Risk Management with Stuart King and Duncan Hart

November 2007

  • Bot Master Banged to Rights

    Stuart King - Reed Elsevier 12 Nov 2007
  • “ Crime pays, and it also has an excellent benefits package. ” So went the signature of John K Schiefer, the security consultant who has just "admitted to using massive botnets to illegally install ...

  • Salesforce.com Phishing & Security Awareness

    Stuart King - Reed Elsevier 11 Nov 2007
  • According to The Register, "Salesforce.com (SFDC) has been caught with its pants down after phishers persuaded an employee to hand over customer contact details." That SFDC customers have been ...

  • Malware - continuing threat (Pt. 2)

    Stuart King - Reed Elsevier 10 Nov 2007
  • In research performed during 2005, Alexander Moshchuk, Tanya Bragin, Steven D. Gribble, and Henry M. Levy of the Department of Computer Science & Engineering at the University of Washington ...

  • Malware - continuing threat (Pt. 1)

    Stuart King - Reed Elsevier 09 Nov 2007
  • I asked the other day if "we no longer perceive malware as being such a high priority?" According to the 2007 CSI Computer Crime & Security Survey, virus attacks impacted 52% of survey ...

  • Proving the effectiveness of desktop controls

    Stuart King - Reed Elsevier 08 Nov 2007
  • As David Lacey mentions over on his blog, the question was posed as to “What are the 2, 3 or 4 key measures that are proven to significantly reduce the risk to your PC?” Andrew Yeomans, who posed ...

  • Infosec Steering Committee

    Stuart King - Reed Elsevier 07 Nov 2007
  • It was my privilege to be invited to chair this years Infosec Europe Steering Committee meeting yesterday. The event team presented lots of plans and ideas that suggest next years show will be the ...

  • More on the consumerization of IT

    Stuart King - Reed Elsevier 06 Nov 2007
  • Following on from yesterdays blog, I had a brief discussion with an individual who thought my efforts would be better spent focusing on more timely issues. In a lot of ways, he's right - there are ...

  • Non-company equipment on our networks

    Stuart King - Reed Elsevier 05 Nov 2007
  • Do we need to come up with new ways to deal with the risks associated with non-company equipment being connected to our networks? I presently operate a policy that prevents anyone plugging in their ...

  • CISSP - is it worthwhile?

    Stuart King - Reed Elsevier 03 Nov 2007
  • I was dissapointed to learn that one particular large business in London has opted to stop considering job applicants who hold a CISSP certification. This, apparently, results from candidates who ...

  • Infosec Europe Hall of Fame

    Stuart King - Reed Elsevier 02 Nov 2007
  • Infosecurity Europe are compiling a list of who they "consider to be the brilliant minds in the history of the information security industry. " Read the details online here: ...

  • Risk and control

    Stuart King - Reed Elsevier 01 Nov 2007
  • The most important thing of all when it comes to our company networks and data is to be in control. This is also the most difficult objective to accomplish. In fact, just defining what we mean by ...