Join Scoop.it for Free
Share ideas that matter on the social web and experience
the benefits of curating the world's best content.
I don't have a Facebook, a Twitter or a LinkedIn account
Already have an account: Login
The Daily Security Dose" is my way to maintain a list of links to website I consider to relevant and I use for my day to day advisory work
Curated by
Joerg Asma
|
Rescooped by Joerg Asma from iForensic onto The Daily Information Security Dose |
No comment yet.
Sign up to comment
Delete the scoop?
Are you sure you want to delete this scoop?
Yes
 Your new post is loading...
Scoop.it!
Security experts have proposed a simple way for websites to better secure highly sensitive databases used to store user passwords: the creation of false "honeyword" passcodes that when entered would trigger alarms that account hijacking attacks are underway.
The suggestion builds on the already established practice of creating dummy accounts known as honeypot accounts. It comes as dozens of high-profile sites watched user data become jeopardized—including LivingSocial, dating site Zoosk, Evernote, Twitter, LinkedIn, and eHarmony to name just a few from the past year. Because these dummy accounts don't belong to legitimate users of the service and are normally never accessed, they can be used to send a warning to site administrators when attackers are able to log in to them. The new, complementary honeyword measure—proposed in a research paper titled "Honeywords: Making Password-Cracking Detectable—was devised by RSA Labs researcher Ari Juels and MIT cryptography professor Ronald Rivest, the latter who is the "R" in the RSA cryptography scheme. Via HE Info Sec Council
Joerg Asma's insight:
From Honeypot 2 HoneyWord - interesting approach, but hoy to avoid honeywords u dont know Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Joerg Asma's insight:
Interesting article about the evolution of #duqu and #Stuxnet - a must read about malicious code Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
In this period there is an intense debate on the wiretapping of every communication channel, governments are increasing the monitoring of internet, of social network platforms and VOIP conversation... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Law enforcement and intelligence agencies conscious of the high risks related to cyber threats have started massive monitoring campaign, everything must be controlled to avoid unpleasant surprises.... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Read, think, share … Security is everyone's responsibility
Joerg Asma's insight:
Good article about advanced persistent threats related to SCADA systems Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
During the often-fiery 2012 presidential debate season, a lively debate of a different sort held at Indiana University(IU) featured passionate arguments on the nature, status, and future of cloud security in and beyond the higher education environs. Moderated by Brad Wheeler, IU's vice president for IT and CIO, the debate featured two figures characterized by Wheeler as symbolic leaders of the "Cloud Now" and "Cloud How" parties...
Following are highlights of the Shel Waggener–Fred Cate debate, including salient points, key quotes, and a bit of the color and passion that permeated the sometimes sprawling and always interesting discussion.A full, unabridged transcript is also available. Via HE Info Sec Council Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Cyberwar is not war in and of itself. It is not even another battlefield. Nor is it as novel as some people claim. It is just a logical conclusion and evolution of the widespread adoption of computers and technology in modern culture. Via Red-DragonRising Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Being a security professional is sometimes a difficult thing. Everybody expects you to be wise in terms of security, threats, knowing all different kinds of attacks and so on. Being phished yoursel... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Irans Regierung führt einen biometrischen Ausweis ein, der gleichzeitig als Zugangskarte zum Web fungieren soll. Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Ask any mobile operator, and they’ll tell you their networks will become the backbone of the future internet of things. Via Ex FromTheLeft, Eric Ziebart, Elisa Vivancos Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
The ways explored by malware creators are unlimited, recently Symantec has announced the discovery of a new operational mode for backdoor trojan Makadocs, the security firm has in fact reported tha... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Interested in a good scare this Halloween? Look no further than your own computer, mobile or tablet device! Delete the scoop?
Are you sure you want to delete this scoop?
Yes
|
Scoop.it!
Applying big data approaches to information security can help enterprises build better situational awareness capabilities, but implementation could prove to be a major challenge, security experts said at the RSA Conference 2013 being held here this... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Earlier this week, Dr. Web reported the discovery of a Mac OS X botnet Flashback (Flashfake). According to their information, the estimated size of this botnet is more than 500, 000 infected Mac machines. Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
The news is circulating for days, the Iranian head of the national security forces , Esmail Ahmadi Moghadam, declared that low enforcement of the country is developing a software for “smart ... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
This Friday, 11 January 2013, will see the launch of the new European Cybercrime Centre (EC3) based at Europol headquarters in The Hague. EC3 will be... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Innovations in mobile and cloud computing, social technology and the use of "big data" present an emerging risk to organisations' IT security, a security agency has warned.
Joerg Asma's insight:
They got it ;-) Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Information sharing around cyber-security practicesIntelligent UtilityEnergySec is a community of information security, physical security, audit, disaster recovery and business continuity professionals from energy industry utilities established... Via Red-DragonRising Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
It is something out of a Hollywood movie - hackers pooling their talents to help people handle natural disasters. Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
CSO - information security & physical security thought leadership - news, analysis, how-tos & jobs... Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
You have a secret that can ruin your life. It’s not a well-kept secret, either. Just a simple string of characters—maybe six of them if you’re careless, 16 if you’re cautious—that can reveal everything about you. Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Visualize Security Daily, by Tim Youngblood: updated automatically with a curated selection of articles, blog posts, videos and photos. Delete the scoop?
Are you sure you want to delete this scoop?
Yes
Scoop.it!
Recommendations about iOS Device Management coming from NSA. I like the checklist at the end of this whitepaper. Via Yury Chemerkin Delete the scoop?
Are you sure you want to delete this scoop?
Yes
|
