CSO

99 percent of records compromised from servers and applications

The Internet is the platform of choice for most extremist activities. This talk will take an in-depth look at extremist jihadi groups through their own sites, as a method of information dissemination, recruitment, product development, and propaganda using our encryption, our tools, and our virtual environments.

Key leaders within both the information security and cloud computing industries announced on March 31st the formation of the Cloud Security Alliance, to be formally launched at the RSA Conference 2009, in San Francisco on April 21, 2009. The Cloud Security Alliance is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing.

This represents both the immaturity of our profession and the highly complex nature of information security while challenging the concepts that many professionals adhere to – that ISO27001, CobiT, COSO, FRAP, OCTAVE, etc., are frameworks when in fact there are just a piece of the overall framework pie.

We don’t know what we don’t know
We know of some things we don’t know
The company really seems like it doesn’t want to know

A report released this week on AppleInsider details the Pwn2Own hacking contest results indicating that Apple computers are less secure than their WinTel counterparts, but ultimately safer.

Beware of institutions that have been infiltrated by infidels and who do not represent our beliefs even though they claim to focusing directly on Egypt and the Kingdom of Saudi Arabia.

"Determining the origins of individual and sex-specific odors -- and controlling exogenous chemical contaminants -- may provide the most important challenge for future … studies," the researchers said.

I would recommend that the Obama administration require all companies receiving bailout dollars to disclose any and all security and risk posture information including audit findings, threat and vulnerability information, incidents, breaches, and other such items.

There are many bloggers out there in the blogosphere but a couple that need some recognition.