SearchSecurity: Threat Monitor

How to detect software tampering

Christian Collberg and Jasvir Nagra — Thu, 05 Nov 2009 00:00:00 EST

In their book Surreptitious Software, authors Christian Collberg and Jasvir Nasvir reveals how to tamperproof your software and make sure it executes as intended.

How to prevent phishing attacks with social engineering tests

Sherri Davidoff — Thu, 15 Oct 2009 00:00:00 EDT

Is your enterprise capable of withstanding today's phishing attacks? Sherri Davidoff reviews how you can test your employees.

Preventing hacker attacks with network behavior analysis IPS

David Jacobs — Tue, 13 Oct 2009 08:43:02 EDT

Deter enterprise network attacks by learning how network behavior analysis can be used to protect data. Understand the advantages and disadvantages of anomaly-based and signature-based protection and how to use them together to secure your network against complex hacks.

How SSL-encrypted Web connections are intercepted

Sherri Davidoff — Thu, 17 Sep 2009 10:18:23 EDT

Enterprises and attackers alike have found ways to sniff private Web traffic, even when it's encrypted. Sherri Davidoff reviews how encrypted Web connections can be sniffed, and ways that users can reduce their risk.

Special Report: How to find jobs in information security

Lee Kushner and Mike Murray — Wed, 05 Aug 2009 10:02:28 EDT

Infosec professionals are not unilaterally immune to corporate layoffs and cost-cutting measures. Learn how to surivive and thrive in information security regardless of tough times.

How to defend against rogue DHCP server malware

Sherri Davidoff, Contributor — Thu, 02 Jul 2009 12:34:50 EDT

Rogue DHCP server malware is a new twist on an old concept. The good news is that effective threat mitigation strategies exist; the bad news is that many organizations haven't bothered to deploy them.

How to find and stop automated SQL injection attacks

Jamie Gamble and Patrick Szeto, Security Compass — Thu, 07 May 2009 00:00:00 EDT

Automated SQL injection worms use search engines to filter through vulnerable Web servers. In this tip, Patrick Szeto explains how to keep your website off of the malware's radar.

Security book chapter: The Truth About Identity Theft

Jim Stickley — Thu, 19 Mar 2009 00:00:00 EST

Jim Stickley, author of The Truth About Identity Theft, explains how easy it really is to hack a password.

How to block adult websites from enterprise users by logging content

David Mortman — Wed, 18 Mar 2009 16:28:50 EST

Inappropriate content has always been a problem for enterprise security teams. What are some best practices for blocking adult content and websites from systems? In this security management tip, learn strategies for keeping users' Web habits in check.

How to use (almost) free tools to find sensitive data

John Soltys — Wed, 18 Mar 2009 16:28:50 EST

No matter how much security awareness training employees get, some of them will still store sensitive data in insecure places. As a security manager, finding that data becomes of paramount importance -- but how to do it? In this tip, John Soltys offers advice on ways to find insecurely stored data.