November 1, 2007
New Foundstone Blog
Posted in Passwords, Patches, Risk Assessment, Security 2.0, Security Awareness, Security Governance, Security Program Development, Security Staffing, Social Engineering, Threats at 11:18 pm by jtbevis
Its about time! Foundstone Professional Services has been added to the Avert Labs research blog. So now the makers of all the free hacking tools are accessible online. Check it out there are already some great posts.
http://www.avertlabs.com/research/blog/index.php/category/foundstone/
I’ve also added it as a Blogroll.
September 21, 2007
Extreme Social Engineering Paper
Posted in Risk Assessment, Security Awareness, Security Governance, Security Program Development, Social Engineering at 4:34 pm by jtbevis
The PhishMe blog on building employee awareness to social engineering tactics was inspiring so I finally decided to put up a paper on this site regarding similar subject matter.
Combating the Insider Security Threat – A Security Awareness Exercise
This paper has been developed to address the human factor of security and the apparent weaknesses within organizations due to employees’ lack of security awareness. The purpose is to provide organizations a simple solution for increasing security awareness and combating other malicious insider security threats through a series of social engineering exercises. The document is available by clicking the name above or by accessing the “Papers” section of the site.
PhishMe Blog Entry:
http://blog.phishme.com/2007/09/time-to-phish-your-customers/
