Security is a great and challenging industry to be in right now. It’s this double-edged sword. There’s a lot of work out there for security professionals but on the flip side there aren’t that many security professionals with the skills and knowledge to fight off the current attacks and vulnerabilities.
There will be more published posts on this blog on the topic of security from a couple of different perspectives. I’ll touch on that another time. For now, here are some security articles I’ve found this week.
Tips for Getting Started in Information Security via Kees Leune
The information security industry is hot. Many people want to get into it. Most don’t know how but most importantly, many aren’t getting the experience they need. Kees Leune shares an article he wrote back in October 2008 but I find this tips very relevant.
New Zbot Malware Campaign Discovered by Researchers via SC Magazine
“AppRiver, an email messaging and web security solutions firm, told SCMagazine.com on Wednesday that it had quarantined 400,000 messages so far – a number that had jumped up from 40,000 just earlier in the day.”
You have to secure your cloud as much as you secure your internal infrastructure and endpoints. I guess should we still maintain tape backups.
“We finally managed to get our panel access back but not before he had removed all EBS [Amazon Elastic Block Store] snapshots, S3 [Amazon Simple Storage Service] buckets, all AMI’s [Amazon Machine Images], some EBS instances and several machine instances,” Cloud Spaces said in an announcement on its website. “In summary, most of our data, backups, machine configurations and offsite backups were either partially or completely deleted.”
Two-Factor Authentication with WordPress and Duo Security via Rowell Dionicio
A post I published earlier about implementing two-factor authentication for a WordPress site. Simple to install and easy to use plus more secure.