February 2012 Issue of SCMagazine

February 2012 Issue of SCMagazine

0212

Editorial

The apple doesn't fall far from the tree

The FTC settled a case with Upromise after it failed to encrypt information and provide details about its data collection practices.

Update

News briefs: Anonymous strikes again, massive cyber fraud scheme busted, certificate authorities, and more

Anonymous strikes again, massive cyber fraud scheme busted, certificate authorities, and more.

Company news: Larry Whiteside named CISO at Spectrum Health Systems, and other M&A and personnel announcements

Company news: Larry Whiteside named CISO at Spectrum Health Systems, and other M&A and personnel announcements.

Threat of the month

Threat of the month

Acrobat zero-days

2 minutes on

Mobile application assurance

While many mobile applications do what they're supposed to, countless others carry malware.

Skills in Demand

Skills in demand

Companies are looking for network and server engineers.

Me and my job

Me and my job

When people ask him what he does, Rick JR Mayberry tells them he helps Fortune X companies develop their network security roadmap.

Debate

Debate: M&A activity in the cyber security arena will significantly increase in 2012.

Debate: M&A activity in the cyber security arena will significantly increase in 2012.

Opinion

Don't forget cloud availability

As cloud computing evolves, security strategies must address load, perimeter and behind-the-firewall protection, as well as availability.

Privilege transparency

There are legitimate situations that require elevated privileges for users to accomplish their jobs.

CSO's desk

Information sharing grows up

An enhanced volume of sharing is allowing critical infrastructure operators and government agencies to better defend themselves from attacks, says Mark Clancy, The Depository Trust ...

Features

Cyber beacons: The challenges of new technologies

Organizations are working overtime to design ways to control, via policy and technology, employees' penchant for sharing private information across social networking and mobile devices.

Adjoining islands: Security convergence

Turf wars remain a major roadblock to embracing the merger of physical and logical security. But Honolulu CIO Gordon Bruce believes the right time for ...

Boundless information: Mining social networks

Criminals are finding social media websites like Facebook, which contain a vast array of personal assets, to be a treasure trove of information that they ...

Last Word

State breach rules need revamp

Data protection laws can be more effective if simpler, says JAS Global Advisors' Jeff Schmidt.

Product opener

A look at vulnerability assessment tools

If one wants to address a vulnerability, one needs to add vulnerability management.

Group Test 1

Core Security Technologies Core Impact v12

Core Impact Professional started life as a pure-play penetration test tool.

eEye Digital Security Retina CS

The Retina CS from eEye Digital Security provides a multitude of vulnerability scanning and management features and functions.

Fortinet FortiScan-3000C

The FortiScan-3000C from Fortinet provides full agent-based and agent-less vulnerability scanning, as well as patch management capabilities and remediation.

GFI LanGuard 2011

LanGuard 2011 from GFI is a powerful vulnerability management application.

Lumension Scan

Lumension Scan is a part of the larger Lumension Vulnerability Management platform.

McAfee Vulnerability Manager

The McAfee Vulnerability Manager comes loaded to the gills with powerful onboard tools for solid vulnerability management.

Rapid7 Nexpose Enterprise Edition

The Nexpose Enterprise Edition appliance from Rapid7 is another tool that has grown into a vastly different product over the years.

Saintscanner and Saintexploit

Last year at about this time, we were introduced to Saintbox from Saint and found it a wonderful marriage of all the Saint products in ...

SecPoint Penetrator

Unlike traditional hardware appliances, this product is available as both a rack mount server, but also as a smaller Dell OptiPlex unit.

Secunia Corporate Software Inspector (CSI)

The Corporate Software Inspector (CSI) from Secunia takes an interesting approach to vulnerability assessment.

Tenable Network Security Nessus ProfessionalFeed

Back again this year is our old friend Nessus from Tenable Network Security. For as long as most can remember, this has been a necessary ...

ManageEngine Security Manager Plus

ManageEngine Security Manager Plus from Zoho is a full-scale tool that provides a lot of punch in a relatively tiny package.

First Look

Enterprise whole disk encryption done right

This month's First Look specializes in whole disk encryption and, unlike many other products, can do the entire process of encryption and encrypted disk access ...

Sign up to our newsletters

POLL