X
Browse RFP templates
Visit the TEC store for RFP templates that can save you weeks and months of requirements gathering, and help ensure the success of your software selection project.
Browse Now


Compare Software Solutions
Visit the TEC store to compare leading software solutions by funtionality, so that you can make accurate and informed software purchasing decisions.
Compare Now
 

 website security audit


Security Snafu at NetBank
Online internet bank NetBank suffered an embarrassing security exposure late last week when a customer discovered he had access to more funds and information

website security audit  Look at the ISP's website and see how much attention they give to security. If they offer security consulting services, chances are they understand network security better than ISP's without such services which means they are more likely to better safeguard a bank's website. Any reputable ISP will be happy to answer questions over the phone. Ask them what kind of firewall they use and what type of intrusions detection system they use. You then can at least find out if they are using reputable products

Read More


Browse RFP templates

Visit the TEC store for RFP templates that can save you weeks and months of requirements gathering, and help ensure the succes of your software selection project.

Browse Now
Compare Software Solutions

Visit the TEC store to compare leading software by functionality, so that you can make accurate and informed software purchasing decisions.

Compare Now

Documents related to » website security audit

Fighting Cybercrime on the Internet


Excerpts from a presentation on cybercrime by Laura Taylor, TEC Director of Security Research for the E-Gov 2000 Conference sponsored by SAIC on July 10, 2000 at the Washington Convention Center.

website security audit  13 and requires that website operators contact parents and get their verifiable consent to their children's participation in one-on-one communication systems, chat rooms, or online pen pal programs. Who is enforcing this new child protection law? Have any websites been cited for violations of this new online child protection law? How can we find out which companies and organizations have violations in this area? Online advertising companies are notorious for collecting all kinds of personal information Read More

Identity-based NAC: Using Identity to Put the “Control” in Network Access Control


Access control is more than just checking devices for malware before admitting them to a network. Identity-based network access control (NAC) looks at the identities of users and devices, and knows what resource they are authorized to access, allowing enterprises to tightly control access, and the devices and behavior of users.

website security audit  Web Access Control | Website Access Control | Wireless Access Control | Wireless Access Control Software | Wireless Access Control System | Wireless Access Control Systems | Access Control List | Access Control & Security | Role-based Access Control | Identity-based Access Control | Authorization Access Control | Access Control Technology | Building Access Control | Biometric Access Control | Physical Access Control | Distributor of Access Control | Secure Access Control | Access Control Server | Access Read More

Bootcamp for the Pros; Why Ernst & Young Will Lead Security Auditing Standards


Original News & Educational Review Course Summary Ernst & Young, has put together the quintessential course for security engineers looking to improve their ability to protect their organization's website, systems, and network. Dubbed eXtreme Hacking, and carrying a price tag of $5,000 a slot, this course is for anyone but hacks. With an impressive course book that fills a two-inch thick binder, leading Ernst & Young security engineers take you step-by-step through all the ways that bad guys try to subvert your mission critical servers and network configurations. Using dual-bootable NT-Linux laptops, and an accompanying network setup for practicing subversive attacks and exploits, attendees will leave the course with an entire new bag of tools and tricks that help them understand how bad guys identify target IP addresses, collect information about the systems they plan on compromising, and exploit weaknesses without being noticed. The idea is to learn how to figure out what the weaknesses are in your organization's network before the bad guys do.

website security audit  to protect their organization's website, systems, and network. Dubbed eXtreme Hacking, and carrying a price tag of $5,000 a slot, this course is for anyone but hacks. With an impressive course book that fills a two-inch thick binder, leading Ernst & Young security engineers take you step-by-step through all the ways that bad guys try to subvert your mission critical servers and network configurations. Using dual-bootable NT-Linux laptops, and an accompanying network setup for practicing subversive Read More

Ask the Experts Question Raises Some Interest: What do you know about Segregation of Duties and SOX?


Every so often, Technology Evaluation Centers (TEC) analysts—our in-house panel of experts—receive questions from readers on a variety of software-related subjects. While mostly in the realm of software selection, evaluation, the latest technology offerings, or simply questions about business issues, on occasion we receive a request that piques our interest—especially when it is slightly outside

website security audit  that you visit TEC’s website to read this article. It will be published some time in August. We are certain that it will be a great source of information for any compliance-related projects your company might be involved in. But before you go… We’d like to learn a little more about what companies like yours are doing in regards to compliance, and more importantly internal controls. Please view our current polls regarding SOX and SOD. {democracy:9} {democracy:10} {democracy:11} Read More

Focus Experts Guide to IT Security: Unified Threat Management


Find out in Focus Experts Guide to IT Security: Unified Threat Management.

website security audit  focus experts guide security unified threat management,focus,experts,guide,security,unified,threat,management,experts guide security unified threat management,focus guide security unified threat management,focus experts security unified threat management,focus experts guide unified threat management. Read More

Security for Small and Medium Businesses


We all know what security means when we think of our home. Did we lock the door when we left for the day? Is the stove turned off? Computer security for the small to medium business (SMB) must address similar concerns. Can a hacker gain access to its servers? How can a business protect its data? Entry Points A personal computer virus is a hidden software program that spreads from

website security audit  for Small and Medium Businesses We all know what security means when we think of our home. Did we lock the door when we left for the day? Is the stove turned off? Computer security for the small to medium business (SMB) must address similar concerns. Can a hacker gain access to its servers? How can a business protect its data? Entry Points A personal computer virus is a hidden software program that spreads from personal computer to computer. Infection comes from reading an e-mail that has a virus Read More

Security Information Market Heading for Growth


The growth of security vulnerabilities is creating a new market for security information. With link sharing and cooperation among sites, it is not clear that this market is nearly as predatory as some publishing markets.

website security audit  Information Market Heading for Growth Security Information Market Heading for Growth L. Taylor - August 31, 2000 Event Summary It is estimated that the security information market will grow to a $1.5 billion by 2003.[1] With a dearth of security professionals available, viewing online security articles offers companies the opportunity to gain information, and improve system security knowledge at low overhead and a fast pace. Via the web, IT organizations can find out about security bugs, patches, a Read More

Fixing Security Backdoors: Red Hat 1, Microsoft 0


April is the cruelest month for operating system security holes. Red Hat posted a fix within six hours, but Microsoft leaves us… still waiting!

website security audit  Security Backdoors: Red Hat 1, Microsoft 0 Fixing Security Backdoors: Red Hat 1, Microsoft 0 C. McNulty - May 9, 2000 Event Summary On 25 April 2000, MSNBC reported that Internet Security Solutions had identified a security back door in Red Hat Linux 6.2. The backdoor involves an extra , but undocumented, administrative password that allows users to run rogue programs on a Red Hat server via a Web-based administrator's interface. To its credit, Red Hat responded and posted a fix within six hours Read More

Institute for Applied Network Security (IANS)


The Institute for Applied Network Security (IANS) conducts and publishes research and analysis. IANS also holds forums and peer-based roundtable discussions.

website security audit  for Applied Network Security (IANS) The Institute for Applied Network Security (IANS) conducts and publishes research and analysis. IANS also holds forums and peer-based roundtable discussions. Read More

Need for Content Security


The Internet access you have provided in the office costs money. You wish to see it used as a productive tool and increase business. It also provides the best way to appear busy. Employees can open multiple pages, a few of them related to legitimate work, while the others cater to their "personal" interests. It takes a single mouse click or Alt+Tab to navigate between pages, when a supervisor appears. This white paper provides details of how Internet access can be abused and how organisation can keep a tab on its employees.

website security audit  IP number to its website name and block access if it contains restricted words or is on the banned list. For e.g. www.sex-circus.com can be accessed through its IP, http://198.63.10.71 when you use other Content Security software. Softwareâ€s like eScan are intelligent enough to translate the IP to its URL and block it. Filter Category: The software should allow you to create category of filters for block and allow site. Sites related to the category can be listed there. For e.g. Pornography Category Read More

Top 5 Mobile Security Threats


While mobile malware still accounts for a mere fraction of the millions of threats targeting personal computers, the past year has seen the explosive growth of malicious code. What’s worse is that 50 percent of employees currently use their mobile devices at work. Early recognition of mobile security threats is a company’s best line of defense. Here are today’s top 5 mobile security threats and how to stop them in their tracks.

website security audit  5 Mobile Security Threats While mobile malware still accounts for a mere fraction of the millions of threats targeting personal computers, the past year has seen the explosive growth of malicious code. What’s worse is that 50 percent of employees currently use their mobile devices at work. Early recognition of mobile security threats is a company’s best line of defense. Here are today’s top 5 mobile security threats and how to stop them in their tracks. Read More

Data Security Is Less Expensive than Your Next Liability Lawsuit: Best Practices in Application Data Security


Insecure data. Heavy fines due to non-compliance. Loss of customers and reputation. It adds up to a nightmare scenario that businesses want to avoid at all costs. However, this nightmare is preventable: knowledge base-driven data security solutions can be critical tools for enterprises wanting to secure not only their data—but also their status in the marketplace.

website security audit  Security Is Less Expensive than Your Next Liability Lawsuit: Best Practices in Application Data Security Insecure data. Heavy fines due to non-compliance. Loss of customers and reputation. It adds up to a nightmare scenario that businesses want to avoid at all costs. However, this nightmare is preventable: knowledge base-driven data security solutions can be critical tools for enterprises wanting to secure not only their data—but also their status in the marketplace. Read More

Executive Brief: Mobility, Security Concerns, and Avoidance


Data drives business today, as IT managers and security executives face enormous pressure to use data effectively and securely. They require quick, agile transmission of data via a wide number of communication channels and devices, with smartphones and tablets being an increasingly prevalent data consumption device. Read this report and know the mobile challenges, as well as the elements for securing your corporate mobile strategy.

website security audit  Brief: Mobility, Security Concerns, and Avoidance Data drives business today, as IT managers and security executives face enormous pressure to use data effectively and securely. They require quick, agile transmission of data via a wide number of communication channels and devices, with smartphones and tablets being an increasingly prevalent data consumption device. Read this report and know the mobile challenges, as well as the elements for securing your corporate mobile strategy. Read More