Wrapping it up for another year….
December 24, 2009

Hey All,

Wrapping another year. No special 2010 predictions or year round-up. You can probably skip to the ones I did for previous years and just change the date to 2009/2010. Should be pretty accurate. :)

A few new Aussie Bloggers added to the mix in 2009: http://beastorbuddha.com/blog-directory/ and there’s quite a few guest bloggers lined up for 2010 for Beast or Buddha. Let me know if you are keen to submit something for publication here also – we’re always looking for new content.

Some big things happening with Securus Global also in 2010. Stay tuned for our press releases. Thanks to all our customers and business partners who have supported us this year.

Thanks to everyone who stops by here to read my rants, to check out the job postings in Beast Hot Jobs or posts in the Forums. I hope you all have a great 2010.

All the Best
DD

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Comments (0)
Posted in: Uncategorized


Cricket Selectors….It is your fault
December 19, 2009

Off topic for Xmas period. Cricket season…..I love my cricket but the decline in Oz cricket is sad. Who’s watching the current series? What have the selectors done?

Post Steve Waugh, no better Captain than Shane Warne should have been there. The few times he’s had the opportunity (generally one-dayers), he’s been ruthless….Right up there with Border, Taylor and Waugh…maybe even better. Warnie would still be playing now and we’d still be invincible. Ricky would still have a few years in him when he took over in 2011 or 2012 and then Katich would have maybe 3 years. Clarke will be our Kim Hughes – average player, somewhat talented but captaining us back to 1979 times. Soft!

We’re gone…A few SMS’s – upsetting a few morally righteous people and we kill our dominance……can’t have Warnie being Captain..he’s a bad influence….what garbage. Now they’re talking Clarke as captain. If that happens, I’ll probably not watch cricket. If I had boys, I’d rather they be blokes like Warne than fashion metros like Clarke. No good can come from the latter.
:)

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Comments (7)
Posted in: Bad Stuff


Rules for Email Attachments – A Matter of Trust

Re: Malware – you are always warned to not open attachments from those you don’t know. What about the ones from your dumb mates?

That should be rule number 1. Trust the stranger before trusting your non-IT, care-factor zero mates. Then move onto rule 2.

Hey, I’ve got a Mac. :)

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Comments (3)
Posted in: Bad Stuff, Dumb Security, WTF


Internet "Filtering" Trial and Report – Flawed
December 15, 2009

Reading through the ISP Filtering Live Report(s) – still wondering what this proves. Is anyone surprised by the findings? I’d have been surprised if it was much different. Now to base a full blown strategy (flawed in concept according to many from the outset) on a test/trial whose scope is ridiculously inadequate to represent real-life implementation. It would laughable if the impacts upon us of this progressing weren’t potentially so serious. Where to start? What hasn’t been said before? Refer here:
http://beastorbuddha.com/category/internet-filtering/

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Comments (8)
Posted in: Bad Stuff, Dumb Security, Internet Filtering, Uncategorized, WTF


Core Security Skill Requirements
December 2, 2009

There’s always a load of articles talking about the “core security skills” that security professionals and companies will need to develop. With 2010 approaching, we’re starting to get the typical 2010 recommendations and predictions articles on this topic.

I wonder if many of these articles are written by, and targeted at people and organisations who might just be waking up out of their slumber into the real world that we, (security people), have lived in for the last 2 or more decades. The alarm’s on snooze still though in my opinion.

I find this interesting. Aside from keeping up with technical/researcher type knowledge, (which most of these articles rarely refer to), what are these new “core skills” that we should all be developing? Keen to know if I have missed anything.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Comments (7)
Posted in: Dumb Security, Research, Risk Management, WTF, governance


Repost: The 7 Reasons why Businesses are Insecure
December 1, 2009

This is a post from 2007. The theories and concepts date well before that. Taking technologies themselves aside, nothing much has changed in the last decade, (and one can argue that the technologies themselves haven’t either). Basic foundation principles, or rather the lack thereof in our strategic approaches/(thinking in regards) to Information Security and Risk Management are rarely addressed and thus we fail without even properly beginning the defence…or is that the offence?

Anyway, please read on and I would welcome your thoughts on whether you think anything has changed to make this any less effective.

(more…)

Comments (3)
Posted in: Research, Risk Management, governance