Happy Thanksgiving
Have a happy Thanksgiving everyone!! Especially to all of our service members abroad!
Database in Cloud? Testing security is still important
My provider is taking care of my database security. The cloud affords many advantages, including not having to set up servers, maintain them. This is good, security must also be handled by the cloud provider. Especially if this is a public cloud database. If your database is on a server and is being accessed by … Read more
Sony hacked, held ransom, shut down – or not?
Is this a sign of things to come? Geek.com story The Guardians of Peace (#GOP) hacked Sony Pictures Some specific details are on Reddit.com When one person downloaded the stolen files and they reviewed the contents: Email addresses (including the Guardians of Peace email addresses apparently) Files of internal Sony Financial reports. But … Read more
Good Time to Evaluate Patch Management
Interesting to note tomorrow is 2 weeks from Patch Tuesday November 11th (2nd Tuesday of month) and 2 weeks from patch Tuesday in December (the 9th). So it is a perfect time for reflection – thus we review a discussion of the November 2014 patch Tuesday in SecurityWeek. It means to give direction for companies that … Read more
Free Public Databases – Should they be used at all?
Internet Storm Center has a post today noting the update to Burp Suite an excellent vulnerability analysis of Websites as a proxy server. While checking the update the storm center noted the inclusion of NoSQL injection in the update. At the same time why is this important? because of the prevalence of public databases or “Bigdata” … Read more