Blog

By John Fontana  Summary: A developer has created a password analysis tool that examines patterns to determine password strength and concludes password-creation policies are the real enemy of solid passwords. Passwords stink because policies for creating them typically focus only on composition and can’t measure strength, according to developer Cameron Morris. The time it takes to crack […]

As a penetration tester, your work tends to be fairly straightforward. You obtain a client engagement, define the scope of your penetration testing work, and then use your knowledge, skills, and tools to provide the client with a report of their vulnerabilities. As more and more people are starting to learn the value of penetration

By Ellen Messmer <a href=”http://ad.doubleclick.net/jump/idge.cso.identity_access/access_control;kw=anonymous,fbi,forresterresearch,security,accesscontrolandauthentication,nac,ddos,next-generationfirewalls;tile=8;pos=sidecar;sz=60×55;cid=706489;author=ellen_messmer;type=article” target=”_blank” style=”border:none”><img src=”http://ad.doubleclick.net/ad/idge.cso.identity_access/access_control;kw=anonymous,fbi,forresterresearch,security,accesscontrolandauthentication,nac,ddos,next-generationfirewalls;tile=8;pos=sidecar;sz=60×55;cid=706489;author=ellen_messmer;type=article” border=”0″ height=”55″ width=”60″ /></a> May 15, 2012— Network World— Security technologies rise and fall in popularity, and Forrester Research in its TechRadar report puts its bets on five it thinks are in a growth mode and five it thinks are dying away. Do you agree or disagree?

SMBs should focus on ‘a risk-based approach to threat management,’ says researcherBig business — at least a significant percentage of it — has apparently heeded the decades-long mantra from information security experts, and invested enough in security to make it difficult, expensive and risky for cyber criminals to attack them. By Taylor Armerding So criminals are

MasterCard Worldwide is a year into its BYOD policy and the program is growing strong while the company keeps a watchful eye on security. By Kim S. Nash CIO — More than a year into its bring-your-own-device program, MasterCard Worldwide continuously assesses the security technology and policies that allow 30 percent of its employees worldwide to use their

by sullo We’re happy to announce the immediate availability of Nikto 2.1.4!Nikto is an open source web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files/CGIs, checks for outdated versions of over 1000 servers, and version specific problems on over 270 servers.This release contains a number

Humans are terrible at evaluating and judging risk. We overestimate our chances of winning contests while underestimating the chance of something bad happening. Compensating for this natural tendency isn’t easy, but the Wall Street Journal suggests one way to train your brain might be to track your skills like a gambler.The first step to compensating