Infosecurity Opinions

  1. Comment: Cyber-gang Crackdown Cripples Malware Traffic…for Now

    This past summer’s FBI-coordinated crackdown on computer scareware companies virtually shut the fake security software business down, but without the implementation of tough, diverse preventative solutions, Enigma Software's Alvin Estevez says it might remain akin to nothing more than cutting off the head of a hydra

  2. Comment: Implement Comprehensive Mobile Security – Today

    Mobility and consumerization mean that the landscape of the corporate IT estate is changing in ways that are making new demands of security professionals. Dave Everitt of Absolute Software explains why a multi-tiered security strategy is essential to overcome increased threats

  3. Comment: It’s Time to Take APTs Seriously

    Ross Brewer of LogRhythm explores the danger posed by advanced persistent threats, the rash of high-profile data breaches that have been making headlines this year, and the steps organizations should be taking to protect IT assets

  4. Comment: Network Forensics – Beyond Activity Monitoring

    Network activity monitoring can alert a company to a security breach or an attack, but Jay Botelho of WildPackets points out that a network forensics solution can take network monitoring a step further and use this information to prevent future attacks

  5. Comment: Tackling Data Protection Concerns on Public Cloud Services

    To ensure highest security and compliance standards are met in the cloud, organizations need to adopt a data-centric approach that focuses on protecting data throughout its lifecycle, argues Mike Smart of SafeNet.

  6. Comment: Privacy, Trust and Identity in the Cloud

    The cloud provides many services that are used by individuals to network, and to buy services. ISACA’s Mike Small explores how this has created new challenges relating to identity, privacy and trust

  7. Comment: We All Need to Keep Closer Tabs on Financial Data

    Mohan Koo, managing director of Dtex Systems, explains how recent data breaches show that organizations are focusing on external security while neglecting insider threats

  8. Comment: Power to the People to Secure Consumerized Devices

    How should you deliver security to the personal devices your users want to use for work? Simple – give the users some responsibility. Terry Greer-King of Check Point explains

  9. Comment: Intelligent Network Forensics – Peeling Back the Onion

    Dealing with a true ‘targeted’ attack or ‘advanced persistent threat’ (APT) is a process, not an event, and it includes a discovery phase, an investigation phase, and a remediation phase. The objective is being able to see, study, and stop the threats that are flowing over networks, says Kurt Bertone of Fidelis Security Systems

  10. Comment: The SSL Offload Dilemma

    Nathan Pearce of F5 Networks discusses why more organizations are reviewing their security in the wake of recent breaches, how raised security arrangements will inevitably put strain on servers, and the need to take action.

  11. Comment: EU Data Breach Notification Law is a Start, but Not Enough

    In the wake of the announcement that companies in the EU will have to disclose data breaches, Thales’ Steve Brunswick suggests the imposition of fines would improve information security standards

  12. Comment: Phone Hacking – Scandal, Spyware and Trust

    Gareth Maclachlan, founder and COO of AdaptiveMobile, discusses the issue of mobile malware and explores why mobile operators need to enhance their security practices to ensure subscribers are protected from the increasingly sophisticated range of mobile threats

  13. Comment: Physical Security in a Digital World

    While most managed services providers can provide excellent levels of digital security, servers still exist in the real world and this is often where they are at their most vulnerable. Simon Neal, COO at The Bunker, outlines why some measures and human processes should be implemented to guard against physical threats

  14. Comment: Don't Forget Your Password (Security)

    Idan Shoham of Hitachi ID Systems explores today’s authentication methods and why password security is still relevant in today’s environment

  15. Comment: Securing Mobile Commerce from Start to Finish

    With the rise of mobile commerce comes increased responsibility for retailers to ensure they have the necessary systems in place to protect customer data, writes Verizon Business’ David Tran.

  16. Comment: HIPAA vs The Cloud

    Cloud computing provides a cost effective service option for the IT needs of healthcare organizations; however, loss of assured end-to-end control of data can create HIPPA compliance issues. Chris Witt, CEO of WAKE Technology Services, serves up his perspective on the tradeoffs

  17. Comment: Mastering Mobile Security

    Paul Lothian, principal adviser at KPMG, believes increasingly functional mobile devices are now firmly in the sights of cybercriminals.

  18. Comment: Public vs Private – Things that Really Matter In the Cloud

    Aydin Kurt-Elli, COO at Lumison, reflects on the Amazon EC2 outage, exploring what a private cloud infrastructure can offer organizations amid public cloud fears.

  19. Comment: Accidental Data Deletion Still Considered Spoliation

    Bill Tolson of Autonomy examines the perils of eDiscovery requirements and what organizations should do to prepare for all-but-inevitable lawsuits

  20. Comment: Passwords Are No Longer Enough

    Strong authentication is key to adequately protecting critical data in a mobile age. Stephen Howes, CTO of GrIDsure, looks at the options

Why not watch?

  1. AI Agents and the Evolving Landscape of Digital Identity

  2. Auditing AI Risk: Essential Strategies for IT & Compliance Leaders

  3. Cyber Resilience in the AI Era: New Challenges and Opportunities

  4. How to Update Your PAM Strategy to Protect Hybrid Cloud Infrastructures

What’s hot on Infosecurity Magazine?