pingudownunder.com

(2 votes, average: 5 out of 5)

 Loading ...

A colleague of mine at work started blogging again last weekend, highlighting a very good point that if 2-Factor Authentication is being offered to online gaming players, they why the hell are there still governments and financial institutions across the world that still rely on basic UserID and Password authentication to their online services?

Although an interesting debate, I’m not going to go into a rant about this today. What has caught my eye though as an article in todays Australian IT highlighting that a survey reveals that the majority of Australian Organisations are confident in the security of their IT systems, have rarely had that tested and can withstand all types of attacks.

Although I would like to see the details of the survey, this statement scares me. The article describes how:

[…] organisations have reached a level of comfort with security, as most internal security projects have been completed.

Continue reading »

written by Simon Harvey \\ tags: compliance, governance, grc, infosec, marketing, organisational, risk

(1 votes, average: 4 out of 5)

 Loading ...

A very interesting article caught my eye which is being presented to BlackHat Europe and HITB Dubai conferences. Two Indian graduates have developed a Vbootkit, which is just like a standard rootkit in Windows … but importantly is invoked before the OS Continue reading »

written by Simon Harvey \\ tags: article, security, windows

(No Ratings Yet)

 Loading ...

A question posed by Gerry Gebel at the Burton Group around the difficulties of implementing authorisation management solutions.

I’m not sure if the use of external authorisation solutions (the “Access Manager” products”) is the most appropriate in all cases. Sure, for use in Web Access Management/Control, they Continue reading »

written by Simon Harvey \\ tags: access, authorisation, identity, security