Shahla Raei

Paul Thank you so much for sharing this information it was helpful and I added my screen shot in to media section of our blog. here is the link to it .

http://community.mis.temple.edu/mis520817/files/2017/02/Table-script.png

I have experience working with Microsoft SQL and PLSQL Developer, and this information will help me to love working…[Read more]

Blake,

Very Interesting topic, and as Sean mentioned to a good point that the trend of data analytics that being outsourced is growing.
I believe If the data is critical to the company’s business survival, it should be kept in-house. Other analytics can be outsourced.

I found a related example about your topic online:

Example is r…[Read more]

Nice topic, Unethical behavioral!
Based on my research, Financial regulation cannot prevent this kind of scandal. Finally it is human nature at the root of this problem. In this case I’ve found out that Wells Fargo had a two-day ethics workshop in 2014 explicitly telling their employees not to create fake customer accounts. However, the…[Read more]

Wenlin,

Interesting topic, Use of AI is not a new concept. AI solutions can be used to improve security across a number of business in financial industries. Organizations rely on AI to trace steps by analyzing the behaviors of transactions and devices. Based on my research I found an article released on December 2016, stating that master card…[Read more]

Online Ad Industry Threatened by Security Issues

In this article mentioned nowadays Cybercriminals are looking for powerful alternatives and now targeting ad industries.
The online advertising industry is at an inflection point, also ad blockers and potential regulation are considering a risk. It’s facing a big security problem, and associated…[Read more]

Yang,

Correct, I wanted to mention to this week assignment and submitting our presentation. our team come up a solution to help company identify their sensitive information. one of the document we ask them to prepare it for the future meeting was organizational chart. I think this chart is an important chart in an organization and help auditor…[Read more]

Neil,

Its is really an interesting point , and privacy is an important concept, specifically in 21st century, Now a days has become the century of Big Data and Information Technology allows for the storage and processing of big data. so testing the Privacy effectiveness is always matter.

Right, Access management dealing with authorization and authentication. I liked your example. as you mentioned knowing the distinction between these two helps the stakeholders in understanding how their interests are protected and implemented by Identity and Access Management technologies

Mansi,

Good point, I agree with you it totally depends on nature of business, However outbound traffic is more important in my view, I remember in advisory session we had couple weeks ago, we analyze the case that the problem was in outbound traffic wasn’t protected so there was a main problem on that case.

Fred,

I think it might be depends on nature of business, if the organization doesn’t want to communicate in industry so blocking all income network is good practice, However, I think in terms of confidentiality we should block or be sensitive about outbound information.

Loi,

Its an interesting article its explains the detail of DDos attack, also its point out the rationalization of attacker.

On October 21st I got email from Big interview website, which I am a member of it. That the global Internet Outages Affecting their website. I was curious about the breach and did search about it.

On October 21st , ton of websites and services, including Spotify and Twitter, were unreachable because of a distributed denial of service (DDoS)…[Read more]

Noah,

Its interesting, I didn’t think the way you explained! True its based on reason for attacks or what is the goal of attackers.

If attacker aims botnet, spam phishing as it sent out in mass quantities can be a bigger treat, and if attacker aims specific information spear phishing as its target specific group of organization is a bigger treat.

Spear phishing is highly specialized attacks against a specific target or group of targets to collect information or gain access to systems through personalized e-mail messages and social engineering. This is not random kind of attack, attacker knows target name, target email address, and at least a little about target. It’s a more in depth…[Read more]

Customer trust is often damaged after a data breach. following Yahoo recent disclosure of a data breach that affected more than 500 million accounts. Verizon may demand to renegotiate its $4.8 billion deal for Yahoo Inc. It’s yahoo’s responsibility to prove the full of impact and Verizon could allow it to change the terms of the takeover.
T…[Read more]

They are different!

Disaster recovery plan provides detailed strategies about processes and procedures an organization must put in place immediately to ensure that critical functions can continue during and after a disaster to recover from the event. Such as emergency supplies, flashlights, backup business information.

Business Continuity…[Read more]

Fred,

As you mentioned , PHYSBITS focuses on the human aspect of physical security by integrating information security. I agree with Ex- employee risk and the controls you considered for it is smart , adding additional level of access control.