Resources
Bit9’s newsletter for June 29, 2007
Who Will Own PCI Standards: Industry or Government?PCI compliance is now the law in Minnesota, as this state becomes the first to mandate that any company processing credit or debit cards adhere to the data security standards laid down by the industry. Not to be outdone, Texas is also considering similar legislation. But is the card-processing ecosystem ready for government intervention? In this article, Evan Schuman describes how acquisitions, cross-border transactions, and legal conflicts between the states can get even companies trying to adhere to PCI into trouble.
Apple Safari on Windows: Security Takes a Tumble
What has happened to Apple’s reputation for security? Within hours of its release, major security flaws were found in the Windows version of Apple’s Safari browser. This raises the age-old debate of whether Apple’s lack of known vulnerabilities is due to a small market share that doesn’t attract the hacker community, or basic software design. Either way, it only reinforces the difficulty that companies face when major consumer brands release new software. How do you deal with a sizable influx of new software into your enterprise -- without any knowledge of who is running it, what its vulnerabilities are, or how it can be patched? Not to mention what this type of activity does to your compliance program. This is just one more reason so many companies are instituting and enforcing desktop lockdown programs.
10 Secrets of High-Tech Thievery
Even as we all shore up our computing defenses with personal firewalls, gateway anti-virus, automatic patching, and vulnerability scanning, in the back of our minds we all know that the “Black Hats” are searching for ways around them, and more often than not, still slithering through the barricade. But why, with all the money we spend, can’t we stop them? Hurwitz analyst Robin Bloor says it has more to do with the way the game has changed. In this blog posting, Robin describes 10 reasons why they have us outgunned. Hear more from Robin in this webcast.
12 Best Practices that Bring CSOs Greater Success
"12 Steps to Becoming a Security Master" from The Pragmatic CSO by Mike RothmanDownload your eBook today.
The Pragmatic CSO is a management-training program for CSOs that provides a structure for building repeatable and effective security programs. This proven 12-step methodology is designed to give CSOs a roadmap to the future - and away from constant firefighting and audit reporting.
