-
Information security book excerpts and reviews
Visit the Information Security Bookshelf for book reviews and free chapter downloads. Information Security Book
-
Information theft and cryptographic attacks
The third tip in our series, "How to assess and mitigate information security threats," excerpted from Chapter 3: The Life Cycle of Internet Access Protection Systems of the book The Shortcut Guide to Protecting Business Internet Usage published by R... Book Chapter
-
Attacks targeted to specific applications
This is the fourth tip in our series, "How to assess and mitigate information security threats," excerpted from Chapter 3: The Life Cycle of Internet Access Protection Systems of the book "The Shortcut Guide to Protecting Business Internet Usage," pu... Book Chapter
-
PING with Suzanne Hall
In this exclusive interview with Information Security magazine, Suzanne Hall, AARP director of IT operations and security, examines how security professionals can enable telecommuters and mobile workers while keeping their data secure. Information Security maga
-
Implementing Database Security and Auditing: Trojans
An excerpt from Chapter 9 of "Implementing Database Security and Auditing," by Ron Ben Natan. Book Chapter
-
RSA Conference 2006
Can't make it to RSA 2006? Check out our continuous coverage from the show floor. Conference Coverage
-
Cattles' lost backup tapes highlight risk of unencrypted data storage
Cattles Group lost backup tapes containing 1.4 million unencrypted customer records. The incident highlights the risks of removable storage. News | 09 Jan 2012
-
Private companies can expect more ICO fines, regulator warns
A regulator warned private companies who do not adequately protect data will face ICO fines up to £500,000. News | 20 Oct 2011
-
Security shakeup needed to stop theft of confidential information
Infections are expensive and nearly constant, but studies from vendors Symantec and FireEye have found the prescription: A new approach to security. News | 02 Sep 2011
-
With UTM system, Blackpool Council trims network security costs
Faced with a network ravaged by Conficker and a dwindling budget, the Blackpool Council implemented a UTM system to cut costs and bolster security. News | 11 Jul 2011
-
VoIP security risks will be on display at Infosecurity Europe
Wick Hill plans to demonstrate CCTV and VoIP security risks that could compromise a network, including three types of attacks. News | 19 Apr 2011
-
Think Money offers lessons in meeting financial compliance regulations
Think Money Ltd, based in Salford Quays near Manchester, offers a range of financial services including insurance, mortgage advice and debt management. Founded in 1993, the company employs more than 800 employees and has been listed in the Sunday Tim... Interview | 30 Nov 2010
-
Survey: DBAs lack clout to apply database security best practices
While many database admins are tasked with protecting sensitive data, few of them have the financial or business-support resources to do so, a recent study finds. Article | 11 Nov 2010
-
How new are Guardium's 'new' database monitoring features?
Guardium has introduced its updated database activity monitoring tool, Infosphere Guardium 8, but one expert questions whether the product offers anything new. Article | 23 Sep 2010
-
NuBridges update enables simultaneous data center tokenisation
NuBridges Inc. has released an updated version of its enterprise tokenisation product, seeking to eliminate a key pain point for large companies implementing tokenisation. Article | 21 Jun 2010
-
Oracle buys database firewall vendor Secerno
Oracle said the deal adds the Secerno database activity monitoring functionality to its line of database server security technologies. Article | 24 May 2010
- See More: News on Database Security Tools and Techniques
-
Segregation of duties: Small business best practices
Segregating duties can be tough in organisations that have few staff members and resources. Get duty segregation best practices for SMBs. Tip
-
RSA Europe 2011: IT security conference coverage
All the news from RSA Europe 2011. Read news, features, tips and blogs from the London based IT security conference. Tip
-
How to stop SQL injection and prevent data compromises
While they're some of the easiest attacks to prevent, SQL injections are also some of the least protected against forms of attack. Learn how to stop them with this advice. Tip
-
Choosing the best uninterruptible power supply for your organisation
With the help of an uninterruptible power supply (UPS), your organisation can avoid costly downtime. Learn how to choose one for your organisation. Tip
-
How to create a data aggregation risk mitigation plan
Data aggregation risks arise when pieces of low-risk information combine to create high-risk assets. In this tip, learn how to assess for such assets and how to secure them. Tip
-
How to use the Microsoft FCIV command-line checksum tool
Downloading files from the Internet always poses a risk, but there are strategies that can make the process more secure. In this tip, Michael Cobb explains how to use the Microsoft FCIV tool to check the hash values of downloaded files and create has... Tip
-
How to prevent memory dump attacks
Because databases are often encrypted, some attackers have switched to memory dump attacks. Michael Cobb explains how to protect your unencrypted transactions. Tip
-
How to use Excel for security log data analysis
Microsoft Excel can be an inexpensive and effective option for firewall, antivirus and server log analysis. Tip
-
Monitoring program data and internal controls for risk management
It's sad but true: Some employees are going to leak or even steal sensitive data. But what are the best ways to mitigate that risk? Tip
-
Using Nmap to scan for open ports, updated servers and more
Nmap is only useful if you know the right scan options for a given objective. Michael Cobb reviews common scenarios where the network mapper can be best put to use. Tip
- See More: Tips on Database Security Tools and Techniques
-
Database activity monitoring technology vs. SIEM tools
In this expert response, Peter Wood explains the difference between database activity monitoring systems and security information and event management (SIEM) tools. Ask the Expert
-
How do attackers use Google to hack?
Richard Brain explains how to protect your website and Web servers from Google hacks. Ask the Expert
-
Why can Google block virus-infected websites; how do you stop a ban?
Expert Richard Brain explains why Google may block virus-infected websites and what you can do to prevent your website from being banned by Google. Ask the Expert
-
How to find and prevent SQL injection attack vulnerabilities
If your site uses a SQL server, then it is probably vulnerable to some form of SQL injection. Expert Richard Brain explains how to strengthen database defenses. Ask the Expert
-
Should confidential data be indexed or used as the index key?
A recent attack uses a series of insert operations to find weaknesses in the database's indexing algorithm. Michael Cobb explains the nature of the threat and what it means for customer data. Ask the Expert
-
Can database extrusion products effectively prevent data loss?
In this SearchSecurity.com Q&A, security expert Michael Cobb explains how well database extrusion products can protect an organization's stored confidential information. Ask the Expert
-
Do XPath injection attacks require the same response as SQL injections?
XPath injection attacks are slightly different (and more dangerous) than SQL injections. In this SearchSecurity.com Q&A, application expert Michael Cobb reveals the preventative steps that can protect your systems from either type of assault. Ask the Expert
-
How can I determine whether a database is hosted on a secure platform?
Learn what critical issues need to be addressed when determining if a database is hosted on a secure platform. Ask the Expert
-
Serious Organized Crime Agency (SOCA)
The Serious Organized Crime Agency (SOCA) is a policing agency dedicated to the identification of criminal activity related to drug trafficking, money laundering, identity theft and immigration. SOCA is based in the United Kingdom. (Continued...) Word
-
Cryptography for the rest of us
In this video, learn cryptography techniques for your enterprise that comply with regulatory and legal requirements, as well as what you need to understand before buying or building cryptography solutions. Video
-
New SQL injection attacks and defense
Lenny Zeltser, security consulting leader at Savvis Inc., explains how some are using SQL injection to actually embed new content, particularly HTML code. Video
-
Database security best practices: Video with David Litchfield
David Litchfield, managing director at NGSSoftware Ltd., reviews three of the most common mistakes that database administrators are making. Video
-
Inside a retail hack
Kevin Mandia of security consultancy Mandiant Corp. reviews an attack that is commonly used to swipe PIN numbers and compromise retailers: SQL injection. Video
-
Cattles' lost backup tapes highlight risk of unencrypted data storage
Cattles Group lost backup tapes containing 1.4 million unencrypted customer records. The incident highlights the risks of removable storage. News
-
Segregation of duties: Small business best practices
Segregating duties can be tough in organisations that have few staff members and resources. Get duty segregation best practices for SMBs. Tip
-
RSA Europe 2011: IT security conference coverage
All the news from RSA Europe 2011. Read news, features, tips and blogs from the London based IT security conference. Tip
-
Private companies can expect more ICO fines, regulator warns
A regulator warned private companies who do not adequately protect data will face ICO fines up to £500,000. News
-
Security shakeup needed to stop theft of confidential information
Infections are expensive and nearly constant, but studies from vendors Symantec and FireEye have found the prescription: A new approach to security. News
-
With UTM system, Blackpool Council trims network security costs
Faced with a network ravaged by Conficker and a dwindling budget, the Blackpool Council implemented a UTM system to cut costs and bolster security. News
-
How to stop SQL injection and prevent data compromises
While they're some of the easiest attacks to prevent, SQL injections are also some of the least protected against forms of attack. Learn how to stop them with this advice. Tip
-
VoIP security risks will be on display at Infosecurity Europe
Wick Hill plans to demonstrate CCTV and VoIP security risks that could compromise a network, including three types of attacks. News
-
Choosing the best uninterruptible power supply for your organisation
With the help of an uninterruptible power supply (UPS), your organisation can avoid costly downtime. Learn how to choose one for your organisation. Tip
-
How to create a data aggregation risk mitigation plan
Data aggregation risks arise when pieces of low-risk information combine to create high-risk assets. In this tip, learn how to assess for such assets and how to secure them. Tip
- See More: All on Database Security Tools and Techniques
About Database Security Tools and Techniques
Get useful tips and tricks on database security and protection. Discover how several database security methods, tools and techniques, such as database encryption, application firewalls and data security software can help security pros protect sensitive data.