QSAs: The playing field isn’t level anymore
By Daniel Cuthbert, June 19, 2009
MasterCard has just dropped a bombshell on the PCI community by announcing that they have changed their Site Data Protection Program. Level 2 merchants now need to make use of a QSA (Qualified Security Assessor) and have an on-site assessment.
Quality versus Quantity
By Daniel Cuthbert, June 16th, 2009
Many companies have seen a reduced IT budget for the forthcoming financial year. Whilst this is an indication of the tough economic times being faced by many in the United Kingdom, it doesn’t have to mean that security should suffer.
Cloud cuckoo?
By Martin O'Neal, May 29th, 2009
There has been a lot written recently about cloud computing and the benefits of abrogating large chunks of an organisation’s data to a third-party specialist. But like so many next-big-things, it isn’t really that new though...
The Rise of Cybercrime
By Daniel Cuthbert, March 25, 2009
As the global recession starts to intensify, especially in the United Kingdom, many companies are reporting an increase in attacks aimed at their online presence. With so many employees loosing their jobs, and the ease and availability of tools and information relating to hacking, many are making the transition from white-collared workers to hackers.
How to profile an RMI service from 0-day knowledge
By Adam Boulton, October 15, 2008
On 25 September 2008, at OWASP NYC, I performed a live demonstration of how to profile an RMI service from 0-day knowledge. My presentation was eagerly awaited by the 600 members that attended this year’s conference. Let me explain why.
