C-Suite and Techies: Best Security Results for the Least Cost

Sometimes executives cut off communications with their IT/security staff because they seem to want to spend more money on IT solutions. While IT costs can be high, it is not always the case that building better security requires a layout of significant cash. In fact, it is possible to deploy reasonably resilient security without an overly burdensome security budget. We simply need to look for methods, techniques and tools that are less expensive and that take advantage of existing knowledge and technology.

Read more

C-Suite and Techies: Clarifying the Risk of Poor Security

Some executives do not see security as a key business function, rather as an IT only function. This is a mistake. Without good security throughout an organization, compromise will occur. This is one of the many topics that the security management team and the top level executives need to discuss is frank detail.

Read more

Security+ Question of the Week: DoS Tool

You have become aware of a DoS tool that targets your public Web site which is co‐located at an ISP rather than in a DMZ off of your intranet. This DoS tool is present on numerous systems across the Internet, but it has also been discovered on a few intranet clients as well. After analyzing traffic captures, you discover that the DoS tool spoofs its source address in the 10.233.43.10‐50 range. Why is your Web server not being affected by this DoS traffic?

Read more