If the weakest link in Security or the equal parts of security : People, Process, and Technology, then we need to help the people in your organization with keeping up with security changes and threats without a large training expense. Not everyone wants to become an IT geek to be more secure. So why are … Read more
New Cisco attacks on the IOS operating system (a Cisco operating system). http://tools.cisco.com/security/center/viewAlert.x?alertId=40411 There are actually no product vulnerabilities, but just plain old administrative access problems. What happens if someone gets your admin account on the router? The hacker will not change routes so you fix it, the hacker will upload a hacker special malware … Read more
FireEye and Kaspersky had zero-day vulnerability bugs in their software. http://www.zdnet.com/article/fireeye-kaspersky-hit-with-zero-day-flaw-claims/ It is not news that software has flaws, and that some flaws are vulnerabilities that can be exploited by hackers. What is news is that FireEye is a cybersecurity company: With firewall devices among their product lines. http://www.theregister.co.uk/2015/09/08/fireeye_0day/ Says that the security researcher put … Read more
Best image from Google image search ” computer jokes” What can be described as funniest joke? Well there is an Edinburgh fringe joke contest and in 2011 there was a good one: from http://www.bbc.com/news/uk-scotland-14646532 1) Nick Helm: “I needed a password eight characters long so I picked Snow White and the Seven Dwarves.” … Read more
Yes as Veracode says: https://www.veracode.com/blog/2015/07/application-security-assessment-reviewing-your-testing-program-sw They list 3 misconceptions: QA (Quality Assurance) is when development is done. Third party software does not need testing Developers don’t care about security We have to perform QA during development as well as after. All software needs security testing and not just functional testing. Sio what should you … Read more