June 2006 – Page 5 – CyberSecurity Institute

Disaster Recovery at the Macro Level

Posted on June 13, 2006December 30, 2021 by admini

DRP and its partner Business Continuity Planning (BCP) are board level initiatives and should be treated as such. If you don’t have someone within your organization with the right expertise, go find someone who specializes. Put someone in your organization solely and fully in charge of the effort with board level authority.

If you never got to the point of testing your existing plan, the right consultant will help you develop a program that requires the least amount of investment initially. In disaster recovery planning, you have to do the right things in the right order and there are no shortcuts. This will require your patience, but not a huge chunk immediately out of your pocketbook. However, this is where testing mistakes can have huge negative impact on the business.

Pick a smaller application and test recovery outside of the production environment. After each recovery test exercise, an honest review of the successes and failures is not a step to be taken lightly. This is your opportunity to refine, refine, and refine.

Documenting procedures is not for the faint of heart.

http://www.bankinfosecurity.com/articles.php?art_id=150&PHPSESSID=180fe654b2a330ff0b5cdba0e36eec9f

Enterprises Attacks Tripled

Posted on June 12, 2006December 30, 2021 by admini

“The swelling amount of spyware, as illustrated in the Aladdin CSRT report, is a direct representation of the fast-growing network of organized criminals that empower themselves through computers rather than physical theft,” said Shimon Gruper, vice president of technologies for the Aladdin eSafe Business Unit.

http://www.it-observer.com/news/6444/enterprises_attacks_tripled/

Microsoft Makes Security The ‘ForeFront’

Posted on June 12, 2006December 30, 2021 by admini

Muglia, who indicated the software is an attempt to modernize the product and make it more proactive for protecting computers, said an early beta version has been made available to some customers, with a public beta planned for the fourth quarter.

ForeFront was the most notable unveiling to underscore the company’s new “People Ready Business” plan for empowering developers and IT professionals through new software.

Muglia said Microsoft plans to prepare for this wave with the ‘People Ready Business’ plan to helping developers manage complexity and achieve agility; protect information, control access; advance the business with IT solutions; and amplify the impact of people.

http://www.internetnews.com/dev-news/article.php/3612626

Banks should check risk controls, Bies says

Posted on June 12, 2006December 30, 2021 by admini

“The Federal Reserve will continue to work with our counterparts in the federal government to encourage enhanced feedback on how reporting is contributing to our common fight against money laundering and terrorism,” Bies said.

http://www.marketwatch.com/News/Story/Story.aspx?guid=%7B16693B48-1BEC-4B01-B138-7812489927B4%7D&siteid=google

VoIP Security Alert: Hackers Start Attacking For Cash

Posted on June 9, 2006December 30, 2021 by admini

Yet it’s not only carriers that could be concerned with the type of attack Pena and Moore launched, says Seshu Madhavapeddy, CEO of VoIP security company Sipera Systems.

Madhavapeddy says these types of attacks are relatively easy to carry out and could hit at enterprises just as easily as carriers.

Infonetics Research predicts spending on VoIP will jump from $1.2 billion in 2004 to more than $23 billion in 2009.

Emerging technologies like unified communications that include voice, video, and data in one console, intended to drive collaboration through the roof, have the potential to put more and more information at the fingertips of hackers. They warn about phishing not unlike what companies and consumers see in e-mails.

And VoIP networks are just as susceptible to crippling denial-of-service attacks as are data networks, and mass calls generated by a worm could overload networks or kill productivity with ceaseless phone calls and messages.

http://www.informationweek.com/news/showArticle.jhtml;jsessionid=CI2HW0LHSD1GKQSNDLOSKHSCJUNN2JVN?articleID=188702963

Network Security Market Faces a Slowdown: Survey

Posted on June 7, 2006December 30, 2021 by admini

The report also found that many customers are exploring network access control and content security solutions, which is delaying their purchase of core network security products until later in 2006.

In addition, Jeff Wilson, principal analyst at Infonetics Research, noted in a statement, “VPN/firewall functionality — the core of most integrated security appliance products — is truly reaching the commodity stage.

http://www.darkreading.com/document.asp?doc_id=96672&WT.svl=cmpnews1_1