Information Security, SSAE 16, ISO 27001, CISA, Cert-IN
Anything under the umbrella of IT Security, Computer Security, IT Controls
In recent months, there is a lot of buzz about Endpoint Security. So what is Endpoint Security … and why the fuss?
End point security is an IT security concept that makes each device (end point) responsible for its own security. Endpoint security is a strategy in which security software is distributed to end-user devices but centrally managed.
Continue reading “Endpoint Security – What is the fuss all about?”
Qadit Systems and Solution(Qadit) has been empanelled with CERT-In as a qualified IT Security Auditing organisation upto April 30, 2012. We have also been empanelled by the Controller of Certifying Authorities (CCA) as an auditor under the Information Technology Act, 2000 for conducting the technical and physical infrastructure audits of the Certifying Authorities. This empanelment is valid upto September 23, 2011.
Continue reading “Empanelment with CERT-In and with Controller of Certifying Authorities (CCA)”
In what is nearly comical for the type and nature of incident, telecom giant Avaya paid salary to an employee who never worked. Investigations reveal that it was a simple case of not deleting the name from payroll file. Continue reading “No Work No pay? Time to change the rules”
Is it sufficient to just benchmarks threats based on CVSS ratings or do we need to do something more to actually understand the threat better Continue reading “Economic Value of a threat”
The IBM Internet Security Systems X-Force® research and development team has recently issued a white paper on Internet Security threats. Some of the key findings are Continue reading “Results of Internet Security Survey”
Credit card fraud is on the rise, and it is time to have a look at tips on how end users can protect themselves from Credit Card fraud.
Here is a compilation of some tips on how to protect yourself from credit card fraud:
Continue reading “How to protect yourself from Credit Card Fraud?”
Let’s say that you have been asked by Abcxyz Inc to test their HR web portal. You decide to use fuzzing to check for easily guessable user IDs and passwords. You have collected a list of possible user names and a password dictionary has also been shortlisted by you.
Endpoint security has been gaining ground in the IT Security world in the last couple of years, though they have been around for more than a decade and a half. The first product from the Endpoint Security stable was the anti-virus software. Now endpoint security includes personal firewall, host IDS, anti-spyware, client anti-spam, client remote access etc apart from many other tools. This article delves more into the concept of endpoint security.
A 28-year-old man was charged with the largest credit card theft ever in the United States, in which more than 130 million card numbers were stolen, the US Justice Department said. Albert Gonzalez, of Miami, Florida, and two co-conspirators were accused of hacking into the computer networks of firms supporting major American retail and Financial organizations and stealing data. Continue reading “What does the largest credit card theft teach us?”
It is quite common these days to hear of sensitive information being lost when laptops are either stolen or lost. Rarely does a month go by without an organisation revealing the loss or theft of a laptop brimming with sensitive data. Full disk encryption, or FDE, is the preferred mechanism to address this threat. Continue reading “Full Disk Encryption-Software based or Hardware based?”