March, 2012 No. 72: Wireless LAN Edition
Passwords are the weakest link in IT Security
[+]
Organizations are spending millions of dollars to beef up their data, application and network security, but still keep overlooking one obvious area of exposure: user passwords.
6 Simple on-line security mistakes you are already making
[+]
Identity theft is on the rise and users of social media and smartphones are more vulnerable than ever. You might think you’re safe online, but here are a few mistakes that might be making you vulnerable to identity theft.
Silent Authentication: Authenticating users without explicit login
[+]
In today's ecommerce environment, each of us logs on a large number of different websites. If we go back a decade or two, many of us logged in the Internet once and then got access to many resources.
What’s driving the rise of in Data Breaches?
[+]
Cyber insurance is growing in popularity as a means to mitigate the costs and risks associated with a data breach.
Oracle just released the February 2012 Critical Patch Update for Java SE. This Critical patch Update provides fixes for 14 new security vulnerabilities affecting the Java Runtime Environment and JavaFX.
Critical Patches for Flash
[+]
For the second time in less than a month, Adobe has issued an update to fix dangerous flaws in its Flash Player software. The patch addresses two vulnerabilities rated “critical,” but Adobe says it is not aware of active attacks against either flaw.
Out-of-band update for critical LNK vulnerability in Microsoft
[+]
Microsoft released a security update that resolves seven privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer.
Sans 2012
SANS will be back for top notch information security training in Orlando, Florida during SANS 2012. Join us March 23-30 for audit, IT legal, security management, software and web app developer, forensics, and computer security training.
InfoSec World 2012
Over 70 Sessions to Help Solve Your Security Challenges:
-End-to-End Security for the Cloud Era -Free Vulnerability Tools to Audit Security
SANS Northern Virginia 2012
Do you need to become a more effective leader when implementing security improvements for your organization? Are you looking for more in-depth knowledge of the theory and implementation of computer security, virtualization, or securing your private cloud.
European Identity & Cloud Conference 2012
European Identity Conference (EIC) is the place to meet with enterprise technologists, thought leaders and experts to learn about, discuss and shape the market in most significant technology topics such as Identity Management, Governance, Risk Management and Compliance (GRC) and Cloud Computing.
World Congress on Internet Security
The World Congress on Internet Security (WorldCIS-2012) is Technical Co-sponsored by IEEE UK/RI Computer Chapter and IEEE K/W Section Canada. The is an WorldCIS-2012 an international forum dedicated to the advancement of the theory and practical implementation of security on the Internet and Computer Networks
|
|
From ensuring security and compliance, to improving productivity and processes, our readers face a number of demanding pressures. We at Contego are happy to be bringing you another issue of Beyond the Firewall to help to keep professionals in the Contego community aware of developments within the world of IT Risk and Compliance Management. In the March issue you will find an article addressing regulatory compliance and the demand for managing wireless LANS. As I have mentioned many times - this publication is for you. We encourage your feedback on any items of concern or issues which you would like to see addressed in BTFW. I look forward to hearing from you. |
|
Wireless LAN infrastructure is now an increasingly common part of corporate enterprises. With wireless LAN infrastructure, new productivity gains can be realized. With this infrastructure though comes a new threat to corporate security. Wi-Fi threats can compromise the corporate infrastructure integrity and security, whether or not the corporation has their own wireless LAN network. These threats combined with the need for regulatory compliance require new solutions to protect the network integrity and security. A Wi-Fi IPS solution can provide a 24 x 7 monitoring and prevention solution for all categories of Wi-Fi threats. Using a Wi-Fi IPS solution can ensure that proper authentication and access controls for the wireless LAN infrastructure remain in place. It also will prevent unauthorized access points and clients from compromising the corporate network. Both of these areas are critical for maintaining regulatory IT security controls and thus ensuring integrity of the corporate network. |
|
This section is intended to provide security resources to benefit the general public, as well as friends and family of our valued customers and partners. Please forward these links as you feel appropriate. We would like to provide you with links to some great sites that provide you with loads of information for you and your children to keep them safe online.
Dr. Phil’s tips to keeping kids safe on-line
Parent’s guide to on-line safety
| |
Copyright © 2001-2012 - Contego Information Security Solutions Inc.