Innovative Minds - On Point - One Group  

ISP Blog

This is the blog for MindPoint Group's Information Security & Privacy (ISP) division. We hope to use this to contribute to and debate ideas among the ISP community.
23
Feb
2010

Reputation Filtering and Old Nightmares

By:

So, I saw this update over at the SANS Internet Storm Center, and it pushed a button.  Well, I should say it was nothing Rob VanderBrink did that set me off, but this “Reputation Filtering” feature he discussed.  Does this sound familiar to anyone?  Years ago I used to run the network for a small

Read More

19
Feb
2010

Search Poisoning and Security Awareness Training

By:

I was talking to my brother just now about recent search poisoning that was occurring related to the story about the guy who crashed a plane into the IRS building.  He works in a SOC at a large organization, and saw someone last night who searched for something like “echelon building plane crash” within the

Read More

12
Feb
2010

TPM Chip Hacked

By:

Darkreading and a few other sites have posted this story about a security researcher named Chris Tarnovsky who has been able to hack one of  the vaunted Trusted Platform Module (TPM) chips.  These are common in most laptop and desktop systems today though it’s hard to say how much they are leveraged.  There are certainly

Read More

11
Feb
2010

Delayed Thoughts From the Dept of Justice Cyber Security Conference

By:

Last week I was able to attend the 2-day cyber security conference.  I have to say that it was more interesting than I thought it would be.  There was certainly the risk that there would be long boring talks about how inflexible, unforgiving and painful FISMA compliance is.  Or worse yet, a mentality that FISMA

Read More

28
Sep
2009

Physical Security Breach

By:

It’s interesting to me that some people within security community seem to create such strong divisions between some of the sub-disciplines of information security. Often I’ll find that the CISO I’m working under has nearly no interaction with the groups in charge of personnel security or physical security. I don’t want to get into nitpicking

Read More