tag:blog.ncircle.com,2008:/blogs/sync//3 2008-06-26T14:48:47Z Movable Type 3.35 tag:blog.ncircle.com,2008:/blogs/sync//3.481 2008-06-25T18:10:16Z 2008-06-26T14:48:47Z Andrew Storms http://blog.ncircle.com/sync Ben Whorten of the Wall Street Journal suggests, in his BizTech blog posting, that the iPhone adoption will be based on business culture. Ben may be partially correct. But, when it comes to enterprise infrastructure, "chic" doesn't get the PO signed. tag:blog.ncircle.com,2008:/blogs/sync//3.480 2008-06-19T03:06:20Z 2008-06-25T18:16:17Z Andrew Storms http://blog.ncircle.com/sync Look what I found in my inbox. Yes, its phishing circa 2004. I am responding to the email for your auction which was posted on eBay. I believe i emailed you a week ago regarding this sale, and my interest... tag:blog.ncircle.com,2008:/blogs/sync//3.469 2008-04-18T21:21:53Z 2008-04-18T21:29:52Z Andrew Storms http://blog.ncircle.com/sync While most consumers knock on vendor doors to raise awareness and demand better security, PayPal is flexing their muscle in a different way. They are going to force their users to only use approved web browsers. While this may seem... tag:blog.ncircle.com,2008:/blogs/sync//3.465 2008-04-08T16:23:09Z 2008-04-08T16:26:38Z Andrew Storms http://blog.ncircle.com/sync nCircle is at RSA this week and we have remote control helicopters. Lets face it, people like to get free stuff at conferences. So come by the booth and learn how to get yourself one of these very cool RC... tag:blog.ncircle.com,2008:/blogs/sync//3.461 2008-03-28T21:11:30Z 2008-03-28T21:18:23Z Andrew Storms http://blog.ncircle.com/sync In Newsweek, Daniel Gross said there is a growing "crisis of confidence" when it comes to Wall Street. The evidence is readily available - the fall of Bear Sterns, the sub prime mortgage mess and consumer confidence declines to new... tag:blog.ncircle.com,2008:/blogs/sync//3.453 2008-03-06T23:14:59Z 2008-03-07T03:02:46Z Andrew Storms http://blog.ncircle.com/sync Undoubtedly you've heard about the iPhone SDK. While Apple DDoS's their own developer site with thousands of people trying to download the SDK, enterprise security managers are bracing for round 2 of iPhone security vs the yearning corporate executive. Putting... tag:blog.ncircle.com,2008:/blogs/sync//3.451 2008-03-05T23:27:52Z 2008-03-06T18:41:58Z Andrew Storms http://blog.ncircle.com/sync ...15 months later, Moody's will be announcing their own Vendor Information Risk Rating Service... tag:blog.ncircle.com,2007:/blogs/sync//3.442 2007-09-10T19:37:45Z 2007-09-10T19:51:38Z Andrew Storms http://blog.ncircle.com/sync The onslaught of bots and spammers gave birth to a new tool to differentiate human from android. Alan Turing would be proud to see just how much technology we have devised. One such technology is that of the CAPTCHA - it's the text and numbers graphic we need to input in order to sign up for a service or make a comment at a blog. ReCAPTCHA takes this technology to solve more than one problem.... tag:blog.ncircle.com,2007:/blogs/sync//3.441 2007-09-06T20:22:43Z 2007-09-06T20:28:42Z Andrew Storms http://blog.ncircle.com/sync Sarbanes Oxley, ISO 27002, GLBA - what do they all have in common? Yes, each contain, at least in part, an information security standard or regulation. From an applicability perspective with respect to business size, relatively few small or medium size businesses are directly mandated to conform to these or other standards and regulations. Even though it is the upper end of the medium size business and large business throughout, which are affected by mandated standards, the smaller companies are still being affected by a trickle down movement.... tag:blog.ncircle.com,2007:/blogs/sync//3.435 2007-08-06T23:06:29Z 2007-08-06T23:12:14Z Andrew Storms http://blog.ncircle.com/sync MacWorld recently published an article stating that analysts have exaggerated security concerns of the iPhone. Some of the statements in the article regarding the security of the iPhone and the overall security of mobile computing deserve further commentary. While I for one have taken it "on the chin" for not jumping on the I-Heart-The-iPhone bandwagon, the purpose of this follow up is to set a stage for an open discussion on overall smartphone risks to the enterprise. tag:blog.ncircle.com,2007:/blogs/sync//3.434 2007-08-01T05:11:10Z 2007-08-01T05:14:33Z Andrew Storms http://blog.ncircle.com/sync Quick note for anyone at BlackHat this week. nCircle is a sponsor at BlackHat USA 2007. There is a contingent of us at the show. Stop by the booth and say hello.... tag:blog.ncircle.com,2007:/blogs/sync//3.432 2007-07-27T18:51:25Z 2007-07-27T21:26:56Z Andrew Storms http://blog.ncircle.com/sync NetworkWorld reports that numerous classified government documents along with corporate confidential information is being leaked by use of peer-to-peer networks. Included in the list of documents found include: "The Pentagon's entire secret backbone network diagram, complete with IP addresses" and "physical terrorism threat assessments for three major U.S. cities". The fright night doesn't end there, many corporate documents were also discovered, including: board minutes; launch plans, growth targets and patent information... tag:blog.ncircle.com,2007:/blogs/sync//3.431 2007-07-26T17:11:30Z 2007-07-26T17:21:09Z Andrew Storms http://blog.ncircle.com/sync Friday July 27th is Sysadmin Day. Actual things I've heard said to a sysadmin....(yes, for real): tag:blog.ncircle.com,2007:/blogs/sync//3.429 2007-07-19T20:26:04Z 2007-07-19T20:33:28Z Andrew Storms http://blog.ncircle.com/sync Trust is part of our daily lives. Its what gets us to work in the morning and its what keeps our society from going insane. That car in the lane next to me on the freeway this morning, I trusted it not to swerve into my lane and cause me to go careening off into the guardrail. But, did I trust the car or the driver? How is trust created and are we using regulations and money to buy customer trust?... tag:blog.ncircle.com,2007:/blogs/sync//3.425 2007-06-28T17:03:01Z 2007-06-28T17:12:32Z Andrew Storms http://blog.ncircle.com/sync If someone in your organization hasn’t already asked your IT team to support one of these devices, then chances are they already exist and you’ve chosen to ignore it. Here is your two by four smack to the behind. If Apple’s market penetration of the iPod is any predictor of the iPhone, then you can easily anticipate the thundering heard. You can either choose to embrace the change, fight it or ignore it. As a security professional, I suggest a skeptical embracement of the iPhone. And to the overall goal of supporting smartphones in your enterprise, I suggest four top line items for you to consider.