INFORMATION

Site Map - IT

Web Sites Provide Rich Harvest for Spammers

-

The Betamax Dilemma

-

I,Bot

- New computer worms are carrying software agents called bots that can use your network to send spam, launch attacks, and infect other computers. Find out how these bots work and how to keep them out of your network.

Go phish

- There are seven steps in a phishing attack, from preparation through successful infection of a victim to the fraud committed using stolen information. Fortunately, there are countermeasures available for each stage. For example, organizations should monitor call volumes and the type of questions customers are asking; a large number of calls regarding password problems can signal a phishing attack. To interfere with the use of compromised information, organizations can use two-factor authentication devices such as biometrics. Instituting delays in some types of money transfers can provide time to detect and void phishing-based transactions. @ Online identity theft: phishing technology, checkpoints and countermeasures, from the identity theft technology council is at SM Online.

A Look at Laptop Theft

- Twenty-nine percent of all stolen laptops are taken from offices, with thefts from cars responsible for another 25 percent of laptop losses, according to survey data from CREDANT Technologies, a security software provider. Some of the 283 executives who responded to the survey noted that office laptops had been stolen despite being locked or even glued to desktops. Only 10 percent of the units had a full-disk encryption solution in place, and 82 percent of the stolen laptops were never recovered  @ More details from the survey are available at SM Online.

Knocking Gangs Off the Network

- When it comes to street gangs, “network analysis” has nothing to do with identifying risks in computer systems but rather with analyzing the pattern of social relationships among gangs and individual members. In an innovative program, the North Jersey Gang Task Force has been using network analysis to combat the gang problem in Newark. Partnering with Rutgers University, which has provided free access to graduate students and researchers, the task force has been documenting relationships among gang members, such as which ones hang out together and which have been incarcerated together. Among other things, the analysis has revealed differing levels of “embeddedness” on the part of specific gang members, indicating that different tactics for intervention are necessary for particular gang members. “Cut points”—people who are the only connection among people or groups—have been identified as potentially ideal targets for disrupting gangs.@  Learn more about the program in a report published by the U.S. Department of Justice’s Office of COPS. it is available at SM Online.

Weak Passwords

- A new survey examines consumer password preferences.

Lingua Franca

- CIOs should develop IT plans to support their companies’ overall business objectives.

Data Breaches

- This report examines the total cost to the bottom line of failing to protect customer data from loss or theft.

Convergence

- A study conducted by Booz Allen for ASIS International looks at the implications of convergence.

Physical Security for IT

- Everyone asks whether the company network is safe from hackers, and IT and security departments pour lots of money and energy into making it so. A related question is often overlooked.

Behind the Numbers

-

Quick Bytes: Weak Passwords

- Do you use the same password for all the different sites you visit that require one? If you do, you’re in the majority, according to a poll of 100 people conducted by UPEK, a manufacturer of biometric products. Half of those who use the same password say that it is based on the name of their spouse, pet, hometown, or favorite baseball team—and it is never changed.  @ More from the UPEK survey, which also considers the public’s acceptance of using biometrics instead of passwords, is at SM Online.
 




Beyond Print

SM Online

See all the latest links and resources that supplement the current issue of Security Management magazine.