March | 2010 | Software Associates.

Choosing endpoint DLP agents

Posted in: Information security|Tags: anti-virus, Identity theft, IT Governance, Kaspersky, McAfee, Microsoft, PCI DSS, Symantec|By: Danny Lieberman|March 21, 2010No Comments

There is a lot to be said for preventing data loss at the point of use but if you are considering endpoint DLP (data loss prevention), I recommend against buying and deploying an integrated DLP/Anti-virus end-point security agent. This is for 4 reasons: Bloatware/system resource consumption – if you’re concerned with anti-virus system resource usage, …

DLP psychology or DLP technology?

Posted in: Information security|Tags: data loss prevention, DLP, EIP, Enterprise information protection, ERP, Websense|By: Danny Lieberman|March 18, 2010No Comments

Thoughts of change in the way IT and security will operate – In many corners of the corporate HQ, in fact, there are plenty of execs who, from time to time, would probably take pleasure in watching IT fail, a la Lehman Brothers. …Why the new normal could kill IT..from my colleague - Michel Godet I believe …

Exploiting Apache DoS vulnerabilities

Posted in: Information security|Tags: Apache, Data loss, data security, DoS, XerXeS|By: Danny Lieberman|March 15, 2010No Comments

Apache is the world’ most popular Web server for Linux and Windows platforms, and with such a large attack surface, it’s no surprise that attackers are looking to exploit Apache software vulnerabilities. The approach used by XerXeS is somewhat novel in that it is based on a DoS (not DDos) attack and apparentlyrequires relatively modest computing …

The effectiveness of access controls

Posted in: Information security|Tags: Data classification, data governance, data security, Information assurance, Information security, IT Governance, Microsoft, Sharepoint, Varonis|By: Danny Lieberman|March 11, 2010No Comments

With all due respect to Varonis and access controls in general (Just the area of Sharepoint is a fertile market for data security), the problem of internally-launched attacks is that they are all done by the “right” people and / or by software agents who have the “right” access rights. There are 3 general classes …

Cultural factors in DLP

Posted in: Information security|Tags: Anti-Fraud, business threat modeling, data security, DLP, Homeland Security, Identity theft, Internal security, McAfee, Microsoft, Symantec, Websense|By: Danny Lieberman|March 11, 2010No Comments

What is interesting and generally overlooked – is the cultural differences between the US and the rest of the world. The Europeans prefer a more nuanced approach stressing discipline and procedures,The Americans are compliance driven and IT top heavy, I imagine if you look at DLP sales – 98% are in the US, being (right or …

Facebook disclosure cancels raid on terrorists

Posted in: Information security|Tags: Anti-Fraud, business threat modeling, counterfeiting, data loss prevention, Homeland Security, Islamic Terror, Physical security, Risk management|By: Danny Lieberman|March 11, 2010No Comments

I want to challenge the effectiveness of top-down, monolithic security frameworks (ISO 27001/PCI DSS) – I submit that rapidly changing threats – social networking, cyberstalking, social engineering, cyber-stalking and custom spyware are threats that exploit people and system vulnerabilities but are not readily mitigated by a top down set of security countermeasures. The recent case …

Learning about change and changing your security

Posted in: Information security|Tags: Anti-Fraud, business threat modeling, counterfeiting, data breach, DLP, Fidelis Security, IT Governance, malicious insiders, PCI DSS, Physical security, trusted insiders|By: Danny Lieberman|March 11, 2010No Comments

Reading through the trade press, DLP vendor marketing collateral and various forums on information security, the conventional wisdom is that the key threat to an organization is trusted insiders. This is arguable – since it depends on your organization, the size of the business and type of operation. However – This is certainly true …

Archives