospects, and I love the shameless boosterism that it entails. On the other hand, as someone who has to manage to a budget and deliver ROI, I hate them. The ROI never works out. From a numbers point of view, they are nearly always a waste of money. (Except in Europe. I am still looking into that one.)
Read more.
SEM: A quick reality check
By Christophe Briguet
SIEM products are intended to target mature companies that understand log management and SEM, and want to add real value to their data by deploying a system for correlation and analysis. Ideally, the deployment of a SEM solution is the ultimate stage of log monitoring; security information is monitored in real-time for immediate alerting and incident response.
Read more.
5 Security Hurdles to Clear Before Choosing a Cloud Provider
By Dimitri McKay
Over the past year, the IT world has seemingly fallen head over heels for the cloud. Cloud computing has great potential in terms of collaboration and efficiency, and it's already delivering strong results for organizations that have leveraged the cloud model. For all the hype, though, it's important not to overlook one of the most basic yet crucial aspects of the cloud: setting up a reliable SLA (service level agreement) that ensures your organization's data is as secure in the cloud as it is in your own data center.
Read more.
PCI DSS 2.0 is here
PCI DSS defines itself as “a set of comprehensive requirements for enhancing payment account data security." However, in many real-world implementations of PCI DSS controls, the focus is on reducing the risk to transactions by limiting the number of systems that deal with card data. The most important concept in PCI DSS is “scope” – which refers to all of the systems, applications and networks where PCI DSS controls apply. PCI DSS is currently transitioning from version 1.2.1 to version 2.0. The new version (2.0) will be enacted on January 2011 and was published last week.
Read more.
|
