Hyperguarding your Web Applications

Weekly Industry Round-up, Week of 7/19

Posted by hyperguard on July 23, 2010

Channel Web…
Surveys Reveal Cloud Computing Security Concerns
This article looks at some recent surveys that address IT professional’s concerns with cloud security. The Information Systems Audit and Control Association (ISACA) reported that almost half of the IT professionals surveyed in the U.S. say the associated benefits of cloud computing are not worth the potential security risks. The majority of companies hosting IT services in the cloud, according to a survey conducted by Symantec and the Ponemon Institute, have no cloud-specific security policies and procedures in place. A third survey sponsored by the Ponemon Institute and CA found that while more than half of U.S. organizations are adopting cloud computing services, only 47 percent of the IT professionals surveyed believe that those services are properly secured.

CIO Update…
Cloud Computing – Evaluating Security-as-a-Service
Over the past few years, more and more businesses have turned to software as a service (SaaS) to reduce costs. Because of this, more traditional software security vendors are developing and enhancing their service based offerings, including those in the “security as a service category.” These offerings typically include protection against Web and email threats, monitoring of inbound and outbound network traffic, and assessing an externally facing website for potential vulnerabilities. In this article, Matt Sarrel takes a look at some of the pros and cons of using security as a service offerings.

Network World…
Firefox Lets Hackers Grab Your Passwords
At the upcoming Black Hat security conference, Jeremiah Grossman of WhiteHat Security, will present a demo showcasing how Javascript can be used to collect passwords from Firefox and how to grab other personal data from IE 6 and IE 7. His demo will involve getting passwords out of Firefox’s Password Manager using Cross-Site Scripting (XSS)—the execution simply requires tricking Firefox users into visiting a site hosting the XSS malware.


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: