TeamSHATTER

In its fifth year of publication, the Data Breach Investigation Report (DBIR) by Verizon spans 855 data breaches across 174 million stolen records. Mark Goudie, Managing Principal, Asia-Pacific – Investigative Response, Verizon Business, talked to Jasmine Desai about the latest security threats and solutions for the same Click for complete article >>

As you folks over at Facebook prepare to make your initial public offering, before you switch gears to planning your IPO parties and stock-option fueled vacations, take a moment to consider data security. After all, Facebook is nothing without data – volumes and volumes of it. And all that data needs to remain available, accessible, private (sometimes), and authentic, 24 hours a day, from now until…forever. Over the last few years, millions of people have entrusted Facebook with everything from…

TeamSHATTER keeps you up to date with the latest DBMS Security Patch levels to ensure you are protected with the latest security fixes. Last updated 5/11/2012    Edition Latest Patch Release Date Comments Database 11g R2 Database 11g R1 Database 10g R2 Database 10g R1 Critical Patch Update April 2012 April17th 2012   Database 9i Critical Patch Update July 2010 July 13th 2010 Out of support. This was the final patch for 9i. Reference: http://www.oracle.com/technetwork/topics/security/alerts-086861.html Next CPU is due July17th…

In this video, Dennis Fisher, editor-in-chief of Threatpost, speaks with Josh Shaul of Application Security, Inc. and Jack Daniel of Tenable Network Security. This candid discuss revolves around end-user security, where breaches occur and how organizations can fix these problems without causing havoc to their enterprise networks. Click here to watch the video >>

It’s election time, and with the Republican field narrowed down to Mitt Romney as the likely nominee, we have ourselves a Presidential race to watch. When it comes to politics I’m probably at my most cynical, so it’s not what candidates are saying about the issues that catches my attention. It’s the side shows – that’s where all the fun stuff happens – the negative adds, the personal scandals, the fears of voting failures and miscounts, the “facts” invented at…

I recently came upon a blog post by Adrian Lane of Securosis titled ‘Pain comes instantly – fixes come later’, in which he comments on yet another blog post ‘Pain comes instantly’ by Oracle’s CSO, Mary Ann Davidson. Anything ‘Oracle security’ always gets me curious, so I went ahead and worked my way through both articles. Let’s just say one of them is a rather lengthy read. The core point of Mary Ann Davidson’s post is an objection she has…

Several security industry heavyweights flexed their muscle and star power to warn attendees of the 2012 InfoSec World Conference and Expo that relying on technology alone to secure networks is a damning IT security strategy.   The security luminaries — Marcus Ranum, CSO of Columbia, Md.-based Tenable Network Security Inc.; Chris Nickerson, founder and principal security consultant at Lares Consulting in Denver; and Alex Hutton, a former risk analyst at Verizon and currently director of operational risk at a financial institution…

Thanks to modern technology, it’s getting easier to access precious data on databases. The loss of consumer information in high-profile data breaches underscores the need for safe practices. I’ve identified some common unsafe practices that have led to a number of such data loss incidents. Click for complete article >>

Despite rising concern that cyberattacks are becoming increasingly sophisticated, hackers used relatively simple methods 97% of data breaches in 2011, according to a report compiled by Verizon. The annual Verizon report on data breaches, released Thursday, also found that in a vast majority of attacks (80%), hackers hit victims of opportunity rather than companies they sought out. The findings suggest that while companies are spending increasing sums of money on sophisticated new security controls, they are also continuing to overlook…

Why do executives make the wrong security decisions? Generally, bad security decisions are made for the same reasons that other bad decisions get made: inability to predict the future, failure to foresee all the consequences of the decision, and a reliance on someone else who doesn’t live up to their end of the deal. Security is particularly problematic, because we’re often dealing with newer technology, which is not as well-tested, and is consequently less likely to live up to its…