Michael Cobb CISSP-ISSAP - SearchSecurity SearchSecurity Security School: Distributed denial-of-service attack defense 29 Aug 2014 SearchSecurity How can the OWASP Top Ten reduce Web application vulnerabilities? 28 Aug 2014 SearchSecurity The key to assigning risk values in an IT security risk assessment 27 Aug 2014 SearchSecurity Can FIPS 140-2 certification improve enterprise mobile security? 19 Aug 2014 SearchSecurity Third-party application security evaluation tools and services 25 Jul 2014 SearchSecurity The best free vulnerability risk assessment tools 24 Jul 2014 SearchSecurity Mobile keyloggers and touchscreen detection attacks 23 Jul 2014 SearchSecurity Building the business case for a formal patch management program 18 Jul 2014 SearchSecurity Mobile keyloggers: Defense measures against mobile keystroke logging 15 Jul 2014 SearchSecurity Security validation for cloud-based applications 13 Jun 2014 SearchSecurity Are malicious mobile apps a mere inconvenience or a real threat? 11 Jun 2014 SearchSecurity How to use the Metasploit Framework to test for new vulnerabilities 30 Apr 2014 SearchSecurity Defense best practices for a man-in-the-middle attack 24 Apr 2014 SearchSecurity Authentication caching: How it reduces enterprise network congestion 28 Mar 2014 SearchSecurity API security: How to ensure secure API use in the enterprise 10 Mar 2014 SearchSecurity HSTS: How HTTP Strict Transport Security enhances application security 27 Feb 2014 SearchSecurity Developing a continuous security monitoring program for 24/7 security 26 Feb 2014 SearchSecurity How Google Chrome Canary improves malware defense, prevents infection 25 Feb 2014 SearchSecurity SHA-1 to SHA-2: The future of SSL and enterprise application security 03 Feb 2014 SearchSecurity Microsoft Office 2003: Staying safe after the security support stops 31 Jan 2014 SearchSecurity Preventing plaintext password problems in Google Chrome 30 Jan 2014 SearchSecurity Smart defense is good offense: Rethink how you use your SIEM product 29 Jan 2014 SearchSecurity The backdoor threat of Trusted Platform Module and Windows 8 14 Jan 2014 SearchSecurity Elliptic curve cryptography: What ECC can do for the enterprise 14 Jan 2014 SearchSecurity What are the top instant messaging security risks facing enterprises? 10 Jan 2014 SearchSecurity How to identify and secure data egress points to prevent data loss 02 Jan 2014 SearchSecurity How do different browsers handle SSL certificate revocation? 13 Nov 2013 SearchSecurity Web browser extension security: Mitigating browser plug-in threats 12 Nov 2013 SearchSecurity Open source code reuse: What are the security implications? 08 Nov 2013 SearchSecurity CRM, ERP security best practices: How to secure aging software 05 Nov 2013 SearchSecurity Keys to a successful network-based malware detection deployment 07 Oct 2013 SearchSecurity Will a password-strength meter lead to stronger passwords? 07 Oct 2013 SearchSecurity The value of 2,048-bit encryption: Why encryption key length matters 07 Oct 2013 SearchSecurity How certificate pinning improves certificate authority security 07 Oct 2013 SearchSecurity The 2013 OWASP Top 10 list: What's changed and how to respond 10 Sep 2013 SearchSecurity Do two-factor authentication vulnerabilities outweigh the benefits? 10 Sep 2013 SearchSecurity Can an unqualified domain name cause man-in-the-middle attacks? 10 Sep 2013 SearchSecurity RC4 attack details: Can the RC4 encryption algorithm protect SSL/TLS? 09 Sep 2013 SearchSecurity TPM security overview: Defining the benefits of TPM devices 19 Aug 2013 SearchSecurity Open source code management: How to safely use open source libraries 13 Aug 2013 SearchSecurity Why securing internal applications is as important as Web-facing apps 06 Aug 2013 SearchSecurity The advantages of digital watermarking in enterprise data protection 16 Jul 2013 SearchSecurity Application security risks posed by open source Java frameworks 25 Jun 2013 SearchSecurity Is Firefox PDF reader a secure alternative to Adobe Reader? 24 Jun 2013 SearchSecurity What is OCSP? Understanding the Online Certificate Status Protocol 24 Jun 2013 SearchSecurity BB10 security: The risks of running Android apps on BlackBerry 10 21 Jun 2013 SearchSecurity Quiz: Database security issues 30 May 2013 SearchSecurity Using EMET to harden Windows XP and other legacy applications 17 May 2013 SearchSecurity Web application security testing: Is a pen test or code review better? 13 May 2013 SearchSecurity The evolution of threat detection and management 05 May 2013 SearchSecurity NoSQL security: Do NoSQL database security features stack up to RDBMS? 16 Apr 2013 SearchSecurity To nullify targeted attacks, limit out-of-office message security risk 16 Apr 2013 SearchSecurity How to prevent SQL injection attacks by validating user input 15 Apr 2013 SearchSecurity Application whitelisting vs. blacklisting: Which is the way forward? 14 Mar 2013 SearchSecurity Bing security: Is search engine poisoning a problem for Bing users? 12 Mar 2013 SearchSecurity Quiz: Targeted attacks 07 Mar 2013 SearchSecurity Software patching 2.0: Cutting costs with virtual patching, automation 14 Feb 2013 SearchSecurity What risk does the Apple UDID security leak pose to iOS users? 12 Feb 2013 SearchSecurity Windows Server 2012 security: Is it time to upgrade? 08 Jan 2013 SearchDataCenter en Español searchDataCenterES_echapter2 29 Nov 2012 SearchSecurity Implement software development security best practices to support WAFs 20 Nov 2012 SearchSecurity Establish a screen timeout period as part of a BYOD security policy 19 Nov 2012 SearchSecurity Secure Web gateway overview: Implementation best practices 16 Nov 2012 SearchSecurity Under the Surface: How Windows tablet security meets BYOD challenges 12 Oct 2012 SearchSecurity BYOD security policy: Mitigate BYOD risk with device requirements 13 Sep 2012 SearchSecurity The SSL handshake process: Public and privates keys explained 28 Aug 2012 SearchSecurity How to choose secure Android lock patterns 24 Aug 2012 SearchSecurity Information security controls for data exfiltration prevention 24 Aug 2012 SearchSecurity Exploring new features, uses for secure Web gateway appliances 09 Aug 2012 SearchSecurity Using the network to prevent an Oracle TNS Listener poison attack 30 Jul 2012 ComputerWeekly.com “Click-for-tickets” fraud: Teaching users to sidestep Olympic scams 08 Jun 2012 ComputerWeekly.com Password security best practices: Change passwords to passphrases 01 Jun 2012 ComputerWeekly.com Prep and test your Olympics 2012 security contingency plans 22 May 2012 SearchSecurity Examining Kindle Fire security, Silk browser security in the enterprise 07 May 2012 ComputerWeekly.com Adding cybercrime software demos to security awareness training 01 May 2012 ComputerWeekly.com International computer crime requires an international response 30 Apr 2012 SearchSecurity SIEM vs. DAM technology: Enterprise DAM implementation best practices 23 Apr 2012 SearchSecurity The switch to HTTPS: Understanding the benefits and limitations 23 Apr 2012 SearchSecurity Webmail forensics: Investigating issues with email forwarding security 23 Apr 2012 SearchSecurity What are the best tools for enterprise Windows security logs analysis? 20 Apr 2012 ComputerWeekly.com Building a secure website and maintaining good website design 13 Apr 2012 SearchSecurity How to set up your own secure enterprise Android app store 02 Apr 2012 SearchSecurity For U.S. companies, EU cookie compliance calls for website changes 19 Mar 2012 ComputerWeekly.com Open source software security issues: How to review OSS for security 15 Feb 2012 SearchSecurity Tackling SSL vulnerabilities for secure online transactions 02 Feb 2012 ComputerWeekly.com Incident reporting and employee surveillance laws in other countries 25 Jan 2012 SearchSecurity Explaining how trusted SSL certificates and forged SSL certificates work 25 Jan 2012 SearchSecurity BIOS management best practices: BIOS patches and BIOS updates 25 Jan 2012 ComputerWeekly.com Security policy and international employment laws for hiring overseas 23 Jan 2012 SearchSecurity Exploring Google Chromebook security for the enterprise 23 Jan 2012 ComputerWeekly.com Assessing home offices for compliance with security teleworking policy 11 Jan 2012 ComputerWeekly.com Stop phone tracking and GPS data leakage 06 Jan 2012 ComputerWeekly.com Getting control of IT security documentation 28 Dec 2011 ComputerWeekly.com Outsourcing security issues: Managing outsourced software development 21 Dec 2011 ComputerWeekly.com Segregation of duties: Small business best practices 19 Dec 2011 SearchSecurity How penetration testing helps ensure a secure data store 16 Dec 2011 SearchSecurity OpenStack security analysis: Pros and cons of open source cloud software 14 Dec 2011 ComputerWeekly.com How to prevent unauthorised personnel from hacking voicemail 13 Dec 2011 ComputerWeekly.com The case for ongoing end-user security awareness training 02 Dec 2011 ComputerWeekly.com Managing security during acquisition: A merger integration checklist 18 Nov 2011 1 2 3 4 5 6 7 8
