Archive for September, 2013

DeepSec 2013 Workshop: Developing and Using Cybersecurity Threat Intelligence

September 26, 2013

The arsenal of components you can use for securing your organisation’s digital assets is vast. The market offers a sheer endless supply of application level gateways (formerly know as „firewalls“), network intrusion detection/prevention systems, anti-virus filters for any kind of platform (almost down to the refrigerator in the office), security tokens, biometrics, strong cryptography (just […]

Tags: , , , ,
Posted in Conference, Security Intelligence, Training 4 Comments »

Workshops at DeepSec 2013 – One/Two Days and Dates

September 25, 2013

In case you are interested in attending a training at DeepSec 2013: We have changed the standard two day format for two of the nine workshops. The „Social Engineering Awareness Training“ and the „Secure Your Business By Business Continuity Plans“ workshops are the only courses that will be held for one day. The dates are: […]

Tags:
Posted in Administrivia, Conference, Training 2 Comments »

DeepSec 2013 Workshop: Social Engineering Awareness Training – Win A Free Ticket!

September 25, 2013

“If a tree falls in a forest and no one is around to hear it, does it make a sound?” You probably know this question. It’s a philosophical thought experiment questioning observation and knowledge of reality. There is a similar gedankenexperiment for information security: “If your organisation receives a spear phishing e-mail and no one […]

Tags: , , ,
Posted in Conference, Training Comments Off on DeepSec 2013 Workshop: Social Engineering Awareness Training – Win A Free Ticket!

DeepSec 2013 Workshop: Secure your Business by Business Continuity Plans

September 23, 2013

Quite a lot of companies stay in business, because they operate continuously and reliably. Few have the luxury to close shop for an extended period of time. If you do, then you are either fabulously successful or in deep trouble. Regardless of what you have in mind for your enterprise you should think of implementing […]

Tags: , , , ,
Posted in Conference, Training Comments Off on DeepSec 2013 Workshop: Secure your Business by Business Continuity Plans

DeepSec 2013 Schedule is Final!

September 22, 2013

The schedule for DeepSec 2013 is final. We had to rearrange some talks, because not all of the speakers we selected confirmed their appearance (that’s real life interference; we hope to see them at some future DeepSec events). The topics look great! We hope you get as much restless nights worrying about your data and […]

Tags: , ,
Posted in Administrivia, Conference, Schedule 3 Comments »

DeepSec 2013 Talk: Europe In The Carna Botnet – Telnet’s Threat To The Largest Economy

September 21, 2013

Botnets have been around since 1999. These herds of networked and compromised systems (called zombies) are the tool of the trade for many groups. It’s the  zombie outbreak of the information age. The analysis of existing botnets is an important task of security researchers around the globe. The study of the malware involved, the infection […]

Tags: , , , ,
Posted in Conference, Security 2 Comments »

DeepSec 2013 Talk: Static Data Leak Prevention In SAP – The Next Generation Of Data Loss Prevention

September 20, 2013

Once you use information technology you will have to worry about leaks. Applications can leak data when attached to the network (any network!). That’s no breaking news, but it might be bad news for you and your data. Fortunately there are good news, too. There is a talk by Andreas Wiegenstein about ways of data […]

Tags: , , ,
Posted in Conference, Security 6 Comments »

DeepSec 2013 Talk: Top 10 Security Mistakes In Software

September 16, 2013

Software Development and information security are tightly tied together. A bug attracts vulnerabilities and bugs and vulnerabilities combined can be turned into exploits to compromise systems. In an ideal world security starts at the design or development stage. While you probably will never be able to completely eliminate bugs in (your) code due to the […]

Tags: , , ,
Posted in Conference, Security 2 Comments »

Crypto Wars by Black Boxes and Standards

September 15, 2013

Intelligence services go after cryptography. That’s the news you have probably read in the past weeks. That’s no surprise. They have been doing this for centuries. If your job is to intercept and analyse communication, then cryptography gets in your way (provided the target uses it properly). Intelligence services have been dealing with creating and […]

Tags: , , ,
Posted in High Entropy, Security Comments Off on Crypto Wars by Black Boxes and Standards

DeepINTEL 2013 – Thank you!

September 12, 2013

The second DeepINTEL conference ended two days ago. We had great talks and met wonderful people sharing insights and exchanging thoughts about how to cope with information security. Our thanks go to everyone attending DeepINTEL 2013! In case you missed this year’s opportunity, there will be a DeepINTEL 2014 conference. Its date will be announced […]

Tags: , ,
Posted in Conference, Security Intelligence 2 Comments »