Category Archives: Risk & Risk Management

“The War God’s Face Has Become Indistinct” – Unrestricted Warfare

While doing some research for a project recently some of my military friends pointed me to a document I had never read called Unrestricted Warfare.  In reading the document, I was shocked at what it contained.  In 1999, two Chinese … Continue reading

Posted in cybersecurity, Risk & Risk Management, terrorism | Tagged , , , , , , , | Leave a comment

“Gauss What!?” – Another CyberWeapon Discovered

According to Kaspersky labs, yet another cyberweapon was discovered last week.  On August 9, 2012 Kaspersky labs released a press release stating that they had identified another cyber-weapon dubbed Gauss.  According to the press release: “…‘Gauss’, a new cyber-threat targeting … Continue reading

Posted in cyberespionage, Risk & Risk Management, terrorism | Tagged , , , , , , , , | Leave a comment

“Tell me, Show me, Convince me”; Policies, Enforcement, and Auditing

I was speaking with a client yesterday about policies and auditing.  He asked me a question and it reminded me of what I told my clients for years regarding policies.  First, it is important to remember that a policy is … Continue reading

Posted in cybersecurity, Risk & Risk Management | Tagged , , , , , , , , | Leave a comment

“Money Laundering May Support Drugs and Terror Funding?” – US Senate says of HSBC

According to a US Senate Report issued today and major news outlets including MSNBC, Europe’s largest bank, HSBC, has  “A “pervasively polluted” culture at HSBC allowed the bank to act as financier to clients moving shadowy funds from the world’s … Continue reading

Posted in Industry News, Risk & Risk Management, terrorism | Tagged , , , , , , , | Leave a comment

“123456, password, welcome” – Yahoo Password Posted Online

A story today on MSNBC says that Yahoo Voices was compromised and 450,000 usernames/password posted online.  Not surprisingly, the passwords were not hashed or otherwise protected using encryption.  While the posting of passwords is nothing new what is interesting is … Continue reading

Posted in News, PCI DSS, Risk & Risk Management | Tagged , , , , , , , , | Leave a comment