 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
A page of hot links to relevant Web resources accompanies every NoticeBored module:
|
Month |
Links page |
Module coverage |
|
#109 |
HALT! |
What information security lessons can we learn from history? |
|
#108 |
Office security |
A wide range of information security issues associated with the typical office or work environment, plus the not-so-typical. |
|
#107 |
Malware |
Our annual reprise of this perennial issue. |
|
#106 |
|
|
|
#105 |
Business continuity management in the broad including disaster avoidance, resilience, recovery and contingency. |
|
|
#104 |
Network availability plus confidentiality and integrity |
|
|
#103 |
Identification and authentication using passwords, passports and staff passes for example. |
|
|
#102 |
More than just confidentiality for personal information, privacy is about control over who obtains and discloses our most sensitive secrets. |
|
|
#100 |
About the vital human element in information security. |
|
|
#99 |
Why is it so important to report, resolve and learn from information security incidents, including those that affect others? |
|
|
#98 |
Covers a range of issues associated with protecting information assets, such as ownership responsibilities and classification. |
|
|
# 97 |
Covers the security aspects of email, IM, SMS/TXT etc. |
|
|
#96 |
Securing databases, the systems they run on, the data they contain |
|
|
#95 |
Cloud computing and virtualization are important developments in the IT universe but what are the information security implications? |
|
|
#94 |
The latest annual update to the awareness module on malware |
|
|
#93 |
Copyright, trademarks and patents are the classic examples of Intellectual Property Rights, but contracts and ethics are equally valid. |
|
|
#92 |
Ensuring the safety of physical information assets includes securing essential supplies such as power, and preventing hardware hack. |
|
|
#91 |
Planning and preparing for unanticipated situations and disasters, and the resilience measures to help avoid business discontinuities. |
|
|
#90 |
Exploiting the people who use - and are supposed to protect - valuable information assets. |
|
|
#89 |
Compliance with information security and privacy-related laws, regulations and standards. |
|
|
#88 |
Securing wireless LANs and other wireless network connections. |
|
|
#87 |
A new module all about appreciating the value of, and protecting, |
|
|
#86 |
Human elements of information security - security culture, awareness, policies, procedures, roles & responsibilities and compliance ... |
|
|
#85 |
With the best will in the world, incidents will happen. |
|
|
#84 |
If someone can become your virtual clone, imagine all the mischief they might cause in your name. (Updated November 2011) |
|
|
#83 |
Widespread Internet connectivity has revolutionized business but created substantial security issues with LANs, remote network users and
WWW. |
|
|
#82 |
Find out what’s hot in the world of malware threats and defenses. (Updated March 2011) |
|
|
#81 |
All about the art and science of secret writing, |
|
|
#80 |
If ‘software engineering’ is truly an engineering science, just |
|
|
#79 |
Physical protection for tangible information assets and |
|
|
#78 |
Focuses on social networking, social media, Web 2.0 |
|
|
#77 |
Since commercial relationships with third parties necessarily involve exchanging information, information security risks should be considered. |
|
|
#76 |
Confidentiality issues for individuals, namely privacy and protection of personal information. (Updated October 2011) |
|
|
#75 |
There are numerous information security risks in the typical office/workplace, ranging from physical security to email, IM and other forms of messaging, phones and FAXes. (Updated June 2011) |
|
|
#74 |
How do real-world forensic investigators examine computer systems, networks, cellphones and data for clues? (See also June 2010) |
|
|
#73 |
About those security vulnerabilities built-in to software through programming errors and design flaws. |
|
|
#72 |
Security requires that changes to IT systems, networks etc. plus information handling procedures, are tested and approved. |
|
|
#71 |
From logon to logoff, staff are dependent on networks but do they even consider, let alone fulfill their information security
obligations?. |
|
|
#70 |
Securing industrial control systems and embedded systems is important to protect critical both national and corporate infrastructures. |
|
|
#69 |
Viruses, worms, Trojans, rootkits and so forth represent one of the oldest security threats. (Updated March 2011) |
|
|
#68 |
Explore IT’s dark side with a look at hackers, crackers And All That. Ethical issues get a mention alongside issues such as full disclosure, cybercriminals, cyberterrorism and more. |
|
|
#67 |
The security issues associated with portable IT devices (“gizmos”) |
|
|
#66 |
Find out why it’s not such a bright idea to publish loads of personal information on MySpace or Linkedin. (Updated November 2010) |
|
|
#65 |
Ethics and morals remain an important means of control in many situations, though employees sometimes need a little guidance ... |
|
|
#64 |
Email does double service as a business and |
|
|
#63 |
Covers the information security aspects of governance and its relationship to both IT governance and corporate governance. |
|
|
#62 |
Find out what’s involved in identifying, evaluating, mitigating and monitoring information security risks in the modern enterprise. |
|
|
#61 |
Integrates user authentication and identity theft, touching on integrity and trust, email security, malware etc. (Updated November 2011) |
|
|
#60 |
To what extent do, or should, we trust the information, data and IT systems, plus the people who use and manage them? What can be done to make them more trustworthy? (Updated September 2011) |
|
|
#59 |
IT auditors assess risks and controls affecting an organization’s information assets. Find out what they actually do thins month and perhaps get ahead of the next audit. |
|
|
#58 |
Hackers are finding ever more devious ways to subvert systems using rootkits and Trojans, while viruses, worms etc. remain significant risks. (Updated March 2011) |
|
|
#57 |
When all else fails, contingency plans are what we fall back on. Also covered resilience, business continuity and disaster recovery planning. (Updated December 2010) |
|
|
#56 |
Brand new awareness module covering security issues in the typical office/workplace (not Microsoft Office!). (Updated August 2009) |
|
|
#55 |
Manipulating people to access information assets without proper authority. (Updated November 2010) |
|
|
#54 |
An ever-increasing raft of rules and regulations impinge on information security. Find out why it’s so important. (Updated October 2010) |
|
|
#53 |
Concerns controls to protect the IT systems and other information assets against physical harm or theft. (Updated January 2011) |
|
|
#52 |
Security risks associated with the use of email and indeed other forms of personal messaging. (Updated June 2011) |
|
|
#51 |
From competitive intelligence through industrial espionage to information warfare, trade secrets are seriously under threat. |
|
|
#50 |
Usernames and passwords. (Updated May 2010) |
|
|
#49 |
Keeping personal information private is more important than ever in these days of identity theft attacks. (Updated October 2011) |
|
|
#48 |
Security threats posed by trusted insiders: employees, consultants etc. (Updated September 2011) |
|
|
#47 |
Network security risks from outsiders and insiders including issues with private LANs and remote network users. (Updated December 2011) |
|
|
#46 |
... or malware, as us security geeks would have it. |
|
|
#45 |
New topic: confidentiality, integrity and availability issues relating to database design/management. (Updated May 2011) |
|
|
#44 |
IPR issues include software licenses and piracy, trademarks, patents, Digital Rights Management and more. (Updated February 2011) |
|
|
Additional hyperlink suggestions for our links collection are always welcome provided they are both relevant and useful to our customers, which means they must relate directly to information security. We’re not interested and won’t post SEO links so don’t waste our bandwidth and test our patience with SEO spam. IsecT Ltd. is not even remotely responsible for the content of third party websites accessed via the hyperlinks in our links collection. We do not necessarily agree with everything they say, though sometimes we do, and occasionally they don’t go nearly far enough! Caveat lector. |
||
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
Copyright © 2012 IsecT Ltd.