• Login
  • Become a member
  • Our use of Cookies
  • RSS
  • Part of the TechTarget network
SearchSecurity.co.UK
  • News
    • Latest Headlines
      • Apache DDoS vulnerability requires immediate update to avoid threat
      • Citrix patches severe XenDesktop, XenApp security flaw
      • Massive Epsilon email breach could lead to email attacks, spam
      • View All News
  • Premium
    Editorial
    • E-Books
      • Technical guide to secure collaboration software
      • Technical guide on PCI: Global compliance trends
      • Technical guide to Web security gateways
      • View All E-Books
    • E-Zines
      • Information Security magazine
      • CWEurope
      • View All E-Zines
  • Information Security
    Topics
    • Topics
      • Compliance and Risk

        Compliance Regulation and Standard Requirements, Data Breach Incident Management and Recovery, IT Security Frameworks and Standards, IT Security Jobs, Careers and Certification Training, Information Security Risk Assessment: Methodology and Analysis, Security Policies and User Awareness

        Data and Application Security Management

        Data Protection Solutions and Strategy, Database Security Tools and Techniques, Email and Instant Messaging Security, Enterprise Data Storage, Platform and OS Security Management, Secure Coding and Application Programming, Security for Cloud Computing and Hosted Services, Virtualisation Technology Solutions and Strategy, Web Application Security

      • Network Security Management

        Endpoint and NAC Protection, Network Security Monitoring: Tools and Systems, Threat and Vulnerability Management, Virtual Private Network Security, Wireless Network Security: Setup, Issues and Threats

        Secure IAM

        Biometrics, Smart Cards, Tokens, Secure User Authentication and Authorization, User Identities and Provisioning, User Password Security

    • Hot Topics
      • Compliance Regulation and Standard Requirements
      • Data Breach Incident Management and Recovery
      • Web Application Security
  • Tutorials
    • Advice & Tutorials
      • IT in Europe, Security Edition: Data security cloud computing outlook
      • IT in Europe, Security Edition: Data Protection Act compliance
      • IT in Europe, Security Edition: Calculating risk and managing threats
      • PCI compliance UK: The future of European merchant PCI compliance
      • Data Protection Act: UK information to avoid DPA fines
      • How to approach Good Practice Guide 13 (GPG13) for CoCo compliance
      • Financial information security: How to survive the banking crisis
    • Technology Dictionary
      • Find definitions and links to technical resources
      • Powered by WhatIs.com
  • Expert
    Advice
    • Tips
      • Creating a Java security framework that thwarts a Java exploit
      • Identity and access management concepts and predictions to watch in 2011
      • iPad security policy pointers for enterprise iPad endpoint integrity
      • View All Tips
    • Answers
      • Learn how to utilize a free spam-filtering service for your SMB
      • Privacy laws in the workplace: Creating employee privacy policies
      • Have vendors secretly placed rootkits on USB thumb drives?
      • View All Answers
    • Ask a Question
      • Get help from our technical community
      • Powered By ITKnowledgeExchange.com
  • White
    Papers
    • Research Library
      • White Papers
      • Business Webcasts
      • Downloads
      • Powered by Bitpipe.com
    • Product Demos
      • Try out software demos
      • Powered By 2020Software.com
  • Blogs
    • Blogs
      • The Security Viewpoint
      • The Security Viewpoint
      • Powered By ITKnowledgeExchange.com
  • Home
  • Ask the Experts

  • How to utilize free spam-filtering services for SMBs

    Learn how a Web-based free spam-filtering service can secure email and prevent spam from attacking your enterprise.

  • Creating employee privacy policies

    Are your employees aware of their workplace privacy rights? More specifically, are they aware of what privacy rights they don't retain? Learn how t...

  • Have vendors secretly placed rootkits on USB thumb d...

    You can get rootkits from malicious Web sites and emails, but what about reputable vendors? Application security expert Michael Cobb explains how s...

  • Meet All Experts

Submit a question to our experts

Expert Answers

  • What security risks do enterprise honeypots pose?

    Honeypots can provide a great deal of insight into an environment's attack activity. However, before implementing them, there are some significant issues that require careful consideration and plan...

  • Does Teredo present security risks to the enterprise?

    Teredo allows internal networks to transition to IPv6, interconnecting them through their NAT devices and across the IPv4 Internet. Ed Skoudis explains why this function isn't as innocent as it seems.

  • Should keystroke loggers be used in enterprise investigations?

    Keystroke loggers can provide a great deal of insight into what a perpetrator may be up to inside an enterprise. But not so fast. Ed Skoudis reveals what needs to be done before gathering your firs...

  • Is it important to keep a Java Runtime Environment (JRE) implementation up to date?

    Critical security flaws are often discovered in Java Runtime Environment implementations. Unfortunately, most users don't apply any appropriate patches. Ed Skoudis reveals the security risks posed...

  • How effective are phishing links that refer to FTP sites?

    The vast majority of phishing emails still include HTTP links, but there has been a recent smattering that refer to FTP sites. In this SearchSecurity.com Q&A, Ed Skoudis explains how to be ready fo...

  • What is the relationship between shellcode and exploit code?

    Is shellcode always considered exploit code? In this expert response, Michael Cobb breaks down the two malware terms.

  • Will one failed drive corrupt the rest of a RAID-5 array?

    In this expert Q&A, Michael Cobb explains when it is appropriate to keep a RAID-5 array's failed drive online.

  • What are the risks of downloading CS2 applications from a work computer to a removable drive?

    Even though U3 smart drives can execute Windows-based applications directly, the devices can introduce security risks into the enterprise. Michael Cobb lays out the pros and cons of the technology.

  • What security issues can arise from unsynchronized system clocks?

    Network administrators don't always pay enough attention to the issues of system clock accuracy and time synchronization. Michael Cobb explains why that can lead to security problems.

  • What precautions should be taken if biometric data is compromised?

    In this Q&A, Joel Dubin discusses what precautions to take if corporate biometric data is stolen.

  • How can copying files, exchanging memory tokens and downloading emails spread malware?

    Ed Skoudis explains the malware-related risks of copying files, exchanging memory sticks and downloading emails.

  • What is Spycar?

    Spycar, still available for free, tests a machine against 17 daggressive spyware-like behaviors. Information security threat expert Ed Skoudis explains the tool and gives a preview of Spycar 2.

  • How to choose the right biometric security product

    Identity management and access control expert Joel Dubin discusses the different types of biometric security products on the market today, and offers advice on how you can choose the right biometri...

  • How to prevent hackers from accessing your router security password

    In this Q&A, Joel Dubin unveils the best practices for protecting a router security password from compromise.

  • How does identity propagation work?

    In this expert Q&A, Joel Dubin defines identity propagation and explains how it works.

  • Is it secure to use .NET membership class for user authentication?

    Identity management and access control expert Joel Dubin discusses how .NET membership class can be used as a secure authentication framework.

  • What Web security initiatives can be taken on a college campus?

    Security management expert Mike Rothman breaks down the topic of Web security, highlighting certain important areas.

  • Are there any references that discuss the cost of PCI DSS compliance?

    Security expert Mike Rothman discusses the expenses related to complying with PCI DSS.

  • Getting your career in infrastructure security started

    Security management expert Mike Rothman offers advice on how to move up or get involved in the infrastructure security job market.

  • What is the best way to comply with PCI DSS requirements 9 and 10?

    Security management expert Mike Rothman unveils how corporations can get compliant with PCI DSS guidelines, specifically requirements 9 and 10.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
More from Related TechTarget Sites
  • Networking UK
  • Virtual Data Centre
  • Data Management UK
  • Security
  • Cloud Security
  • Security IN
  • Networking UK
    • O2 signs UK deal for mobile management offering: SNUK news in brief

      SearchNetworkingUK Briefs provides a summary of the week’s new product, services and appointment announcements. This week includes mobile management and much more.

    • FCoE or iSCSI? Doesn’t matter! It’s about the Ethernet

      Some question the path to network convergence - is it through FCoE or iSCSI? Either way, preparing the existing infrastructure will be key to a healthy network environment.

    • Is cloud computing bad for your networking career?

      Many network managers may have an emotional resistance to cloud computing, but experts explain the economic benefits and positive career impact outsourcing data centre resources can have.

  • Virtual Data Centre
    • Download IT in Europe: August 2012

      This month's IT in Europe examines the views of the experts on the new EU framework, and assess what it means for European IT managers.

    • Download Technology Priorities for 2012

      Download Technology Priorities for 2012

    • Download IT in Europe: June 2012

      This month's IT in Europe examines how you can prepare for the new EU data regulations.

  • DataManagement UK
    • Big data roundtable webcast: gaining value from big data

      Roundtable discussion on business value of big data, chaired by Brian McKenna, Editor, SearchDataManagementUK, and featuring Mike Ferguson, Roxane Edjlali (Gartner), Joshua LeCure (GlaxoSmithKline).

    • 2012 training courses: BI, data management, data warehousing

      Find out where to hone your business intelligence, data management and data warehouse skills with this list of training courses for 2012.

    • Poor data quality: what is dirty data costing UK organisations?

      Poor data quality can have serious financial consequences for businesses. Read about the current state of data quality management at UK companies, including dirty data problems.

  • Security
    • Gary McGraw: NSA data collection programs demand discussion, scrutiny

      Opinion: Gary McGraw details the various and sundry NSA data collection programs and explains why all its efforts demand new discussion and scrutiny.

    • Enterprise BYOD offers mixed bag for enterprise endpoint security

      A Gartner analyst says enterprise BYOD -- specifically iOS and Android devices -- presents many pros and cons for enterprise endpoint security.

    • Reframing discussions about return on security investment

      According to expert Joe Granneman, return on security investment is a misnomer. Here's a better way to view security expenditures.

  • Cloud Security
    • Gartner: Negotiate cloud contracts with detailed security, control

      When negotiating with cloud providers, enterprises must demand cloud contracts with specific security and control provisions, Gartner analysts say.

    • Cloud data breach notification: Defining legal obligations

      Francoise Gilbert provides a cloud data breach notification overview for enterprises concerned about placing personal information in the cloud.

    • Are FedRAMP security controls enough?

      Cloud service providers are working with authorized third-party auditors to meet FedRAMP security controls. The 3PAOs tell us how it’s going, so far.

  • Information Security
    • Security tech market set to grow 8.7% in 2013, says Gartner

      The worldwide security technology and services market will reach $67.2bn in 2013, up 8.7% from 2012, according to research firm Gartner

    • A malicious charger could hack Apple devices easily, claim researchers

      A modified phone charger or battery could be used to hack Apple devices, say researchers from Georgia Tech

    • How to reduce IT security risk with IT asset management

      IT asset management expert Barb Rembiesa explains how ITAM best practices like IT asset standardization and rationalization reduce IT security risk.

All Rights Reserved,Copyright 2008 - 2013, TechTarget
  • About Us
  • Contact Us
  • Site Index
  • Privacy policy
  • Advertisers
  • Business partners
  • Events
  • Media kit
  • TechTarget Corporate site
  • Reprints
  • Archive
  • Site map