Compliance, explained.
Practical guidance on the regulations healthcare and food-safety teams face every day.
Security Problems with Acrobat and PDF Files
PDF documents are no longer the security panacea we thought they were. And security awareness training needs to catch up with this. For years, IT and secur
Social Engineering Using Facebook
Banning social network use DOESN’T prevent it being used for social engineering attacks. An excellent article in Dark Reading describes how a security cons
HIPAA- Enforcing Stricter Regulations to Provide Greater Protection for Patient Health Information
HIPAA is a United States Health Insurance Portability and Accountability Act and consists of HIPAA I and HIPAA II. HIPAA I administer health insurance norm
URL Shortening as a Security Threat?
Most of us are familiar with URL shortening websites such as bit.ly , tinyurl.com , and is.gd . It’s one of the technologies that’s fuelling the explosive
Photocopiers and Information Security
Are you covering the security risks of photocopiers (and multi-function machines) in your security awareness training? A recent news report from WINK-TV in
Phishing URLs at All-Time High
SC Magazine reports that MarkMonitor , an internet fraud and brand-protection vendor, has determined that the number of phishing URLs reached a record high
HIPAA Privacy Policies and Standards
Howdy Readers, I was just going through an interesting read on the internet which i wish to share with you all.Why is the HIPAA Privacy Rule needed? When i
Data Exchanged Between Employees Could be a Security Breach
The Washington Post recently reported that an employee in the National Finance Center sent an Excel spreadsheet of employees’ personal information to a cow
IBM 2009 Mid-Year Trend and Risk Report
If you’re responsible for developing computer security training, the 2009 Mid-Year Trend and Risk Report from IBM should be required reading.
Social Engineering Attacks Still Alive and Well
CNET News recently reported that the AT&T account of convicted hacker turned security consultant Kevin Mitnick had been breached for the second time. Repor
Fax Insecurity
Recently, I was working on a Cosaint end-user awareness course about fax security – when it’s safe to use a fax, how to protect faxed information … But,
Security Questions – Good, Bad and Just Plain Ugly
Most of us, at one time or another, have forgotten a password for a website. So we go to the ’Forgot Your Password’ link, answer a simple question, and the
Best Practices for Security Awareness Training
We recently completed a security training needs assessment for one of the states here on the West Coast. Part of the study was to identify a list of accept
Earthlink and Process Insecurity
About a year ago, I opened a dialup Internet access account with Earthlink using their ’secure live sales chat’ feature. "Why a dialup account in this day
Identity Theft? That’s Not Our Problem!
A couple of years ago, Cosaint rolled out a course called "Avoiding Identity Theft". Since that date, most of our clients have picked it up and provided it
Spear Phishing?
In today’s news, phishing is still on the rise. The trends are inexorable and disturbing – shown here are figures from the Anti Phishing Working Group’s mo