Brian Krebs has updated his Blog: and his famous picture (how much is your hacked computer worth): http://krebsonsecurity.com/2015/01/fbi-businesses-lost-215m-to-email-scams/ IC3 data – Internet Crime http://www.ic3.gov /about/default.aspx The…
Pentesting every 3 months for entities with more than 20k transactions annually for less than 20k transactions. Why do you need to pentest? Because things…
Risk analysis and patch management is important. We discuss that on this day, since there were 2 Adobe vulnerabilities that we discuss on our blog:…
This morning (1/21/15) attended ISACA (previously the Information Systems Audit and Control Association) meeting: http://www.isaca.org/chapters5/Saint-Louis/Pages/default.aspx The past present and future of Web Application Security by…
We are explaining a little more about pentesting and the service that we have (Sigma Scan) in tip of day. In News of day we…
Our video of the fixvirus security show: news of day: Cybersecurity has priority in State of the Union (Why ? due to Sony Hack) as…
To be PCI compliant means there is a Security policy in place. We can help with a security policy or with the documentation for PCI…
New Fixvirus Security Show Jan9 on vulnerability Assessment in Tip of day as well as News of Day CES show quotes … Some of the…
“Do the right thing” = Philotimo PCI compliance best practices(from page 13 PCI DSS 3.0 doc): Monitoring of security controls—such as firewalls, intrusion-detection systems/intrusion-prevention systems…
On News of Day I discuss http://www.darkreading.com/operations/5-pitfalls-to-avoid-when-running-your-soc-/a/d-id/1318218 Specifically: “Our goal is to protect our critical assets, quickly know when they have been compromised and respond with…