OWASP Testing Guidelines 2014 In software development there are 5 stages: Define, Design, Develop, Deploy, and Maintain. OWASP released some more overall testing methodology. When to test is the question? Ideally one tests at all stages of the SDLC (Software Development Life Cycle). But where is it most optimal to test? If … Read more
Krebsonsecurity has the story again. C&K Systems performs a portion of Credit card and Debit card transaction processing. The most disturbing aspect of this breach knowledge is that they did not learn anything for 18 months. The problem with the head in the sand – no problems in my backyard method of management is eventually … Read more
Internet Storm Center has some more discussion The bottom line is Symantec has said its software products can only catch 50% or so of the viruses out there. PCMag says so what: http://securitywatch.pcmag.com/security/323419-symantec-says-antivirus-is-dead-world-rolls-eyes The comments gave a couple of good links(which I captured a couple of images from): http://www.av-comparatives.org/comparatives-reviews/ http://www.av-test.org/en/news/ So one can test the Anti-Virus … Read more
https://www.kickstarter.com/projects/1574308430/computer-security-simplified I am putting a book together to explain some computer security basics I have found along the way of a 20 year career in IT. Password policy, Two-Factor-Authentication, Clickjacking/phishing, Wifi setup,Virus and malware fixes. Radio show went well this morning at KXEN… http://www.businessinsideandout.com/ As soon as I get the content (mp3 file) will … Read more
KrebsonSecurity has the latest info on the latest attacks on HomeDepot And this image was pointed to by the malware code which means it is not only a financial attack on HomeDepot, but it is also a political attack. Here are Brian Kreb’s words themselves: “In the wake of the Target breach, I traced a … Read more
