• Login
  • Become a member
  • Our use of Cookies
  • RSS
  • Part of the TechTarget network
SearchSecurity.co.UK
  • News
    • Latest Headlines
      • Apache DDoS vulnerability requires immediate update to avoid threat
      • Citrix patches severe XenDesktop, XenApp security flaw
      • Massive Epsilon email breach could lead to email attacks, spam
      • View All News
  • Premium
    Editorial
    • E-Books
      • Technical guide to secure collaboration software
      • Technical guide on PCI: Global compliance trends
      • Technical guide to Web security gateways
      • View All E-Books
    • E-Zines
      • Information Security magazine
      • CWEurope
      • View All E-Zines
  • Information Security
    Topics
    • Topics
      • Compliance and Risk

        Compliance Regulation and Standard Requirements, Data Breach Incident Management and Recovery, IT Security Frameworks and Standards, IT Security Jobs, Careers and Certification Training, Information Security Risk Assessment: Methodology and Analysis, Security Policies and User Awareness

        Data and Application Security Management

        Data Protection Solutions and Strategy, Database Security Tools and Techniques, Email and Instant Messaging Security, Enterprise Data Storage, Platform and OS Security Management, Secure Coding and Application Programming, Security for Cloud Computing and Hosted Services, Virtualisation Technology Solutions and Strategy, Web Application Security

      • Network Security Management

        Endpoint and NAC Protection, Network Security Monitoring: Tools and Systems, Threat and Vulnerability Management, Virtual Private Network Security, Wireless Network Security: Setup, Issues and Threats

        Secure IAM

        Biometrics, Smart Cards, Tokens, Secure User Authentication and Authorization, User Identities and Provisioning, User Password Security

    • Hot Topics
      • Compliance Regulation and Standard Requirements
      • Data Breach Incident Management and Recovery
      • Web Application Security
  • Tutorials
    • Advice & Tutorials
      • IT in Europe, Security Edition: Data security cloud computing outlook
      • IT in Europe, Security Edition: Data Protection Act compliance
      • IT in Europe, Security Edition: Calculating risk and managing threats
      • PCI compliance UK: The future of European merchant PCI compliance
      • Data Protection Act: UK information to avoid DPA fines
      • How to approach Good Practice Guide 13 (GPG13) for CoCo compliance
      • Financial information security: How to survive the banking crisis
    • Technology Dictionary
      • Find definitions and links to technical resources
      • Powered by WhatIs.com
  • Expert
    Advice
    • Tips
      • Creating a Java security framework that thwarts a Java exploit
      • Identity and access management concepts and predictions to watch in 2011
      • iPad security policy pointers for enterprise iPad endpoint integrity
      • View All Tips
    • Answers
      • Learn how to utilize a free spam-filtering service for your SMB
      • Privacy laws in the workplace: Creating employee privacy policies
      • How effective are phishing links that refer to FTP sites?
      • View All Answers
    • Ask a Question
      • Get help from our technical community
      • Powered By ITKnowledgeExchange.com
  • White
    Papers
    • Research Library
      • White Papers
      • Business Webcasts
      • Downloads
      • Powered by Bitpipe.com
    • Product Demos
      • Try out software demos
      • Powered By 2020Software.com
  • Blogs
    • Blogs
      • The Security Viewpoint
      • The Security Viewpoint
      • Powered By ITKnowledgeExchange.com
  • Home
  • Ask the Experts

  • How to utilize free spam-filtering services for SMBs

    Learn how a Web-based free spam-filtering service can secure email and prevent spam from attacking your enterprise.

  • Creating employee privacy policies

    Are your employees aware of their workplace privacy rights? More specifically, are they aware of what privacy rights they don't retain? Learn how t...

  • How effective are phishing links that refer to FTP s...

    The vast majority of phishing emails still include HTTP links, but there has been a recent smattering that refer to FTP sites. In this SearchSecuri...

  • Meet All Experts

Submit a question to our experts

Expert Answers

  • Have vendors secretly placed rootkits on USB thumb drives?

    You can get rootkits from malicious Web sites and emails, but what about reputable vendors? Application security expert Michael Cobb explains how sneaky malware installation cost one organization a...

  • What security risks do enterprise honeypots pose?

    Honeypots can provide a great deal of insight into an environment's attack activity. However, before implementing them, there are some significant issues that require careful consideration and plan...

  • Does Teredo present security risks to the enterprise?

    Teredo allows internal networks to transition to IPv6, interconnecting them through their NAT devices and across the IPv4 Internet. Ed Skoudis explains why this function isn't as innocent as it seems.

  • Should keystroke loggers be used in enterprise investigations?

    Keystroke loggers can provide a great deal of insight into what a perpetrator may be up to inside an enterprise. But not so fast. Ed Skoudis reveals what needs to be done before gathering your firs...

  • Is it important to keep a Java Runtime Environment (JRE) implementation up to date?

    Critical security flaws are often discovered in Java Runtime Environment implementations. Unfortunately, most users don't apply any appropriate patches. Ed Skoudis reveals the security risks posed...

  • What is the relationship between shellcode and exploit code?

    Is shellcode always considered exploit code? In this expert response, Michael Cobb breaks down the two malware terms.

  • Will one failed drive corrupt the rest of a RAID-5 array?

    In this expert Q&A, Michael Cobb explains when it is appropriate to keep a RAID-5 array's failed drive online.

  • What are the risks of downloading CS2 applications from a work computer to a removable drive?

    Even though U3 smart drives can execute Windows-based applications directly, the devices can introduce security risks into the enterprise. Michael Cobb lays out the pros and cons of the technology.

  • What security issues can arise from unsynchronized system clocks?

    Network administrators don't always pay enough attention to the issues of system clock accuracy and time synchronization. Michael Cobb explains why that can lead to security problems.

  • What precautions should be taken if biometric data is compromised?

    In this Q&A, Joel Dubin discusses what precautions to take if corporate biometric data is stolen.

  • How can copying files, exchanging memory tokens and downloading emails spread malware?

    Ed Skoudis explains the malware-related risks of copying files, exchanging memory sticks and downloading emails.

  • What is Spycar?

    Spycar, still available for free, tests a machine against 17 daggressive spyware-like behaviors. Information security threat expert Ed Skoudis explains the tool and gives a preview of Spycar 2.

  • How to choose the right biometric security product

    Identity management and access control expert Joel Dubin discusses the different types of biometric security products on the market today, and offers advice on how you can choose the right biometri...

  • How to prevent hackers from accessing your router security password

    In this Q&A, Joel Dubin unveils the best practices for protecting a router security password from compromise.

  • What Web security initiatives can be taken on a college campus?

    Security management expert Mike Rothman breaks down the topic of Web security, highlighting certain important areas.

  • How does identity propagation work?

    In this expert Q&A, Joel Dubin defines identity propagation and explains how it works.

  • Is it secure to use .NET membership class for user authentication?

    Identity management and access control expert Joel Dubin discusses how .NET membership class can be used as a secure authentication framework.

  • Getting your career in infrastructure security started

    Security management expert Mike Rothman offers advice on how to move up or get involved in the infrastructure security job market.

  • Are there any references that discuss the cost of PCI DSS compliance?

    Security expert Mike Rothman discusses the expenses related to complying with PCI DSS.

  • What is the best way to comply with PCI DSS requirements 9 and 10?

    Security management expert Mike Rothman unveils how corporations can get compliant with PCI DSS guidelines, specifically requirements 9 and 10.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
More from Related TechTarget Sites
  • Networking UK
  • Virtual Data Centre
  • Data Management UK
  • Security
  • Cloud Security
  • Security IN
  • Networking UK
    • O2 signs UK deal for mobile management offering: SNUK news in brief

      SearchNetworkingUK Briefs provides a summary of the week’s new product, services and appointment announcements. This week includes mobile management and much more.

    • FCoE or iSCSI? Doesn’t matter! It’s about the Ethernet

      Some question the path to network convergence - is it through FCoE or iSCSI? Either way, preparing the existing infrastructure will be key to a healthy network environment.

    • Is cloud computing bad for your networking career?

      Many network managers may have an emotional resistance to cloud computing, but experts explain the economic benefits and positive career impact outsourcing data centre resources can have.

  • Virtual Data Centre
    • Download IT in Europe: August 2012

      This month's IT in Europe examines the views of the experts on the new EU framework, and assess what it means for European IT managers.

    • Download Technology Priorities for 2012

      Download Technology Priorities for 2012

    • Download IT in Europe: June 2012

      This month's IT in Europe examines how you can prepare for the new EU data regulations.

  • DataManagement UK
    • Big data roundtable webcast: gaining value from big data

      Roundtable discussion on business value of big data, chaired by Brian McKenna, Editor, SearchDataManagementUK, and featuring Mike Ferguson, Roxane Edjlali (Gartner), Joshua LeCure (GlaxoSmithKline).

    • 2012 training courses: BI, data management, data warehousing

      Find out where to hone your business intelligence, data management and data warehouse skills with this list of training courses for 2012.

    • Poor data quality: what is dirty data costing UK organisations?

      Poor data quality can have serious financial consequences for businesses. Read about the current state of data quality management at UK companies, including dirty data problems.

  • Security
    • Using network flow analysis to improve network security visibility

      To overcome network security issues from advanced attackers and BYOD, security professionals are turning to network flow analysis to gain improved network security visibility.

    • Sourcefire updates malware detection, malware analysis capabilities

      New features for detecting and analyzing malware in Sourcefire's FireAMP and FirePOWER products supplement flagging signature-based antimalware.

    • Goals for how to become a CISO if you're a security technologist

      Security technologists aspiring to become CISOs must develop a variety of business skills, as Joe Granneman explains in this Ask the Expert Q&A.

  • Cloud Security
    • For cloud backup and disaster recovery, bandwidth proves problematic

      When it comes to cloud backup and disaster recovery, organizations are holding back due to insufficient bandwidth and lengthy recovery times.

    • Can self-managed cloud security controls ease enterprise concerns?

      Expert Dave Shackleford details how enterprises can increasingly manage their own cloud security controls with private virtual cloud offerings.

    • How to use PCI SSC supplement to achieve PCI compliance in the cloud

      Ed Moyle examines highlights of the recently released PCI SSC information supplement that offers new details on achieving PCI compliance in the cloud.

  • Information Security
    • BYOD: Securing the risk to access the cost benefits

      Bring-your-own-device schemes offer businesses the opportunity to cut the costs and improve user experiences, but benefits can be dwarfed by the risks.

    • A CIO's five-point plan for managing endpoint security

      Niel Nickolaisen offers a five-point solution for managing endpoint security for the hyper-connected enterprise -- starting with data governance.

    • Microsoft offers 'fix' for latest Internet Explorer zero day

      Microsoft released a temporary fix to mitigate attacks using the most recent Internet Explorer 8 zero day vulnerability.

All Rights Reserved,Copyright 2008 - 2013, TechTarget
  • About Us
  • Contact Us
  • Site Index
  • Privacy policy
  • Advertisers
  • Business partners
  • Events
  • Media kit
  • TechTarget Corporate site
  • Reprints
  • Archive
  • Site map