Tag: risk management
-
Pentesters and businessman are doing it wrong
What we are doing wrong as a security services industry, what businesses are doing wrong when they engage us, and how to fix it
-
The Turkish hack and another case for IL-CERT
You have been living under a rock if you haven’t heard of the Turkish hack a couple of days ago. Basically – a Turkish hacker forum that bolsters a strong anti-Israeli attitude has been practicing hacking and mostly defacing Israeli sites for the past few months (years). Now, this is nothing new, and as I…
-
Identity crisis
Here’s a common question I get asked a lot: “What technology should I use to secure my server/network/[some technology]?†The question is usually presented by someone who’s in charge of “Security†in an organization. Now, I wouldn’t have had a problem with this if this was a technician, or a pen-tester of sorts, but I…
-
Being in the middle (or: things we didn’t manage to learn in a decade)
Things that we should be fixing in security.
-
Drawing the line – securing an organization while thinking of users…
Securing sensitive organizational information where end-users that are not part of the organization need access to such said data and may even modify it.