ITsecurity
twitter facebook rss

It’s time to ditch compliance because most companies simply ignore it

Posted by Kevin on December 11, 2014

Many security experts worry that compliance is driving security rather than the other way round. Being compliant doesn’t mean being secure. But faced with the choice between the minimum to be compliant rather than the minimum to be secure, companies tend to choose the former. That, at least, is current received opinion. And it just […]

ITsecurity Daily News: 09/02/2014

Posted by Kevin on September 2, 2014

The ITsecurity daily security briefing: Tuesday, September 2, 2014. If you find this security briefing useful, please spread the word via social media. If you have any comments or recommendations, please email kevtownsend at gmail dot com. News Papers/Reports WebThings Events M&A Alerts News How were the celebrity selfies stolen? Well, we don’t know. It […]

ITsecurity Daily Briefing: 08/15/2014

Posted by Kevin on August 15, 2014

The ITsecurity daily security briefing: Friday August 15, 2014. News Papers/Reports WebThings Events M&A Alerts News Gameover botnet being rebuilt as NewGOZ Now domain generation rather than P2P. “…how long will the threat actor focus on rebuilding their botnet before they return to focusing on stealing money?” Arbor Networks: http://www.arbornetworks.com/asert/2014/08/five-sinkholes-of-newgoz/ AB Acquisition LLC Confirms Incident […]

ITsecurity Daily Briefing: 08/14/2014

Posted by Kevin on August 14, 2014

The ITsecurity daily security briefing: Thursday August 14, 2014. News Papers/Reports WebThings Events M&A Alerts News US companies in breach of EU-US Safe Harbor on PII A filing submitted to the US Federal Trade Commission (FTC) on Thursday by the Center for Digital Democracy (CDD) claims Salesforce, Adobe, AOL, and other companies are “compiling, using, and sharing EU […]