Optimal Security : the Lumension Blog

How Private Is Your Data, Really? How private is your data? If you are like most people—and even many corporations—you can’t offer a solid answer. Yet one person’s lack of knowledge about data privacy can send a ripple effect through the world as malicious hackers work to steal valuable information from individuals, companies and governments. [...]

Several months ago, I discussed the decline of the U.S as an innovator as part of my Industry Evolution: Innovation vs. Spending series. While a tough pill to swallow, it was true then and it continues to be the case today – the U.S. is lagging in innovation and our title of world thought leader [...]

Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the January 2012 Patch Tuesday releases.

In the first Patch Tuesday of 2012, Microsoft has addressed 1 critical issue and 6 important. It’s interesting to note that despite all of the media hype over “The Beast”, attacks have simply never materialized and the issue has retained its “Important” classification from Microsoft. Overall, we saw a reduction in the number of critical [...]

In the simplest of terms a QR code (or Quick Response code) is a two dimensional barcode that can contain up to 4,296 alphanumeric characters. A great marketing tool, QR codes drive prospective customers to a website and interestingly, they can be placed virtually anywhere. Their popularity has of course exploded – one recent study [...]

I have logged more travel miles than I care to admit in 2011. Throughout it all, I heard significant trepidation from IT security directors and CISO’s over the invasion of their offices with those nasty, uncontrollable personal digital devices that everyone is now armed with: iPhones, Android devices, and iPads.  Especially iPads.  And invariably the [...]

Think the 12 Days of Christmas jingle: On this Patch Tuesday before Christmas ….. Microsoft Gave to me ….. 3 critical patches… 10 important ones…and a patch for the Duqu vulnerability… We initially expected 14 bulletins for this December Patch Tuesday however the much awaited fix for “The Beast” SSL issue was not released today [...]

Paul Henry, Security and Forensics Analyst for Lumension, discusses the impact of the December 2011 Patch Tuesday releases.

Yet another year has nearly come and gone but information security remains as interesting, challenging and relevant as ever – if not more since organized crime and foreign states have eclipsed the traditional lone hacker.  Looking back, the endpoint continues to be the focus of criminal organizations.  Case in point, out of 86 Microsoft security [...]

Yet another dangerous Adobe Zero Day in the wild Adobe has posted a Security Advisory for a Day Zero vulnerability that is currently actively targeting Adobe Reader 9.4.6 on the Windows platform. According to the advisory, the vulnerability (CVE-2011-2462) will be addressed first on the current target platform the week of December 12 and, because the [...]