Redspin Inc.
Website: http://www.redspin.com
Redspin, founded in 2000, delivers the highest quality Information Security Assessments through technical expertise, business acumen and objectivity. Redspin customers include leading companies in areas such as healthcare, financial services and hotels, casinos and resorts as well as retailers and technology providers. Some of the largest communications providers and commercial banks rely upon Redspin to provide an effective technical solution tailored to their business context, allowing them to reduce risk, maintain compliance and increase the value of their business unit and IT portfolios.
Results:
1
-
10
Lessons from the McDonald’s, Walgreens and other recent data breaches
Submitted by Redspin Inc. on 2010-12-27 (5 views)
Designing an effective Information Security Program is a process that requires a thorough knowledge of your assets (what you're protecting) and the threat sources (the type of entity that might try to get it). Understanding these two factors is foundational to building an Infosec program. Based on the results of ... Read more (474 words)
L0phtCrack is back!
Submitted by Redspin Inc. on 2010-12-21 (2 views)
L0phtCrack was one of the original and greatest hacking and auditing tools of the 90's, essentially creating the modern LM/NTLM password auditing landscape. L0pht Heavy Industries - the creators of the tool - were instrumental in raising awareness of both the ease of cracking passwords as well the obviousness of ... Read more (371 words)
Information Security Policies Without Technical Controls are Nothing!
Submitted by Redspin Inc. on 2010-12-17 (2 views)
Information Security policies without technical controls are not effective. Consider traffic laws such as speed limits. The ‘policy’ on the 101 freeway right by our office is that cars should go no faster than 65 miles/hour and trucks should go no faster than 55 miles/hour. Many people choose to drive ... Read more (390 words)
Information Security – Portable Media Arbitrage
Submitted by Redspin Inc. on 2010-12-16 (2 views)
Everyone has a smart phone. Everyone is downloading apps. Every day is “Bring your toy to work day.” Portable media introduces unique risks for which existing controls are less effective. What are these risks? Are they unique to your institution?For those of you who have time, let’s run those pesky ... Read more (682 words)
IT Security – Everything is a Risk
Submitted by Redspin Inc. on 2010-12-16 (3 views)
I’m often amazed how often the IT security industry claims “more security” lowers their risk. “More security” does not always mean more secure. Yet, the industry often doesn’t realize how several supposedly harmless aspects of security can unexpectedly raise risk. Let me explain with these examples.DLP: First, let’s examine Data ... Read more (829 words)
Gawker Hacked - Database Exposed
Submitted by Redspin Inc. on 2010-12-15 (2 views)
Hackers have gotten a hold of the database containing usernames and passwords of roughly 1.4 million users who have posted a comment to the Gawker website or any of its popular affiliates, including lifehacker.com, gizmodo.com, jalopnik.com, jezebel.com, kotaku.com, deadspin.com and others.They are not keeping this database to themselves either. They’ve ... Read more (558 words)
How your company can prevent a Mastercard. com style DDoS attack
Submitted by Redspin Inc. on 2010-12-09 (1 views)
In the wake of MasterCard shutting down Wikileaks.org's merchant account, an anonymous group of "Hackers", who collectively call themselves "Anonymous" have taken upon themselves to exact some vigilante justice against the evil free-speech suppressing corporation. Of course MasterCard, PayPal, and PostFinance.ch, Visa.com and Amazon.com -- the other targets named in ... Read more (793 words)
Native Mobile Application Development and Security Risk Management
Submitted by Redspin Inc. on 2010-12-08 (2 views)
Developing native mobile applications as opposed to HTML5-based apps adds complexity to mobile application security management. Peter Yared from Webtrends Apps, recently posted an insightful blog entry where he points out that developing native applications for each mobile platform (i.e. iPhone, Android, Windows Mobile, Blackberry, SymbianOS, WebOS) is not practical ... Read more (300 words)
Google Launches Chrome Web Store-Sells Browser Extensions
Submitted by Redspin Inc. on 2010-12-08 (3 views)
Google launched the Chrome Web Store this week, much to the delight of Chrome users and Google shareholders alike. Branching off of the success of the Android Market (also owned by Google), the Chrome Web Store allows developers to easily sell Chrome browser extensions. The popularity of OSX "widgets" (and ... Read more (428 words)
Getting Started on a Mobile Device Security Policy
Submitted by Redspin Inc. on 2010-11-19 (1 views)
How do we manage security when our users are integrating smart phones and other mobile devices into the workplace? This is a question we hear more and more from our customers as their employees are buying mobile devices such as iPads, iPhones, Blackberries, and Android driven products. The rising tide ... Read more (402 words)