Ask Employees, What is More Valuable?
The Office of Thrift Supervision (OTS) is the federal regulatory agency that oversees federally chartered thrifts (Savings and Loans). I presented to a terrific audience of examiners today, about 170,...
View ArticlePIN/KEY Management Audit and TG-3
The STAR, Pulse and NYCE ATM networks are all requiring some form of PIN/KEY management audits. They are unfortunately inconsistent in their audit requirements and seemingly wavering in application....
View ArticlePlaying it safe on the World Wireless Web
Wireless is a GREAT convenience and with a few basic steps, you can ensure that it is reasonably secure from hackers and / or bandwidth thieves. This post addresses two different aspects of wireless...
View ArticleHardening Procedures
As an IT audit and penetration testing firm, one of the key areas we see as deficient in most organizations is system hardening, specifically pre-deployment hardening procedures.
View ArticleBe attentive to Non-Microsoft Vulnerabilities
Most TrustCC clients have active and effective patch management programs. We have certainly encouraged, both through our audits and our blog posts, that everyone actively patch with as aggressive a...
View ArticleDid I mention Banner Ads can deliver a malicious payload?
Banner Ads are an attack method used by attackers to load malicious programs on the unsuspecting user's computer...
View ArticleVirtual Environments Security
What is Virtualization? Virtualization permits the consolidation of hardware by allowing multiple “virtual” machines to perform on one physical machine. Although the virtual machines are hosted by a...
View ArticleATM Fraud: Shift in Technology Makes US Cardholders a Target
According to recent media coverage and expert prediction, ATM skimming is anticipated to escalate in 2011. As Europe and other countries convert from magnetic-stripe technology to EMV chip standard or...
View ArticleTrojan Targets US Banks
In the news today, experts announced that a rare Trojan by the name of Qakbot is making its way into financial institutions specifically in the U.S. Unlike typical types of malware, it has the ability...
View ArticleDon’t Let Negligence Ruin Your Reputation
Recently, in a KOMO 4 News Problem Solvers Story it was reported that a personal information including Social Security numbers, dates of birth, and mother’s maiden names were found in plain sight...
View Article
More Pages to Explore .....