AuthenticationWorld Blog: Archives

Search

Recent Posts

Subscribe to this blog's feed
[What is this?]

Archives

Archives

2010.10.20: Risk and Trust
2010.10.05: 12 Character passwords
2009.07.29: Identity for the unwashed
2009.07.27: What happened to my biometric?
2009.07.22: Single Point of Enterprise Failure
2009.07.21: Identity Verification
2009.07.17: The REALLY BIG identity marketplace
2009.07.14: If I was a physical access control cusotmer here's what I would demand of my PAC vendors...
2009.07.13: Authentication Risk Charts
2009.07.09: Explaining security to the Board
2009.07.08: If I were a large physical security vendor here's what I'd do...
2009.07.08: Interview with Security Squared about Physical and Logical Identity
2009.07.08: Security ops need for an integrated logical/physical security incident response system
2009.07.06: Commoditization of physical security
2009.06.30: NERC and Identity and Access Management
2009.06.29: Selling identity management in tough economic times
2009.06.29: Security Awareness
2009.06.27: Physical and Logical Security Integrations
2009.06.27: I'M BACK!
2007.12.08: The future of security
2007.09.17: How safe is your encryption scheme?
2007.09.17: The Threat Continues: ISP Denial of Service Attacks
2007.09.14: Enterprise 3.0
2007.08.22: Update on Blue Pill
2007.08.22: Vista kernel tampering
2007.08.22: Google Proxy Hacking
2007.08.20: OAuth approaches
2007.08.15: Identity, Security and Business Risk
2007.08.09: Hacking a biometric authentication system
2007.08.09: Why more authentication may be harmful to banks
2007.08.02: Hacks against banks up 81%!
2007.08.02: 10 reasons to worry if you're an IT Security Director
2007.08.02: Attacks on financial institutions customer accounts getting more sophisticated
2007.08.02: Layered defenses get another plug
2007.08.02: Blue Pill - The attack that won't go away
2007.07.27: Provisioning factory
2007.07.22: Draft uses cases for document management/drm protocol that integrates with XACML
2007.07.20: Search Engines and a Document Management Protocol that integrates with XACML
2007.07.05: Scaling Federation Trusts
2007.07.04: Secrecy - Get Over It Since the Battle is Already Lost
2007.07.04: The Future of Identity
2007.06.30: Burton Group Catalyst - Compliance and Audit
2007.06.30: Burton Group Catalyst - Walking the Halls
2007.06.30: Burton Group Catalyst - Seriosity
2007.06.30: Burton Group Catalyst - Collaboration and Content
2007.06.30: Burton Group Catalyst - Craig Burton
2007.06.30: Burton Group Catalyst - The First Identity Oracle
2007.06.30: Burton Group Catalyst - SAP Pull Your Socks Up!
2007.06.30: Burton Group Catalyst - XACML Interop
2007.06.30: Burton Group Catalyst - Identity Interop
2007.06.30: Burton Group Catalyst - Role of the CIO
2007.06.30: Burton Group Catalyst - Federation
2007.05.21: Microsoft releases MOICE
2007.05.18: Internet battlefield - Kaspersky Analysis
2007.05.18: People will do the dumbest things
2007.05.16: Potential way to hack Vista
2007.05.14: How criminals will eat the home made chips with the phish
2007.05.14: How to get hosed when thinking you're using the Windows automatic update
2007.05.12: Phishing up over 13%
2007.05.12: Inside trojan malware
2007.05.11: Swiss cheese patch update
2007.05.11: Some hope on the horizon for MS Office?
2007.05.11: Citibank's virtual keyboard authentication busted
2007.05.10: Botnet control tools
2007.05.10: Inside the head of a phisher
2007.05.01: New security flaws found in Trillian and Winamp
2007.05.01: Verisign offers one time passwords on credit cards
2007.04.30: Phishing sites down faster
2007.04.30: Context aware attacks
2007.04.29: Research indicates phishing attack victims might be as high as 11%
2007.04.29: A new variation on vishing attacks
2007.04.27: Keyloggers in the mail
2007.04.25: WiFi evil twins easy way to grab identity information
2007.04.25: Search for Better Business Bureau and get malwared
2007.04.24: Web based malware growing rapidly
2007.04.24: Phaxing reappears
2007.04.23: Sex Lube Customers Loose Identity
2007.04.23: Mac vulnerability also affects Firefox and Safari
2007.04.21: Apple update
2007.04.19: Individually targeted phishing attacks
2007.04.19: Growing threat...rootkit sophistication
2007.04.19: Maturing market - botnets battle for marketshare
2007.04.17: Credit Unions and Phishing Attacks
2007.04.16: Authentication measures don't stop phishing
2007.04.14: More black eyes for anti-virus vendors
2007.04.13: More information on why the use of stronger authentication doesn't stop phishing attacks
2007.04.12: Message about you having malware dupes people into getting malware
2007.04.11: Harvesting teenager ID's and phishing
2007.04.10: Vista and Office woes continue
2007.04.10: MACS, Windows, Linux and Security
2007.04.10: To report or not?
2007.04.10: Strong or different authentication doesn't stop phishing attacks
2007.04.09: Transaction authentication
2007.04.09: Ways to ruin your espresso
2007.04.09: Token keys for passwords
2007.04.09: General fraud trends
2007.04.09: DNSSEC Keys Wanted By Homeland Security
2007.04.09: Anti-virus vendors have their own security holes
2007.04.05: Malware is run like a business
2007.04.05: Another new security hole in Win 2000, XP and Win 2003
2007.04.04: Firefox also highly susceptible to animated cursor attack
2007.04.04: How to hack Vista before it boots
2007.04.03: Extreme caution advised using IE and Windows platform
2007.04.02: New form of attack: XSS and CSRF
2007.04.02: Hijacking Javascript
2007.04.02: Turkcell starts world's largest mobile signature rollout...it's secure but can be phished
2007.04.02: Bank two factor successfully phished
2007.03.30: CDROMS and malware attacks
2007.03.29: Keyloggers - 500% growth in three and a half years
2007.03.29: 43% of surveyed firms found to be infected with malware
2007.03.29: Practical botnet defense ignored by some Fortune 500 companies
2007.03.29: Flaw in IE 6 and 7
2007.03.28: Battling botnets
2007.03.28: Spear phishing using the IT department as the lure
2007.03.28: Change those default passwords
2007.03.28: A new report shows ID theft doubles in two months
2007.03.27: VirusTotal - An interesting viewpoint
2007.03.27: Identity Theft Checklist for the US
2007.03.27: More Shmoocon review
2007.03.27: "Is your computer a criminal?"
2007.03.27: Along comes "smishing"
2007.03.27: Javascript coding errors...big threat!
2007.03.27: Malware threat for non-patched IE6 Browsers
2007.03.26: User registration and fake passports
2007.03.26: Game over and verifiable operating systems
2007.03.26: UK Online banking fraud increases from �23.2m in 2005 to �33.5m in 2006
2007.03.25: Hijacking your enterprise network
2007.03.25: Malware miscellany
2007.03.25: The dangers of WiFi
2007.03.23: By Hook or By Crook
2007.03.23: Girl aged 6 cracks UK MP House of Commons computer
2007.03.23: Skype Trojan Horse Attack
2007.03.23: Vista possibly exploited by Windows Mail
2007.03.23: Reduce risk of online attacks by up to 77%
2007.03.23: Advantage criminals...loser Anti-virus vendors
2007.03.16: Google's blog software causing malware problems
2007.03.16: Vista, an evloutionary improvement but still full of security holes
2007.03.16: When the good guys start using the bad guy's tools...
2007.03.16: Vista Business Activation has weaknesses
2007.03.14: Phishing for your enterprise
2007.03.14: Brian Kreb's "Tracking the password thieves"
2007.03.14: Consumer's identity may be stolen and found by authoritities but the consumer remains un-notified
2007.03.14: Apple's Bix Fix - Security is still an issue with the Mac
2007.03.12: Italians fall vicitim to criminals
2007.03.11: Yikes!
2007.03.11: Botnet sales pitch using DNS attack?
2007.03.10: Phishing getting more clever
2007.03.09: Deny all except with permission
2007.03.09: Anti-virus effectivity
2007.03.08: Identity Theft News is Gloomy
2007.03.08: More Swiss Cheese - Another Word Hole
2007.03.08: Vishing attacks grow in sophistication
2007.03.08: Quebec Healthcare goes down due to virus?
2007.03.08: Code obfuscation, hackers and malware
2007.03.07: Crime ring uses phishing and malwar to scoop up the money
2007.03.07: Adam Laurie cracks RFID in new UK Passports
2007.03.06: eBay under increasing phishing attacks
2007.03.06: More on Vista activation attack
2007.03.06: Update Quicktime to avoid malware problems
2007.03.02: Know your Enemy: Web Application Threats
2007.03.02: Vista Activation Cracked?
2007.03.01: More on foiling rootkit detectors
2007.03.01: Phishing attacks rise against UK Banks from 40 to 1,000 a month
2007.03.01: Foiling rootkit detectors
2007.02.27: Storm crashing on a blog near you
2007.02.27: More ways to penetrate a wireless network
2007.02.26: Something to be very nervous about
2007.02.23: Phishing crimeware reaches highest level in December
2007.02.23: More browser high criticality security holes
2007.02.22: Korean bots ordered from Germany in denial of service attack
2007.02.22: Elaborate pharming attack on 50 banks
2007.02.21: Using RSS to distribute malware
2007.02.21: How would you like to tell your customers and shareholders you've been stolen from for the last four years?
2007.02.21: Google as an open door to your computer...
2007.02.21: What happens when your intrusion protection system is hackable?
2007.02.21: Phishing using Google Maps?!
2007.02.20: More on Vista UAC and a potential attack
2007.02.19: Successful denial of service attack against anti-phishing site
2007.02.19: More Firefox phishing woes
2007.02.19: A debate about Vista Security - UAC and security risks
2007.02.19: PowerPoint under attack...uncomfirmed
2007.02.19: Social engineering attacks using smokers
2007.02.19: Mac patches four month of security bugs holes
2007.02.17: More Cisco woes
2007.02.16: Vendors fixing security holes
2007.02.16: IE and Firefox users beware...there are currently some serious flaws
2007.02.16: Default passwords = Drive By Pharming
2007.02.15: Swiss Cheese gets bigger holes.
2007.02.14: Beware Valentine Day's email
2007.02.14: Cisco Routers Have More Vulnerabilities
2007.02.14: The inside dope on stealing your authentication
2007.02.14: New way of viewing laptop security
2007.02.13: Saving the internet...
2007.02.13: Microsoft issues BIG fix
2007.02.12: Criminals battling for control of botnet market share while industry and police can't compete
2007.02.12: Out of band authentication - part of a authentication solution?
2007.02.12: Number of mobile attacks rises in the last year
2007.02.12: Bandit, Higgins and Pamelaware create new identity authentication wave
2007.02.12: Wireless Hacking Gets Easier
2007.02.11: Virtual perils growing
2007.02.11: Vishing attacks growing
2007.02.11: The future of passwords
2007.02.07: Hacking intranet sites
2007.02.06: Weak passwords are still a real threat to enterprise security
2007.02.06: 200,000 new virus variants projected for 2007
2007.02.06: Hackers take down 3 of 13 servers critical to managing internet traffic
2007.02.06: Time to secure smartphones
2007.02.06: Vista's Live One-Care Fails the Test
2007.02.05: Site authentication may not provide additional security in practice
2007.02.05: Swiss Cheese - Another high risk security hole appears in MS Office
2007.02.05: $5 one-time password token introduced
2007.02.02: Criminals exceed capacity of antivirus vendors
2007.01.31: 3 strikes you're out, 5 and you're off the team
2007.01.30: Bad news brewing up a wicked storm
2007.01.25: Authenticating Printers - Hacking printers as a stepping off point into the enterprise
2007.01.25: Three more reasons for a layered identity defense
2007.01.25: Four excellent reasons to use a layered identity defence
2007.01.05: Think on it before you click on it
2006.12.15: Three strikes...you're out
2006.12.13: Before you get to your holiday season....
2006.12.12: Adobe joins the fray
2006.12.11: More Word Woes Means Greater Enterprise Risk
2006.12.08: The Future For IT Grads...Organized Crime?
2006.12.06: Word zero day flaw only emphasizes the need for layered security
2006.12.06: Hardware virtualization and malware attacks
2006.12.01: Targeted spear phishing example
2006.12.01: Social engineering your way into a network and applications
2006.12.01: More on the Blackberry Hacks
2006.11.30: Hacking Blackberry's and gaining access to your enterprise
2006.11.30: SMiShing - a new sophisticated form of SMS attack
2006.11.30: 97 million US identities stolen since 2005!
2006.11.29: Why strong authentication alone isn't enough
2006.11.28: Scotland Yard victim of identity theft
2006.11.28: EU urges members to take action against spam... but will it work?
2006.11.28: Cheap and dirty anti-malware idea
2006.11.28: Why multi-factor authentication ISN'T the silver bullet for phishing
2006.11.25: More on protecting against recursive denial of service attacks
2006.11.24: Partnering with criminals
2006.11.23: Spyware - A Significant threat
2006.11.22: COME ON IN....THE DOOR IS UNLOCKED AND OPEN.
2006.11.21: FUD and a Realistic Review of Your Enterprise Risk
2006.11.20: A BIG MESS: Spam, Denial of Service Attacks, Botnets, Recursive DNS and DNSSEC
2006.11.20: Wireless attacks, strong authentication and good security policies
2006.11.18: How do you spell T-R-O-U-B-L-E?
2006.11.14: Who owns your biometric?
2006.11.10: The malware arms race continues
2006.11.09: Phishing attack victims lose more
2006.11.09: Spam increasing dramatically
2006.11.08: Oops...I accidentally sent out an infected email to 50,000 customers!
2006.11.07: Undisclosed flaws and a layered enterprise defense
2006.11.06: Biometrics and US Department of Defense
2006.11.06: Month of kernel bugs
2006.11.06: Reference report on malware
2006.11.06: Future of keyboard hacking - jitterbugs
2006.11.06: FFIEC authentication questions and answers
2006.11.05: Finding and removing rootkit attacks -How secure do you feel?
2006.11.04: Gromozon and the future of malware trojans
2006.11.04: Watching what goes out the network door
2006.11.03: How good is your firewall anti-malware....(hint it's not looking very good)
2006.11.03: Required reading
2006.11.02: Spear phishing - The attack sophistication grows
2006.11.01: Excellent malware management resource
2006.10.31: Malware keeps getting smarter
2006.10.29: Deny all CPU defense
2006.10.29: Scams Target Latest Upgrades in E-Banking Security
2006.10.29: Canadian authentication guidelines
2006.10.29: Get beyond zero day patch thinking
2006.10.28: Legal implications of a federated authentication
2006.10.27: More information on Blue Pill
2006.10.27: A great read - "anti-virus is ineffective"
2006.10.25: How phishing can adjust to multi-factor authentication
2006.10.25: Voice Authentication Used in Telephone Banking
2006.10.24: "DNA Database should include all"- NOT!
2006.10.24: Two factor authentication and identity theft
2006.10.23: Time to edcuate the end user about password and identity theft
2006.10.23: Trojan Attacks Increasing in sophistication
2006.10.20: Identity federation getting dose of reality from Internet2 affiliate
2006.10.19: Protecting your passwords
2006.10.18: Is the botnet battle already lost?
2006.10.17: What is the right password strategy?
2006.10.17: Are five anti-virus softwares enough for an enterprise?
2006.10.16: Another reason to have a layered enterprise security strategy
2006.10.15: Big Brother is Watching
2006.10.15: Who owns my DNA and my biometric data?
2006.10.14: Welcome to the AuthenticationWorld Blog
2006.10.14: Trojan Horses and Enterprise Security