Exercise your Incident Response Plan
November 07, 2011, Mike Weber, Vice President, Coalfire Labs
So you’ve finally completed your Incident Response Plan. You’ve named your team, defined roles, documented standard operating procedures, and establishing escalation processes. Heck, you’ve even got training material. So now what?
Cyber Security Awareness - Are you Doing All You Can to Stay Safe?
October 26, 2011, Rick Dakin, CEO, Co-founder and Chief Security Strategist
Every company has vulnerabilities and must learn to protect themselves from fast-moving cyber threats. Below are a few tips to keep in mind as you examine your network security:
Can we kick the attachment habit?
October 11, 2011, John Rostern, VP, Technology Advisory and Assessment Services
As consumers of messaging services, particularly email, we have become addicted to attachments. This habit has become an easy avenue for mounting cyber-attacks against an organization. In the 2010 Verizon Data Breach Investigations Report, conducted in cooperation with the United States Secret Service, 38 percent of breaches utilized some form of malware and 28 percent employed social tactics.
Recent Surveys Reveal Trends and Spending Habits for Retailers in PCI Compliance
September 06, 2011, Rick Dakin, CEO, Co-founder and Chief Security Strategist
Recently, Gartner Research released two separate research reports on retailer PCI DSS compliance progress, trends and strategies. These reports are based on a survey of 77 merchants of varying sizes and covers a wide range of topics, including compliance status, spending and the incidence of assessed fines and penalties. Read more
Phishing Season: Spam on the rise
September 01, 2011, Mike Weber, Vice President, Coalfire Labs
Within the past two weeks there have been several reports on the increase in email spam, which can be directly correlated to an increase in phishing schemes and malware attacks. These attacks are frequently being delivered under the guise of legitimate business: they come in the form of shipment confirmations, credit card statements, and IRS alerts. They all request swift action to click a link or to read an attachment to address some pressing issue. Read more