SecurityRatty: tag: thumb

Threat Modeling Self Checks and Rules of Thumb

2007-10-22 21:04:01 by sdl in The Security Development Lifecycle

...thumb (lots of rules of thumb) about things we often see wrong in diagrams Don't have data sinks: you write the data for a reason. Show who uses it Data cant move itself from one data store to another: show the process that moves it Larry Osterman has some in his blog post, " Threat Modeling Rules of Thumb " I helped edit those, but want to...

Tags: thumb, threat, rules, people threat, data, people, data sinks, thumb encourage flow, actual software

File Systems and thumb drives: Choosing between FAT16, FAT32 and NTFS to get a faster USB Flash Drive

2007-10-06 21:22:58 by Editor in Irongeek's Security Site

File Systems and thumb drives: Choosing between FAT16, FAT32 and NTFS to get a faster USB Flash Drive What file system should you choose to speed up your thumb drive? Read on

Tags: thumb, file systems, thumb drive, ntfs, fat32, fat16, file system, choose, speed

Thumb Sucking: Automatically copying data off of USB flash drives

2007-10-16 01:10:32 by Editor in Irongeek's Security Site

New Script: Thumb Suck Just a quick script I wrote for pen-testing. Think of it as the reverse of Dosk3n's tutorial. By the way, two days till the Louisville InfoSec 2007 Conference , and three till PhreakNIC

Tags: script, quick script, till phreaknic, thumb suck, louisville infosec, days till, dosk3n, reverse, tutorial

Iowa DNR loses personal information on 7,000

2007-12-19 14:22:00 by Evan Francen in The Breach Blog

...thumb (flash) drive containing sensitive personal information belonging to DNR waster water and drinking water permit and certification applicants Reference URL KCRG-TV News Story Radio Iowa News Story The Des Moines Register Report Credit Mike Wagner, Managing Editor with KCRG-TV News Response From the online sources cited above A...

Tags: iowa dnr, iowa, iowa dnr decides, iowa dnr lost, iowa department, dnr, computer flash drive, drive, information

BJs Wholesale Club's noble intentions

2008-02-10 23:07:10 by Evan Francen in The Breach Blog

...thumb drive was in the midst of changing Social Security number-based records to employee identification numbers at the time of the loss Reference URL The New Hampshire State Attorney General breach notification Report Credit The New Hampshire State Attorney General Response From the online source cited above We recently undertook a...

Tags: breach description, breach, bjs wholesale club, security breach, wholesale club, sensitive personal information, personal information, security, security practices

Nevada Department of Public Safety applicants exposed

2008-03-07 10:20:48 by Evan Francen in The Breach Blog

...thumb drive) that was owned by an employee of CSS The DPS is in the process of notifying the 109 applicants that personal information about them, including their social security numbers, addresses and background check information about them has been lost The DPS has ordered CSS to cease all background check activities and to return all...

Tags: personal information, lost personal information, sensitive personal information, nevada, confidential personal information, information, nevada payroll information, nevada department, nevada dps

Stolen Wendy's laptop affects 1,092 employees

2008-01-03 14:08:27 by Evan Francen in The Breach Blog

...thumb drives, CDs, DVDs, laptops, etc.) without encryption (and other controls) is not in policy, it certainly should be! Information security training and awareness also appear to be lacking Past Breaches Unknown

Tags: sensitive personal information, personal information, information, information security, confidential information, information security policies, wendy, breach description, breach

Missing memory stick turns up five months later

2008-01-23 16:44:36 by Evan Francen in The Breach Blog

...thumb drive and took it out of the office We would like to reassure all our customers that Specsavers patient records are kept confidential and are 100 per cent secure at all times and that these records were part of the Manchester Diabetic Screening Scheme, not Specsavers' customer records Evan] Say what? "100 per cent secure at all...

Tags: information security, information, information security assessments, memory stick, security, specsaver diabetic patients, patients, computer memory stick, manchester patients

How My Wife Broke Her Crack Pipe and I Got a Sore Thumb

2008-02-06 13:45:43 by mcurphey in Mark Curphey - SecurityBuddha.com

On Sunday I woke up with sore thumbs (and a stonking hangover). The night before my wife smashed her crack pipe on the kitchen floor. Here is the story. My security friend Dave Cole (ex-Foundstoner and now product manager at Symantec) came to stay on Friday. Disco Dave from the security bullshit cartoons no less! My wife

Tags: wife, crack pipe, security bullshit cartoons, disco dave, sore thumbs, product manager, sunday, symantec, story

Wrapping up Threat Modeling

2008-02-14 22:51:35 by sdl in The Security Development Lifecycle

...thumb to give people confidence theyre on the right trail. Weve talked a very little bit about how to customize the process for your own needs, and where that customization can be dangerous

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo