NIST has a computer Security division and they have revamped their The On-line Database: Access and Control policy and procedures There are many good areas to review in this website, including: Don’t forget the home workers: An… National Institute of Standards and Technology (NIST) has new standards
KrebsonSecurity has the story (a good security blog) a 24 year old Viet-Nam (Ngo) national helped create a situation where data from Experian was sold to online identity theft rings. The company Court Ventures helped… Experian – one of the credit reporting agencies was duped
As noted by us-cert.gov there are many methods of taking advantage of SQL injection opening in a website. The real problem is when companies don’t admit to the breaches occuring. At Security magazine they did a survey189,650 respondents:… SQL Injection is a common hacker method to attack
NVD or at the http://nvd.nist.gov/home.cfm NIST is the National Institute of Standards and Technology. NVD contains: 62145 CVE Vulnerabilities 231 Checklists 248 US-CERT Alerts 2862 US-CERT Vuln Notes 10286 OVAL Queries 89128 CPE Names… National Vulnerability Database (NVD)
Yes Drupal version 7.x – 3.5 now has a remote command injection vulnerability. Packetstormsecurity has a page on it. patch to the latest software (May 3rd or newer) to prevent this. Drupal is a popular Content… Drupal vulnerability – patch your software
Have you checked wifi signals as to their effectiveness? Is your wifi router/ access point using good encryption technology? Wardriving: Peter Shipley coined the term “wardriving” the practice of deliberately searching a local area looking for… Wardriving: when a hacker checks wifi signals