Read NBlog, the NoticeBored blog
Click the banner for the site map  of NoticeBored.com, the information security awareness service
Information security links collection

   

A page of hot links to relevant Web resources accompanies every NoticeBored module:

Month

Links page

Module coverage

#109
May

HALT!
Who goes there?

What information security lessons can we learn from history?

#108
Apr

Office security

A wide range of information security issues associated with the typical office or work environment, plus the not-so-typical.

#107
Mar

Malware

Our annual reprise of this perennial issue.

#106
Feb

New module released this month BYOD security

New module released this month Many of us would love to use our personal ICT devices for work, but can we and our employers handle the security implications?

Read all about the new module.

#105
Jan 2012

Business continuity

 Business continuity management in the broad including disaster avoidance, resilience, recovery and contingency.

#104
Dec

Network security

 Network availability plus confidentiality and integrity
for data in transit. 

#103
Nov

Credentials

 Identification and authentication using passwords, passports and staff passes for example.

#102
Oct

Privacy

 More than just confidentiality for personal information, privacy is about control over who obtains and discloses our most sensitive secrets.

#100
Sept

Securing people

 About the vital human element in information security.

#99
Aug

Incident management

 Why is it so important to report, resolve and learn from information security incidents, including those that affect others?

#98
July

Information protection

 Covers a range of issues associated with protecting information assets, such as ownership responsibilities and classification.

# 97
June

Secure messaging

 Covers the security aspects of email, IM, SMS/TXT etc.
used for business and social communications.

#96
May

Database security

 Securing databases, the systems they run on, the data they contain
and the business processes they enable.

#95
April

 Cloud computing

 Cloud computing and virtualization are important developments in the IT universe but what are the information security implications?

#94
March

Malwareness

 The latest annual update to the awareness module on malware
notes a significant escalation in the malware threat this year.

#93
Feb

IPR

 Copyright, trademarks and patents are the classic examples of Intellectual Property Rights, but contracts and ethics are equally valid. 

#92
Jan 2011

Physical security

 Ensuring the safety of physical information assets includes securing essential supplies such as power, and preventing hardware hack.

#91
Dec

Continuity planning

 Planning and preparing for unanticipated situations and disasters, and the resilience measures to help avoid business discontinuities.

#90
Nov

Social engineering

 Exploiting the people who use - and are supposed to protect - valuable information assets. 

#89
Oct

Security compliance

 Compliance with information security and privacy-related laws, regulations and standards. 

#88
Sept

Wireless security

Securing wireless LANs and other wireless network connections.
(Updated December 2011)

#87
Aug

Industrial espionage

 A new module all about appreciating the value of, and protecting,
trade secrets and other sensitive proprietary information against
industrial espionage and related threats.

#86
July

Human factors

 Human elements of information security - security culture, awareness, policies, procedures, roles & responsibilities and compliance ...
(Updated September 2011)

#85
June

Incident management

 With the best will in the world, incidents will happen.
Responding effectively and efficiently is the key.
(Updates August 2011)

#84
May

Identity theft

 If someone can become your virtual clone, imagine all the mischief they might cause in your name.  (Updated November 2011)

#83
April

Network and Internet security

 Widespread Internet connectivity has revolutionized business but created substantial security issues with LANs, remote network users and WWW.
(Updated December 2011)

#82
March

Malware

 Find out what’s hot in the world of malware threats and defenses.  (Updated March 2011)

#81
Feb

Cryptography

 All about the art and science of secret writing,
a fundamental confidentiality, authenticity and integrity control

#80
Jan 2010

Secure software development

 If ‘software engineering’ is truly an engineering science, just
why is so much software horrendously flawed and insecure?

#79
Dec

Physical security

 Physical protection for tangible information assets and
the associated information processing services and supplies

#78
Nov

Social networking

 Focuses on social networking, social media, Web 2.0
and various social engineering threats.

#77
Oct

Securing business relationships

 Since commercial relationships with third parties necessarily involve exchanging information, information security risks should be considered.

#76
Sept

Privacy

 Confidentiality issues for individuals, namely privacy and protection of  personal information.  (Updated October 2011)

#75
Aug

Email/messaging and office security

 There are numerous information security risks in the typical office/workplace, ranging from physical security to email, IM and other forms of messaging, phones and FAXes.  (Updated June 2011)

#74
July

Digital forensics

 How do real-world forensic investigators examine computer systems, networks, cellphones and data for clues?  (See also June 2010)

#73
June

Bugs!

 About those security vulnerabilities built-in to software through programming errors and design flaws.

#72
May

Change & config management

 Security requires that changes to IT systems, networks etc. plus information handling procedures, are tested and approved.

#71
April

Network security

 From logon to logoff, staff are dependent on networks but do they even consider, let alone fulfill their information security obligations?.
(Updated December 2011)

#70
March

SCADA

 Securing industrial control systems and embedded systems is important to protect critical both national and corporate infrastructures.

#69
Feb

Malware

 Viruses, worms, Trojans, rootkits and so forth represent one of the oldest security threats.  (Updated March 2011)

#68
Jan 2009

Hacking

 Explore IT’s dark side with a look at hackers, crackers And All That.  Ethical issues get a mention alongside issues such as full disclosure, cybercriminals, cyberterrorism and more.

#67
Dec

Gizmos

 The security issues associated with portable IT devices (“gizmos”)
and teleworking present serious challenges.  (Updated Feb 2012)

#66
Nov

Social engineering

 Find out why it’s not such a bright idea to publish loads of personal information on MySpace or Linkedin.  (Updated November 2010)

#65
Oct

Ethics

 Ethics and morals remain an important means of control in many situations, though employees sometimes need a little guidance ...

#64
Sept

Email security

Email does double service as a business and
personal communications tool.  (Updated June 2011)

#63
Aug

Information security governance

Covers the information security aspects of governance and its relationship to both IT governance and corporate governance.

#62
July

Infosec risk management

Find out what’s involved in identifying, evaluating, mitigating and monitoring information security risks in the modern enterprise.

#61
June

Phishing &
identity theft

Integrates user authentication and identity theft, touching on integrity and trust, email security, malware etc(Updated November 2011)

#60
May

Trust, integrity
& fraud

To what extent do, or should, we trust the information, data and IT systems, plus the people who use and manage them?  What can be done to make them more trustworthy?  (Updated September 2011)

#59
Apr

IT audit

IT auditors assess risks and controls affecting an organization’s information assets.  Find out what they actually do thins month and perhaps get ahead of the next audit.

#58
Mar

Malware

Hackers are finding ever more devious ways to subvert systems using rootkits and Trojans, while viruses, worms etc. remain significant risks.   (Updated March 2011)

#57
Feb

Contingency planning

When all else fails, contingency plans are what we fall back on.  Also covered resilience, business continuity and disaster recovery planning.

(Updated December 2010)

#56
Jan 2008

Office security

Brand new awareness module covering security issues in the typical office/workplace (not Microsoft Office!).  (Updated August 2009)

#55
Dec

Social engineering

Manipulating people to access information assets without proper authority.  (Updated November 2010)

#54
Nov

Security compliance

An ever-increasing raft of rules and regulations impinge on information security.  Find out why it’s so important.  (Updated October 2010)

#53
Oct

Physical security

Concerns controls to protect the IT systems and other information assets against physical harm or theft.  (Updated January 2011)

#52
Sept

Email security

Security risks associated with the use of email and indeed other forms of personal messaging.  (Updated June 2011)

#51
Aug

Trade secrets

From competitive intelligence through industrial espionage to information warfare, trade secrets are seriously under threat.
(Updated August 2010)

#50
July

Authentication

Usernames and passwords.  (Updated May 2010)

#49
June

Privacy & data protection

Keeping personal information private is more important than ever in these days of identity theft attacks.  (Updated October 2011)

#48
May

Insider threat

Security threats posed by trusted insiders: employees, consultants etc(Updated September 2011)

#47
April

Network security

Network security risks from outsiders and insiders including issues with private LANs and remote network users.  (Updated December 2011)

#46
March

Viruses

... or malware, as us security geeks would have it.
(Updated March 2011)

#45
Feb

Database security

New topic: confidentiality, integrity and availability issues relating to database design/management.  (Updated May 2011)

#44
Jan 2007

Intellectual Property Rights

IPR issues include software licenses and piracy, trademarks, patents, Digital Rights Management and more.  (Updated February 2011)

Additional hyperlink suggestions for our links collection are always welcome provided they are both relevant and useful to our customers, which means they must relate directly to information security.  We’re not interested and won’t post SEO links so don’t waste our bandwidth and test our patience with SEO spam. 

IsecT Ltd. is not even remotely responsible for the content of third party websites accessed via the hyperlinks in our links collection.  We do not necessarily agree with everything they say, though sometimes we do, and occasionally they don’t go nearly far enough!  Caveat lector.


Home > Links >

Copyright © 2012  IsecT Ltd.